← Back to Skills Marketplace
dongrebeccahhh-boop

Skill Validator

by dongrebeccahhh-boop · GitHub ↗ · v1.1.0 · MIT-0
cross-platform ⚠ suspicious
265
Downloads
0
Stars
0
Active Installs
2
Versions
Install in OpenClaw
/install xiaosanwan-skill-validator
Description
小三万技能验证工具,自动测试新安装 Skill 的功能完整性、边界情况、潜在问题,并提供完善建议。触发词:验证skill、测试新技能、skill能用吗、检查skill功能。
Usage Guidance
这套工具确实做了你期望的验证工作(检查文档、找脚本、运行示例、生成报告),但实现有明显风险。不要在主机的常规环境上直接用它来验证来自不受信任来源的 skills。具体建议: - 在隔离环境中运行:把验证器放到容器或沙箱(Docker、firejail 等),并在容器中挂载一个只含待测 skill 的临时目录。SECURITY.md 已建议使用沙箱;请遵循该建议。 - 先做静态审查:在执行任何目标脚本前,先用静态检测(grep 危险命令、查找网络调用、base64+eval 模式等)决定是否允许执行。SECURITY.md 提供了示例检测函数。 - 添加 runtime 限制:如果必须执行,给每次执行加上 timeout(timeout/ulimit)、内存/文件限制,并记录审计日志。 - 修正路径与脚本差异:注意 SKILL.md 与脚本中的路径不一致(~/.openclaw vs /root/.openclaw),并确认 validate-all.sh、validate-all.sh 在清单是否缺失。 - 手工审查关键点:重点检查 validate.sh 中对 first_script 的直接执行和对 diagnose.sh 的调用(这些位置能运行任意代码)。在确认安全前,不要对生产主机运行 validate-recent 或对所有 skills 执行批量验证。 综上:该技能“看起来是它所声称的验证器”,但目前实现缺乏必要的隔离与防护措施——在不受信任的环境下使用前请先改进或只在隔离环境中运行。
Capability Analysis
Type: OpenClaw Skill Name: xiaosanwan-skill-validator Version: 1.1.0 The skill bundle is a utility designed to validate other OpenClaw skills, but it contains a significant security risk: it automatically executes arbitrary shell scripts from the target skill's directory (specifically in scripts/validate.sh) to test functionality. While the included SECURITY.md file explicitly acknowledges this Remote Code Execution (RCE) risk and suggests sandboxing or static analysis, the current implementation lacks these protections. This creates a scenario where a user attempting to 'validate' a malicious skill would inadvertently trigger its payload.
Capability Assessment
Purpose & Capability
名称和说明称为“Skill 验证器”,脚本确实实现了检查、静态搜索、运行被测 Skill 的脚本并生成报告——总体上与目的对齐。但实现细节有不一致:SKILL.md 示例使用 ~/.openclaw/... 路径,而脚本硬编码 SKILL_DIR="/root/.openclaw/workspace/skills",SKILL.md 提到的 validate-all.sh 在包清单中缺失。读取并执行目标 Skill 的脚本是验证器需要做的事情,但路径和文件清单的不一致是设计/部署上的问题。
Instruction Scope
validate.sh 会直接执行目标 skill 的脚本(例如 output=$($first_script 2>&1) 和 bash "$SKILL_PATH/scripts/diagnose.sh" | head -5),并对目标目录做广泛的 grep/读取操作。脚本执行没有沙箱、没有 timeout/ulimit(虽然 SECURITY.md 建议了这些修复),因此在验证未知或不受信任的 skills 时可能导致任意删除、数据泄露或后门植入。脚本还会遍历并读取目标 skill 的所有文件(grep -r),扩大了读取敏感数据的可能性。
Install Mechanism
这是 instruction + bundled scripts 的技能(无外部 install spec、无下载),不会在安装阶段从不可信 URL 拉取代码;这降低了供应链下载风险。
Credentials
技能声明不需要任何环境变量或凭据,但运行时会检查目标 Skill 的环境变量并可能 report(例如 EMAIL_*)。脚本硬编码了对 /root/.openclaw/workspace/skills 的访问,这要求对该路径的读取/列出权限(在多用户或非-root 环境中不合适)。总体上没有请求外部凭据,但对主机文件系统(尤其 root 路径)的访问权是隐含且可能不必要或过宽的。
Persistence & Privilege
技能没有设置 always:true,也不修改其他技能配置,但能在运行时直接执行目标技能的脚本,这赋予它在执行期间执行任意代码的能力(高影响面)。尽管不是持久化特权,但该执行能力结合无沙箱/无资源限制构成重大运行时风险。
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install xiaosanwan-skill-validator
  3. After installation, invoke the skill by name or use /xiaosanwan-skill-validator
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.1.0
新增 UX 用户体验验证功能:可视化、时区处理、多语言支持、用户引导四维验证;自动生成最佳实践建议
v1.0.0
xiaosanwan-skill-validator 1.0.0 - 首个版本发布,为 OpenClaw 平台提供自动化 Skill 功能验证能力 - 支持举例法、反证法、破解法、对比法等多维度验证 - 输出详细 Skill 验证报告及完善建议 - 提供命令行与对话两种触发方式 - 针对不同类型技能(API、工具、内容生成、自动化)采用分层验证策略
Metadata
Slug xiaosanwan-skill-validator
Version 1.1.0
License MIT-0
All-time Installs 0
Active Installs 0
Total Versions 2
Frequently Asked Questions

What is Skill Validator?

小三万技能验证工具,自动测试新安装 Skill 的功能完整性、边界情况、潜在问题,并提供完善建议。触发词:验证skill、测试新技能、skill能用吗、检查skill功能。 It is an AI Agent Skill for Claude Code / OpenClaw, with 265 downloads so far.

How do I install Skill Validator?

Run "/install xiaosanwan-skill-validator" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Skill Validator free?

Yes, Skill Validator is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does Skill Validator support?

Skill Validator is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Skill Validator?

It is built and maintained by dongrebeccahhh-boop (@dongrebeccahhh-boop); the current version is v1.1.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments