Skill Security Scanner — 安全防护工具

v1.0.0

技能用于安全性 issues before installing — malware, prompt injection, obfuscation, supply chain attacks.

0· 83·0 当前·0 累计

by @mackding (Blossom)

AI模型访问

使用场景：使用Skill Security Scanner — 安全防护工具进行AI模型访问使用Skill Security Scanner — 安全防护工具

下载技能包

安全扫描

VirusTotal

Pending

查看报告

OpenClaw

可疑

medium confidence

The skill's stated purpose (scanning other skills) is coherent, but it relies on an external/unpublished npm package (via npx/import) without declaring or vendoring that dependency, creating a supply-chain and provenance gap you should resolve before trusting it.

评估建议

This skill mostly does what it says, but the actual scanner logic is external (@claws-shield/scanner / @claws-shield/cli) and not included or documented in the metadata — that creates supply-chain risk. Before installing or running: 1) Inspect the npm package (@claws-shield/cli and @claws-shield/scanner): verify the package owner, homepage/repo, recent publishing history, and review its code or release tarball checksum. 2) Prefer a vendorized or pinned install spec (provide the scanner code insi...

详细分析 ▾

ℹ 用途与能力

The name and description match the included instructions and helper script: this is a scanner that analyzes skill directories. However the shipped wrapper imports @claws-shield/scanner and the README suggests using npx @claws-shield/cli — the package that actually performs scanning is external and not included or declared in the skill metadata, which is an incoherence in provenance.

ℹ 指令范围

SKILL.md only instructs running the scanner against a provided skill path and lists expected output. That scope is appropriate for a scanner. But a scanner necessarily reads arbitrary files in the target skill (including .env, config, and other sensitive files) — this behavior is expected but should be highlighted. Also the recommended invocation (npx) will fetch and run remote code at runtime, which expands the execution surface beyond the local files shown.

⚠ 安装机制

There is no install spec and the skill is effectively instruction-only, but scripts/run-scan.mjs imports @claws-shield/scanner and SKILL.md recommends npx @claws-shield/cli. That implies fetching code from the npm registry at runtime. Because the registry package, homepage, or repo are not provided in the skill metadata, this creates a supply-chain and provenance risk: the actual scanning logic could be arbitrary remote code.

ℹ 凭证需求

The skill declares no environment variables or credentials, which is proportionate. However scanners read entire skill directories and may therefore access sensitive files (env samples, secret keys, tokens) within the target — this is expected but you should be aware the tool will see those secrets during a scan.

✓ 持久化与权限

The skill is user-invocable, not always-enabled, and does not request persistent privileges or configuration changes. It does not claim to write system-wide settings or modify other skills.

安全有层次，运行前请审查代码。

运行时依赖

无特殊依赖

安装命令

点击复制

官方npx clawhub@latest install claws-security-scanner

镜像加速npx clawhub@latest install claws-security-scanner --registry https://cn.longxiaskill.com 镜像可用

本土化适配说明

Skill Security Scanner — 安全防护工具安装说明：安装命令：["openclaw skills install claws-security-scanner","npx clawhub@latest install claws-security-scanner"]

需要定制？告诉我你的需求 →

运行时依赖

安装命令

本土化适配说明

相关技能推荐