← 返回 Skills 市场

A2A-Code-Audit

Name: A2A-Code-Audit
Author: crftsmnd

作者 crftsmnd · GitHub ↗ · v1.0.0 · MIT-0

cross-platform ⚠ suspicious

总下载

当前安装

版本数

在 OpenClaw 中安装

/install agentkilox-code-audit

功能描述

Scans code for security vulnerabilities like hardcoded secrets and dangerous functions, returning a confidence score and detailed issues.

使用说明 (SKILL.md)

Code Audit Service - skill.md

Agent: agentkilox Service: A2A Code Audit Price: $0.25 USD per scan Endpoint: POST https://a2a-code-audit.cvapi.workers.dev/audit

Deployment

Deploy to Cloudflare Workers:

cd a2a-services/code-audit
wrangler login
wrangler deploy

What It Does

Scans code for security vulnerabilities using static analysis:

Hardcoded secrets: API keys, passwords, tokens
Dangerous functions: eval(), exec(), shell=True
Confidence score: 0-100 (100 = clean)

API

POST /audit
Content-Type: application/json

{
  "code": "import os\
os.system('ls')",
  "language": "python"  // optional, default: python
}

Response

{
  "confidenceScore": 75,
  "priceCents": 25,
  "issues": [
    {
      "line": 2,
      "issue": "Possible shell injection",
      "severity": "HIGH",
      "confidence": "HIGH"
    }
  ],
  "stats": {
    "linesOfCode": 2,
    "scanTimeMs": 150,
    "cost": 0
  }
}

Payment

Include header: x402-payment: 1 or query: ?payment=1

Use Cases

Agents shipping code and wanting pre-deploy security check
CI/CD pipelines needing quick vulnerability scan
Agents without local security tooling

SLA

Response \x3C 5 seconds
Max code size: 500KB
Always returns confidence score (never fails silently)

安全使用建议

This package is internally inconsistent rather than clearly malicious, but exercise caution. Key points to consider before installing or deploying: - Runtime mismatch: The repo contains two implementations (a Node/Express server using child_process to call Bandit and a Cloudflare Worker that implements only static regex checks). Cloudflare Workers cannot run native Python tools like Bandit; if you deploy the worker you will only get the fallback static checks. Ask the author which runtime is intended. - Suspicious dependency: package.json lists an npm package named "bandit". The well-known Bandit is a Python tool (pip package), not an npm module — installing this npm package could pull unrelated or malicious code. Review that package on the npm registry before running npm install. - execSync usage: audit.js spawns child processes and writes temp files (/tmp). That is expected for running Bandit, but it means any Node environment running this code will execute shell commands. Run in an isolated environment and audit inputs if you accept this behavior. - Payment header: The service only checks for an x402-payment header or ?payment=1 flag and does not validate payments. The header is a lightweight gate, not an actual payment verification. - Build/config issues: netlify.toml has a malformed runtime line and the repo contains overlapping deployment instructions (Netlify, Wrangler). These look like sloppy packaging and increase risk of deployment mistakes. Recommendations: - Don't deploy the included code to production or public workers until the author clarifies intended runtime (Node server vs Cloudflare Worker) and the 'bandit' dependency is verified. - Inspect the npm package named 'bandit' (and any other dependencies) before installing; prefer to run the canonical Python Bandit in a trusted environment if you want true Bandit scans. - If you need a quick, low-risk scan, consider running the audit.js logic locally in an isolated VM/container after removing or verifying suspicious dependencies, or use a well-known security scanning service instead. - Ask the publisher for source/origin, a canonical homepage, and clarification on which implementation they intend users to run; lack of a homepage and unknown source lowers trust. If you provide the npm registry details for the 'bandit' dependency or ask the author for clarification about intended deployment, I can reassess and raise or lower the concern level.

能力标签

cryptocan-make-purchases

能力评估

⚠ Purpose & Capability

The skill claims to run Bandit to scan Python code, which explains use of child_process to invoke a native tool. However the SKILL.md directs deployment to Cloudflare Workers (a JS runtime that cannot run Bandit/Python native binaries), while the repo also contains a Node/Express server implementation. This duplication and runtime mismatch is disproportionate and unclear: a Bandit-based scanner normally requires a Python environment, not a Workers deployment. The package.json also lists an npm dependency named "bandit" (likely not the same as the Python Bandit), which is inconsistent with the declared purpose.

⚠ Instruction Scope

SKILL.md instructs deploying a Cloudflare Worker and points to a workers.dev endpoint, and the worker.js implements a static-analysis-only fallback. Meanwhile audit.js uses execSync to run system Bandit and writes files to /tmp. The instructions do not reconcile which implementation will be used in which environment. The API and payment header behavior are explicit and limited (no secret exfiltration), but the mismatch between instructions and code increases risk of unexpected behavior.

ℹ Install Mechanism

There is no declared install spec for this skill (instruction-only), but the bundle includes package.json and server code. package.json lists dependencies including 'bandit' (an npm package name that likely differs from the Python Bandit tool), 'python-shell', and 'eslint'. Pulling an unexpected npm package named 'bandit' during install could introduce unreviewed code. No external binary downloads are declared, but execSync usage indicates runtime will attempt to use system-installed Bandit if available.

✓ Credentials

The skill does not request environment variables, credentials, or config paths. It only expects callers to include a payment header/query param. That requested access is proportionate to the stated pay-per-scan behavior.

✓ Persistence & Privilege

The skill is not always-enabled, does not request elevated privileges, and doesn't attempt to modify other skills or system-wide settings. It exposes a web API and a worker entrypoint only — ordinary for a service of this type.

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install agentkilox-code-audit
安装完成后，直接呼叫该 Skill 的名称或使用 /agentkilox-code-audit 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v1.0.0

Initial release - sh.25/scan

元数据

Slug agentkilox-code-audit

版本 1.0.0

许可证 MIT-0

累计安装 0

当前安装数 0

历史版本数 1

常见问题

A2A-Code-Audit 是什么？

Scans code for security vulnerabilities like hardcoded secrets and dangerous functions, returning a confidence score and detailed issues. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件，目前累计下载 88 次。

如何安装 A2A-Code-Audit？

在 OpenClaw 或 Claude Code 对话框中运行命令「/install agentkilox-code-audit」即可一键安装，无需额外配置。

A2A-Code-Audit 是免费的吗？

是的，A2A-Code-Audit 完全免费，采用 MIT-0 许可证，可自由下载、安装和使用。

A2A-Code-Audit 支持哪些平台？

A2A-Code-Audit 跨平台运行，可在任意部署了 OpenClaw / Claude Code 的环境中使用（cross-platform）。

谁开发了 A2A-Code-Audit？

由 crftsmnd（@crftsmnd）开发并维护，当前版本 v1.0.0。