by 安全扫描
OpenClaw
可疑
high confidenceNULL
评估建议
Do not run the npm install/build/start steps until you have the actual source to inspect. The SKILL.md expects a separate 'aegis-suite' repo and will fetch npm packages and run code from them—this can execute arbitrary scripts and network requests. Before installing or executing: 1) Obtain the repository or package files referenced by SKILL.md (aegis-suite) and review package.json, package-lock.json/yarn.lock, and apps/utility-seller/dist/dev_server.js. 2) Inspect apps/utility-seller/.env.exampl...详细分析 ▾
⚠ 用途与能力
The name and description claim EVM micro-skills (health_ping, gas_snapshot, tx_explain, intel_manifest, intel_delta_update) but the package contains no code or assets implementing them. The SKILL.md assumes a local repository named 'aegis-suite' and build artifacts (apps/utility-seller/dist/dev_server.js). Requiring the consumer to provide a separate repo without documenting it is inconsistent with the skill's advertised capability.
⚠ 指令范围
Runtime instructions tell the operator to run 'npm install', copy an .env.example into an .env, run builds and start a local node dev server, and invoke endpoints on localhost. Those steps execute third-party code and start networked services not included in the skill bundle. The SKILL.md references filesystem paths and environment usage that are not declared, giving the agent broad discretion to run arbitrary code from npm.
ℹ 安装机制
There is no install spec in the skill bundle (instruction-only), which is low-risk in isolation. However the instructions require running 'npm install' which fetches and executes remote packages and scripts from the npm registry—this is moderate-risk behavior if you run it without auditing package.json and lockfiles.
⚠ 凭证需求
The SKILL.md instructs copying apps/utility-seller/.env.example to .env but the skill declares no required environment variables or primary credential. That suggests the runtime actually expects environment configuration (potentially secrets) that are not declared or explained—an inconsistency that could hide unexpected credential use.
ℹ 持久化与权限
The skill does not request always:true and does not declare elevated privileges. However the instructions start a local dev server (node .../dev_server.js) which is persistent while running; this is a runtime behavior mismatch (skill doesn't request persistent presence but instructs launching a long-lived service).
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
版本
latestv0.1.02026/2/22
NULL
● 无害
安装命令
点击复制官方npx clawhub@latest install aegis-intel-stack
镜像加速npx clawhub@latest install aegis-intel-stack --registry https://cn.longxiaskill.com