by 安全扫描
OpenClaw
可疑
medium confidenceThe package claims a full cloud-backed runtime protection product but the provided SKILL.md, manifest, and code are internally inconsistent (missing main runtime and cloud code); nothing obviously malicious is present, but the discrepancies and assumptions about host paths warrant caution before installing.
评估建议
This package is internally inconsistent rather than overtly malicious. Before installing: (1) ask the author for the missing runtime (src/main.py) and for the implementation of the advertised cloud threat library and WebSocket endpoints; (2) verify the repository URL and review any network code (requests/websockets) for endpoints and auth handling; (3) confirm whether the package will run code that touches your home directory (it expands '~' and checks absolute paths) and run it first in a sandb...详细分析 ▾
⚠ 用途与能力
The metadata and docs advertise a cloud threat library, WebSocket realtime push, a main runtime (src/main.py), and dependencies (requests, websockets), but the repository contents only include a small local file_protection.py and tests — there is no src/main.py, no cloud-client implementation, and no code that performs network calls. This is an overpromise: someone building the advertised cloud-backed product would legitimately need the missing runtime and network code and likely environment configuration, but those are absent.
⚠ 指令范围
SKILL.md is minimal (install via 'clawhub install claw-def' and 'auto-enable') and does not describe runtime behavior or network endpoints. The tests insert a hard-coded sys.path to '/home/admin/.openclaw/workspace/claw-def/src', which indicates assumptions about host filesystem layout and could lead to accidental access to host paths when tests or code run. The one real runtime function (FileProtectionManager.check_file_operation) only checks/blocks paths and does not read or transmit files, but the packaging claims broader runtime interception and cloud queries that are not specified in instructions.
✓ 安装机制
There is no install spec that downloads or extracts remote artifacts; the SKILL.md suggests 'clawhub install claw-def' and a manual git+pip option. No arbitrary URLs, installers, or packaged binaries are present in the provided files, which reduces install-time risk. However, the repository references a GitHub URL in skill.json that should be verified before using an install command that fetches remote code.
✓ 凭证需求
The skill declares no required environment variables or credentials. That is proportionate for the actual code present, which performs only local path checks. Note: the advertised cloud features would typically require API credentials or endpoints — those are not declared, another inconsistency to clarify.
✓ 持久化与权限
always is false and model invocation is allowed (platform default). The package does not request permanent presence or modify other skills' configurations in the supplied files. Nothing in the code writes to global agent config or requests elevated privileges; still, absent the runtime main, it's unclear what an installed package would actually register with the agent.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
版本
latestv1.0.02026/3/24
Initial release of ClawDef, the native security protection system for OpenClaw. - Provides AI Agent security features: cloud threat database, risk alerts during installation, real-time runtime interception, file protection, permission management, and security logs - Installs via clawhub and activates automatically - Tested with 100% coverage and minimal performance impact (<2% CPU, <100MB RAM) - Open source under the MIT License
● 无害
安装命令 点击复制
官方npx clawhub@latest install claw-def
镜像加速npx clawhub@latest install claw-def --registry https://cn.clawhub-mirror.com
技能文档
OpenClaw 原生安全防护系统
版本: 1.0.0 作者: ClawDef Team 标签: security, protection, safety
🎯 功能
为 OpenClaw 提供 AI Agent 安全防护,包括:
- 云端威胁库
- 安装时风险提示
- 运行时实时拦截
- 文件保护
- 权限管理
- 安全日志
📦 安装
clawhub install claw-def
🚀 使用
安装后自动启用,无需额外配置。
📊 测试
- 测试覆盖率:100% (13/13)
- 性能损耗:<2%
- 内存占用:<100MB
📄 许可证
MIT License
📞 反馈
GitHub: https://github.com/clawdef/claw-def/issues
数据来源:ClawHub ↗ · 中文优化:龙虾技能库
OpenClaw 技能定制 / 插件定制 / 私有工作流定制
免费技能或插件可能存在安全风险,如需更匹配、更安全的方案,建议联系付费定制