by 安全扫描
OpenClaw
安全
medium confidenceThe skill's code and instructions match its stated purpose (using a local qg CLI to list schedules and generate WeChat order-entry links); no excessive credentials or surprising behaviors were found, though the provided install instructions use a curl|bash pattern that carries higher install-time risk.
评估建议
This package appears to do what it says: query schedules and build WeChat order-entry links. Before installing, prefer safer install paths: (1) install the npm package from the registry (npm install -g qg-skill) rather than piping a remote script into bash; (2) if you must run the install script, review install.sh locally first to confirm it does only the expected git/npm/copy operations; (3) note the CLI will write a cache file to ~/.qiguan-cli/last-list.json and will make network requests to t...详细分析 ▾
✓ 用途与能力
Name/description ask for querying Qiguan bus schedules and creating WeChat order-entry links; the code implements a CLI that posts to a ticketing API (https://ebk.17u.cn/cxyopenapi) and builds links pointing at https://trans.17u.cn, which is consistent with the stated purpose. The skill writes a small cache to ~/.qiguan-cli to support the 'list → link' flow; no unrelated cloud credentials, binaries, or config paths are requested.
✓ 指令范围
SKILL.md instructs the agent to run the local qg CLI (qg list, qg link) and explicitly forbids auto-submitting passenger info or triggering payment. The runtime instructions and reference docs only reference the CLI, local cache file, and the upstream ticketing endpoints; they do not ask the agent to read unrelated files or exfiltrate environment variables.
⚠ 安装机制
The repository includes an install.sh and the README shows a curl -fsSL https://raw.githubusercontent.com/.../install.sh | bash one-liner. While the included script itself clones the GitHub repo or uses npm and then installs the CLI, curl|bash is a higher-risk installation pattern because it executes remote code without manual review. If installed via npm from the official package registry or by reviewing the install script first, risk is reduced.
✓ 凭证需求
The skill declares no required environment variables or credentials. The code does access the user's home directory to store a small cache (~/.qiguan-cli/last-list.json), which is proportionate to its functionality. Network access to the ticketing API is necessary and expected.
✓ 持久化与权限
The skill does not request permanent/always-on inclusion and does not modify other skills or system-wide configuration. The install script copies the skill into per-user skill directories (~/.codex, ~/.openclaw) and installs a global npm CLI when requested; that is typical for CLI + skill packages and limited in scope.
⚠ dist/cli.js:237
Shell command execution detected (child_process).
⚠ src/cli.ts:298
Shell command execution detected (child_process).
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
版本
latestv0.1.02026/4/7
Initial release
● 无害
安装命令
点击复制官方npx clawhub@latest install qgcar-skill
镜像加速npx clawhub@latest install qgcar-skill --registry https://cn.longxiaskill.com镜像同步中