by 安全扫描
OpenClaw
安全
medium confidenceThe skill's declared purpose (read/write/list files inside the workspace) matches its requirements and instructions, but the runtime guidance is advisory and leaves enforcement to the agent/platform so exercise caution when allowing autonomous file operations.
评估建议
This skill is internally consistent for workspace-local file operations, but its safety constraints are advisory only. Before enabling: (1) ensure your agent platform enforces workspace boundaries and requires explicit user confirmation for writes/deletes; (2) prefer prompting the user before any write or delete; (3) consider limiting autonomous invocation or auditing logs for file operations; and (4) test in a restricted workspace (non-sensitive files) first to verify behavior.详细分析 ▾
✓ 用途与能力
Name and description claim workspace-local file access; there are no unrelated environment variables, binaries, or install steps requested. The skill is instruction-only and its declared purpose aligns with what the instructions describe.
ℹ 指令范围
SKILL.md limits actions to workspace-relative paths and forbids writes outside the workspace, but these are high-level, advisory constraints (e.g., 'avoid deleting important files') rather than enforceable checks. 'Workspace' is not programmatically defined here, and the agent is given discretion about what to access and when.
✓ 安装机制
No install spec or external downloads — instruction-only skill, so nothing is written to disk or fetched during install.
✓ 凭证需求
The skill requests no environment variables, credentials, or config paths. There are no extraneous secret requests relative to the stated file-access purpose.
ℹ 持久化与权限
always:false (not force-installed). The skill allows model invocation (default), so an agent could run its file-access actions autonomously if the platform permits — this increases potential impact but is a platform-level policy consideration rather than a mismatch in the skill itself.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
版本
latestv1.0.02026/3/15
Initial release with secure workspace file access: - Enables safe local file read, write, and list functions within the OpenClaw workspace directory. - Access is limited to relative paths or workspace subdirectories to prevent unauthorized file operations. - Write operations outside the workspace are strictly prohibited. - Intended use cases: viewing logs, generating reports, saving scripts or configuration files. - Users are advised not to delete important files such as configuration, source code, or system files.
● 无害
安装命令 点击复制
官方npx clawhub@latest install filesystem-access-greaterpeter
镜像加速npx clawhub@latest install filesystem-access-greaterpeter --registry https://cn.clawhub-mirror.com
技能文档
使用建议
- 当你需要查看、编辑或列出工作区内的文件时使用本技能。
- 仅访问相对路径或工作区子目录,避免越权访问用户其他目录。
- 典型场景:查看日志、生成 Markdown 报告、保存脚本或配置文件。
安全约束
- 禁止在 workspace 之外执行写入操作。
- 避免删除用户重要文件,如配置、源码或系统文件。
数据来源:ClawHub ↗ · 中文优化:龙虾技能库
OpenClaw 技能定制 / 插件定制 / 私有工作流定制
免费技能或插件可能存在安全风险,如需更匹配、更安全的方案,建议联系付费定制