← Back to Skills Marketplace
Skill Gatekeeper
by
lanew197894fun-cmd
· GitHub ↗
· v2.0.0
· MIT-0
211
Downloads
0
Stars
0
Active Installs
2
Versions
Install in OpenClaw
/install skill-gatekeeper
Description
技能門禁系統 - 自動審核、沙盒測試、安全放行
Usage Guidance
This skill implements the advertised audit/sandbox flow, but review the code before installing. Specific concerns: (1) gatekeeper.ts executes an external installer via child_process.execSync using a hard-coded Windows path (C:/Users/ReaMasTer/...), which is unusual and may run arbitrary code on installation — ask the author why this path is used or remove/replace it with a platform-appropriate installer call. (2) The script uses cpSync and rmSync to copy and delete skill directories (quarantine), so a bug or malicious change could remove files outside the intended directory; verify path handling and consider running only in an isolated/test environment first. (3) The tool stores a VirusTotal API key in ~/.opencode/config/gatekeeper.json — ensure you are comfortable storing that key locally. Recommended actions: inspect the full source for the execSync usage and any other external calls, run the tool inside a disposable VM/container before using it on a production machine, back up ~/.opencode, and prefer a version that uses a documented, platform-agnostic installer mechanism rather than a hard-coded path. If you cannot verify the code or get clarification, treat this skill as untrusted.
Capability Analysis
Type: OpenClaw Skill
Name: skill-gatekeeper
Version: 2.0.0
The skill is designed as a security auditing tool but contains a critical shell injection vulnerability and non-portable code. In gatekeeper.ts, the 'installWithAudit' function passes the user-provided 'slug' argument directly into a shell command via execSync without sanitization. Furthermore, the script uses a hardcoded absolute path to a specific local user directory (C:/Users/ReaMasTer/...) for the 'clawhub' binary, which is a significant implementation flaw. While the stated intent is defensive (static analysis and VirusTotal integration), these vulnerabilities allow for potential command execution on the host system.
Capability Assessment
Purpose & Capability
Name/description claim an automated audit/sandbox system and the code largely implements that (sandbox copy, local pattern scan, VirusTotal lookup). However there is an odd/hard-coded call to a Windows Node installer path (C:/Users/ReaMasTer/...) and the code uses child_process.execSync to run an external installer — this is unexpected for a cross-platform Bun tool and suggests either sloppy engineering or a potential backdoor/incoherence.
Instruction Scope
SKILL.md instructions map to the CLI implemented in gatekeeper.ts (audit/install/config). The runtime will copy skills into a sandbox, scan files, call VirusTotal, and then quarantine or delete originals. Those actions are within the stated scope, but the code performs destructive filesystem operations (cpSync + rmSync) and executes an external installer command; both require reviewing because they can modify or remove skill files and invoke arbitrary external code.
Install Mechanism
No install spec is used; this is effectively an instruction-only skill with an included Bun script. No external archives or downloads are staged by an installer spec. However, the script itself calls external commands (execSync) which may invoke other installers at runtime.
Credentials
The skill requests no environment variables but reads/writes config and stores a VirusTotal API key under ~/.opencode/config/gatekeeper.json. Storing the VT key locally is expected for the feature. Still, the skill will read and modify user home paths (~/.opencode/*), which is reasonable for a gatekeeper but should be accepted only if you trust the code.
Persistence & Privilege
The skill is not force-installed (always: false) and does not request platform-level privileges. It does write to its own config directory and can move/delete skill directories (quarantine), which is consistent with its purpose but means it has the ability to modify other installed skills in ~/.opencode/skill.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install skill-gatekeeper - After installation, invoke the skill by name or use
/skill-gatekeeper - Provide required inputs per the skill's parameter spec and get structured output
Version History
v2.0.0
v2.0 - 自動化安全審核門禁系統
v1.0.0
Initial release - 自動化安全審核系統
Metadata
Frequently Asked Questions
What is Skill Gatekeeper?
技能門禁系統 - 自動審核、沙盒測試、安全放行. It is an AI Agent Skill for Claude Code / OpenClaw, with 211 downloads so far.
How do I install Skill Gatekeeper?
Run "/install skill-gatekeeper" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Skill Gatekeeper free?
Yes, Skill Gatekeeper is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Skill Gatekeeper support?
Skill Gatekeeper is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Skill Gatekeeper?
It is built and maintained by lanew197894fun-cmd (@lanew197894fun-cmd); the current version is v2.0.0.
More Skills