yaml-config — 实用工具

v0.1.0

技能 when reading or writing YAML 配置 files, loading vehicle parameters, or handling config 文件 parsing 使用 proper error handling.

0· 85·0 当前·0 累计

by @wu-uk

文件处理开发工具

下载技能包

安全扫描

VirusTotal

无害

查看报告

OpenClaw

安全

high confidence

The skill's instructions and requirements align with its stated purpose (safe YAML read/write patterns); nothing requested is disproportionate or unexpected.

评估建议

This skill appears coherent and low-risk: it demonstrates safe YAML parsing (yaml.safe_load), writing, and basic error handling. Before using it with safety-critical data (e.g., vehicle parameters), add explicit schema validation, bounds checks, and provenance/trust checks on input files. Ensure the runtime has PyYAML installed (or add instructions to install it). Be mindful of file paths and permissions so config reads/writes don't accidentally expose or overwrite sensitive files.

详细分析 ▾

✓ 用途与能力

Name and description (YAML config handling, vehicle params) match the instructions, which show reading, safe parsing, writing, optional default merging, and basic error handling. No unrelated capabilities or credentials are requested.

ℹ 指令范围

SKILL.md stays on-topic and only demonstrates opening/reading/writing local YAML files and merging defaults. It correctly recommends yaml.safe_load. Note: examples reference filenames like 'config.yaml' and 'output.yaml' but do not discuss validating or sanitizing external data beyond YAML parsing; for vehicle or safety-critical parameters the operator should add strict schema/validation steps and avoid loading untrusted files.

✓ 安装机制

Instruction-only skill with no install spec — lowest risk. One minor practical omission: examples import the 'yaml' module (PyYAML) but the SKILL.md does not mention ensuring that PyYAML is installed; this is an operational note rather than a security inconsistency.

✓ 凭证需求

No environment variables, credentials, or config paths are requested. File I/O is limited to the example file paths and does not attempt to access unrelated system config or secrets.

✓ 持久化与权限

Skill is user-invocable and not 'always'. It does not request persistent installation, system modification, or changes to other skills. Autonomous invocation is allowed (platform default) but not combined with other red flags.

安全有层次，运行前请审查代码。

运行时依赖

无特殊依赖

安装命令

点击复制

官方npx clawhub@latest install adaptive-cruise-control-yaml-config

镜像加速npx clawhub@latest install adaptive-cruise-control-yaml-config --registry https://cn.longxiaskill.com 镜像可用

需要定制？告诉我你的需求 →

运行时依赖

安装命令

相关技能推荐