by 安全扫描
OpenClaw
安全
high confidenceNULL
评估建议
This skill appears to be a local read-only reference tool: it runs a bundled shell script that prints GDPR/DPA guidance and does not access credentials, make network requests, or modify system configuration. You can safely install/use it if you only need offline reference text. Before installing, review the script (scripts/script.sh) yourself to confirm no unexpected commands were added, and be aware SKILL.md mentions a DPA_DIR setting that the script does not use (harmless but inconsistent). If...详细分析 ▾
ℹ 用途与能力
Name/description match the included functionality: the skill provides DPA/GDPR reference text and review checklists. There are no unrelated credentials, binaries, or install steps. Minor inconsistency: SKILL.md documents a configurable DPA_DIR but the included script does not read or write that directory (the configuration appears unused).
✓ 指令范围
Runtime instructions simply call the bundled scripts/script.sh commands to print guidance (intro, article28, clauses, etc.). The script only emits static help text via here-documents and does not perform file I/O, network calls, or access secrets.
✓ 安装机制
No install spec is present (instruction-only skill with an included script). Nothing is downloaded or extracted; no packages or external installers are requested.
ℹ 凭证需求
The skill declares no required environment variables or credentials (good). SKILL.md lists an optional DPA_DIR configuration variable, but the script does not use any environment variables — this is a harmless mismatch but worth noting.
✓ 持久化与权限
Skill does not request persistent privileges or 'always' inclusion. Autonomous invocation is allowed (platform default) but the skill's local-only behavior limits its blast radius.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
版本
latestv1.0.02026/3/21
NULL
● 无害
安装命令
点击复制官方npx clawhub@latest install dpa
镜像加速npx clawhub@latest install dpa --registry https://cn.longxiaskill.com