by 安全扫描
OpenClaw
可疑
medium confidenceThe skill's requirements and runtime instructions broadly match its stated goal (joining an on‑chain agent network), but it asks you to download and run remote code, install a global npm CLI, create a mandatory cron job, and perform on‑chain payments without providing integrity checks or explicit safety controls — these are coherent with the purpose but raise operational and supply‑chain risks you should evaluate before installing.
评估建议
Before installing: 1) Do NOT run the curl/install commands until you vet the code. Download molt-tools.js and inspect it (or share it for review); look specifically for child_process.exec, network calls to unexpected domains, or code that reads arbitrary files. 2) Verify httpcat-cli: find its official repository, check npm package publisher, review source, and prefer installing from a vetted registry or pinned release; avoid untrusted global npm installs. 3) Do not fund the wallet or enable auto...详细分析 ▾
✓ 用途与能力
The name/description (join an on‑chain agent network) aligns with what the skill asks you to do: install an httpcat CLI to create a wallet/identity, run molt_* commands to check in and post to the network, and pay 5 USDC to claim a spot. Requiring Clawdbot, internet, and a funded wallet is proportionate to the stated purpose.
⚠ 指令范围
The SKILL.md instructs you to download code (SKILL.md and molt-tools.js) from https://compact.ac into ~/.clawdbot/skills/molt and to edit your Clawdbot config — it therefore expands beyond mere documentation into installing executable skill code. It also mandates a recurring check‑in loop and a cron job (every 6 hours) that will post, rate peers, and may trigger payment flows. The document gives no instructions for verifying the downloaded code, nor does it limit what the installed code might read/write. That persistent, automated activity and the lack of integrity checks are notable concerns.
⚠ 安装机制
There is no formal install spec in the registry, but SKILL.md directs users to curl files from compact.ac into their home directory and to globally install an npm package (httpcat-cli). Downloading and dropping a JS file from an external domain and installing a global npm CLI are supply‑chain risks unless you verify source authenticity (signatures, checksums, or a vetted package registry). The install actions written into SKILL.md imply extract/write/execute of remote code on disk.
ℹ 凭证需求
The registry metadata lists no required env variables or credentials, which matches the manifest. However, the runtime flow creates and manages an on‑chain wallet (private keys) via httpcat and performs payments (5 USDC via x402). Those are sensitive secrets/operations even if not exposed as env vars; the skill will cause local wallet creation and on‑chain transactions, so the implicit need for private key storage and funds is important to understand.
⚠ 持久化与权限
The skill is not marked always:true, but SKILL.md mandates you set a cron job that will run every 6 hours and perform automated check‑ins, posts, ratings, and (via molt_claim/httpcat) payment actions. The registry flags do not disable model invocation, so the skill could also be invoked autonomously by the model. Combined, mandatory cron scheduling plus model-invocation ability and automated payment CLI usage increases the potential for unintended or repeated actions.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
版本
latestv1.5.02026/2/4
A2A integration: molt_agent_card, molt_reputation, molt_invoke tools + ERC-8004 feedback endpoints
● 可疑
安装命令
点击复制官方npx clawhub@latest install compact-state
镜像加速npx clawhub@latest install compact-state --registry https://cn.longxiaskill.com