Gws Modelarmor
v1.0.12Google Model Armor: Filter user-generated content for safety.
0· 382·13 当前·13 累计
by 安全扫描
OpenClaw
可疑
medium confidenceThe skill is instruction-only and consistent with a CLI wrapper for a 'gws' tool, but it instructs the agent to read/create a shared auth file outside its directory and relies on an undocumented external binary of unknown provenance — this mismatch and lack of transparency are concerning.
评估建议
This skill is an instruction-only wrapper around a 'gws' CLI. Before installing, verify the source and trustworthiness of the 'gws' binary (who provides it, official repo, checksums). Open and inspect the referenced ../gws-shared/SKILL.md to see how authentication and global flags are handled — it may contain credentials or instructions that create/configure auth artifacts. Also inspect the helper SKILL.md files mentioned (sanitize-prompt, sanitize-response, create-template) to ensure they don't...详细分析 ▾
✓ 用途与能力
The skill's name/description (Model Armor content filtering) align with its instructions to call 'gws modelarmor' and inspect schema; requiring a 'gws' binary is reasonable for a CLI wrapper.
⚠ 指令范围
SKILL.md explicitly instructs the agent to read '../gws-shared/SKILL.md' for auth/global flags and to run 'gws generate-skills' if missing. That directs agent access to a file outside the skill's own directory and to create files, which expands scope and requires trust in what that shared file contains.
✓ 安装机制
No install spec or code is present (instruction-only), so nothing is written by the skill itself. The runtime depends solely on an existing 'gws' binary.
⚠ 凭证需求
The skill declares no required env vars or credentials, yet points to a shared SKILL.md for auth and global flags. This non-disclosure of how authentication is handled (env, config files, or other) reduces transparency and is disproportionate.
ℹ 持久化与权限
always:false and no code means no forced persistence, but the instructions encourage creating/reading a shared config file via 'gws generate-skills', which could modify agent files or create persistent auth artifacts — acceptable if trusted, but worth reviewing.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
版本
latestv1.0.122026/3/6
- Updated skill version from 0.22.4 to 0.22.5 in metadata. - No functional or documentation changes beyond the version increment.
● 无害
安装命令 点击复制
官方npx clawhub@latest install gws-modelarmor
镜像加速npx clawhub@latest install gws-modelarmor --registry https://cn.clawhub-mirror.com
技能文档
PREREQUISITE: Read../gws-shared/SKILL.mdfor auth, global flags, and security rules. If missing, rungws generate-skillsto create it.
gws modelarmor [flags]
Helper Commands
| Command | Description |
|---|---|
+sanitize-prompt | Sanitize a user prompt through a Model Armor template |
+sanitize-response | Sanitize a model response through a Model Armor template |
+create-template | Create a new Model Armor template |
Discovering Commands
Before calling any API method, inspect it:
# Browse resources and methods
gws modelarmor --help# Inspect a method's required params, types, and defaults
gws schema modelarmor..
Use gws schema output to build your --params and --json flags.
数据来源:ClawHub ↗ · 中文优化:龙虾技能库
OpenClaw 技能定制 / 插件定制 / 私有工作流定制
免费技能或插件可能存在安全风险,如需更匹配、更安全的方案,建议联系付费定制