by 安全扫描
OpenClaw
安全
high confidenceNULL
评估建议
This skill is narrowly focused and internally consistent. Before using it: (1) test with a safe outputPath (e.g., a dedicated reports directory) to confirm where files are written; (2) avoid passing sensitive paths (system dirs, other users' data) or filenames that could cause path traversal; (3) run with an agent account that has limited filesystem permissions so the skill can only write to permitted locations; (4) if you plan to automate it, review produced Markdown content before sharing. No ...详细分析 ▾
✓ 用途与能力
Name/description (generate short Chinese daily reports and optionally write to Markdown) aligns with the SKILL.md: it only normalizes a date, formats Markdown, and writes a file. No unrelated env vars, binaries, or installs are requested.
ℹ 指令范围
Instructions are narrowly scoped to normalizing the date, composing Markdown, and writing to outputPath (creating parent directory if missing). This is appropriate for the stated purpose, but writing to a user-specified filesystem path is the main operational effect to be aware of (ensure outputPath is safe and not e.g. a sensitive system path).
✓ 安装机制
No install spec and no code files — instruction-only skills present lower disk/execution risk.
✓ 凭证需求
No environment variables, secrets, or external credentials are requested; requested capabilities are proportionate to generating and saving a report.
✓ 持久化与权限
always is false and the skill does not request persistent/system-wide privileges or modify other skills; autonomous invocation is allowed (platform default) but not otherwise privileged.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
版本
latestv1.0.02026/3/2
NULL
● 可疑
安装命令
点击复制官方npx clawhub@latest install daily-report-joig
镜像加速npx clawhub@latest install daily-report-joig --registry https://cn.longxiaskill.com