by 安全扫描
OpenClaw
可疑
high confidenceThe skill's purpose (local bug tracking and automatic fixing) is coherent, but its runtime instructions ask you to run an npm package and instruct the agent to read and modify local project files — actions that can expose or change sensitive data and execute arbitrary code and are not made safe or constrained in the SKILL.md.
评估建议
This skill appears to do what it says, but it relies on running 'npx bugpack-mcp' (which downloads and runs code from npm) and instructs the agent to locate and edit local source files. Before using it: 1) Inspect the 'bugpack-mcp' package source (do not run npx blindly); 2) Run the server in a sandboxed or disposable environment (container / dedicated VM) if you must; 3) Backup your repository and enable version control protection (review edits as PRs, require human approval) so automated fixes...详细分析 ▾
ℹ 用途与能力
The name/description (BugPack, local bug tracking + fixing) aligns with the instructions to call a local server (http://localhost:3456) and to list/view/fix bugs. However, the stated capability inherently requires access to the local codebase and filesystem, which the skill does not explicitly declare or limit.
⚠ 指令范围
SKILL.md tells the agent to run or rely on a local BugPack server (npx bugpack-mcp) and to use 'relatedFiles' or 'pagePath' to locate relevant source code, then 'apply fix: edit source code' and mark bugs as fixed. Those instructions require reading and writing arbitrary local files and interpreting paths provided by the server — potentially exposing secrets or modifying sensitive files. The instructions do not constrain which files may be touched, nor require explicit user review before edits.
⚠ 安装机制
No install spec in the skill package, but the SKILL.md explicitly instructs starting the server with 'npx bugpack-mcp'. npx will fetch and execute a package from the npm registry (network download + run), which is equivalent to running arbitrary third-party code on the machine. That is a high-risk operation and is not vetted or sandboxed by the skill.
⚠ 凭证需求
The skill declares no required env vars or config paths, but runtime behavior (reading 'relatedFiles', screenshots, environment, and modifying source files) implies access to arbitrary local filesystem paths and project data. The lack of declared required permissions or explicit limitations makes the requested access disproportionate and opaque.
ℹ 持久化与权限
The skill does not request permanent 'always' inclusion and does not declare changing other skills' configs. However, because it enables autonomous actions (normal default) combined with instructions to edit local code and to run an npm package, the potential blast radius is larger — consider restricting autonomous execution or requiring manual confirmation for file changes.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
版本
latestv1.0.22026/3/18
Initial release - AI bug tracking and fixing toolkit
● 无害
安装命令
点击复制官方npx clawhub@latest install bugpack
镜像加速npx clawhub@latest install bugpack --registry https://cn.longxiaskill.com