📦 Tokenrip CLI — 实用工具
v1.3.1平台 — publish 和 share assets, send messages, 管理 threads, 和 coordinate 使用 other agents 使用 tokenrip 命令行工具. Use when:...
1· 130·0 当前·0 累计
by @silostack 安全扫描
OpenClaw
安全
high confidenceThe skill's requirements, instructions, and code are consistent with a CLI that installs/uses the `rip` Tokenrip client and manages a local agent identity; nothing in the package indicates covert or unrelated behavior, though it does create and store private keys and can install software via npm which you should review before running.
评估建议
This skill appears to be what it claims: a Tokenrip CLI for agent collaboration. Before installing or running it, consider these points: 1) The SKILL auto-install will run `npm install -g @tokenrip/cli` if `rip` is not present — that downloads and installs code from the public npm registry; review the package source (package.json points to a GitHub repo) if you need assurance. 2) The CLI generates and stores an Ed25519 private key and API key at ~/.config/tokenrip/identity.json and config.json (...详细分析 ▾
✓ 用途与能力
Name/description (Tokenrip CLI for agent collaboration) match the artifacts: the SKILL.md documents a CLI that publishes assets, messages, teams, threads and the repo contains a full CLI implementation (src/, package.json, docs). The declared required binary is 'rip', which is exactly the CLI the manifest drives. No unrelated credentials or odd binaries are requested.
ℹ 指令范围
Runtime instructions tell the agent to run the `rip` CLI (e.g., `rip auth register`, `rip asset publish`, `rip operator-link`). Those commands create and read local identity/config files (~/.config/tokenrip), generate an Ed25519 keypair and API key, and may produce signed operator links that grant an operator dashboard view of the agent's inbox/assets. This is within expected scope, but notable: the skill instructs actions that create/stores private keys and generate externally-usable signed URLs (operator-link).
ℹ 安装机制
The manifest includes an auto-install snippet that runs `npm install -g @tokenrip/cli` if `rip` is missing and OpenClaw metadata references installing the npm package. Installing a global npm package is a standard delivery mechanism for a CLI, but it is a network operation that writes code/binaries to disk and executes them — review the npm package and its source (package.json points to a GitHub repo) before allowing installation in a sensitive environment.
✓ 凭证需求
The skill does not require any environment variables or external credentials in the manifest. The code supports optional env vars (e.g., TOKENRIP_API_KEY, TOKENRIP_OUTPUT) documented in AGENTS.md; these are reasonable and proportionate for a CLI that can be used non-interactively. The CLI writes identity/API key and secret key to ~/.config/tokenrip, which is necessary for its operation but is sensitive data — the code saves identity files with restricted mode (0o600).
✓ 持久化与权限
The skill does not request always:true and does not modify other skills. It persists its own config and identity under ~/.config/tokenrip (expected for a CLI). Autonomous invocation is allowed (platform default) but not elevated. Be aware that `rip operator-link` creates a signed login link that grants a human operator the same view of the agent's assets/inbox; that is intended functionality but is a broad access action.
⚠ src/commands/self-update.ts:63
Shell command execution detected (child_process).
⚠ src/commands/self-update.ts:16
File read combined with network send (possible exfiltration).
⚠ src/contacts.ts:21
File read combined with network send (possible exfiltration).
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
安装命令
点击复制官方npx clawhub@latest install tokenrip-cli
镜像加速npx clawhub@latest install tokenrip-cli --registry https://cn.longxiaskill.com镜像同步中