← 返回 Skills 市场

claim-risk-auditor

Name: claim-risk-auditor
Author: 52yuanchangxing

作者 vx：17605205782 · GitHub ↗ · v1.0.0 · MIT-0

cross-platform ⚠ suspicious

298

总下载

当前安装

版本数

在 OpenClaw 中安装

/install claim-risk-auditor

功能描述

检查文案、论文、宣传稿或产品说明中的高风险断言，标出证据缺口并给出更稳妥的改写。

使用说明 (SKILL.md)

Claim Risk Auditor

这是一个“断言风险审计” skill。

主要用途

适合检查：

产品宣传文案
品牌介绍
招商文案
推广脚本
学术写作中的绝对化表达
论文讨论部分中的过度结论
培训课文案
直播口播文案

调用方式

当用户说：

读取剪贴板并检查风险表达
帮我找出容易翻车的断言
看看哪些话没有证据支撑
帮我改得更稳一点

你应运行：

node {baseDir}/scripts/read_clipboard.mjs

安全使用建议

This skill appears to be what it claims: a clipboard-based claim auditor. Before using, note: (1) it requires pbpaste so it works on macOS only; (2) it will read and print whatever is in your clipboard — do not copy passwords, tokens, private documents, or other secrets before running; (3) the skill does not include network calls or request credentials, so it does not by itself exfiltrate data, but if you are concerned about the agent invoking it autonomously, disable autonomous invocation or only run it after explicitly copying the text you want audited. If you need cross‑platform clipboard support or stricter safeguards, request changes (e.g., explicit user confirmation step or alternative clipboard methods).

功能分析

Type: OpenClaw Skill Name: claim-risk-auditor Version: 1.0.0 The skill utilizes the `pbpaste` command via `scripts/read_clipboard.mjs` to read and output the full contents of the system clipboard to the AI agent. While this functionality is aligned with the stated purpose of auditing text for risks, clipboard access is a high-risk capability that can inadvertently expose sensitive information like passwords or private keys. There is no evidence of intentional exfiltration or malicious logic, but the broad access to clipboard data warrants a suspicious classification.

能力评估

ℹ Purpose & Capability

Name/description match the implementation: the skill is designed to read clipboard text and audit claims. Declared binaries (node and pbpaste) align with that purpose. Minor mismatch: SKILL metadata requires pbpaste (macOS) but the skill lists no OS restriction — it will fail on non‑macOS systems.

ℹ Instruction Scope

SKILL.md instructs the agent to run scripts/read_clipboard.mjs, which simply invokes pbpaste and prints the clipboard contents. This stays within the stated scope (reading content the user asked to check). However, reading the clipboard can expose sensitive or secret data; the instructions do not direct any transmission off‑device, but the agent will have access to whatever is on the clipboard.

✓ Install Mechanism

Instruction-only skill with no install spec and a tiny included script. Nothing is downloaded or written to disk beyond the provided code files.

✓ Credentials

No environment variables, credentials, or external config paths are requested. The single external dependency (pbpaste) is appropriate for clipboard reading on macOS.

ℹ Persistence & Privilege

The skill is not always-enabled and is user-invocable (normal). Be aware: the platform allows autonomous invocation by default — if the agent runs this skill autonomously it could read clipboard contents without an explicit user copy/consent. That combination (autonomous invocation + clipboard access) increases data‑exposure risk even though the skill itself does not exfiltrate data.

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install claim-risk-auditor
安装完成后，直接呼叫该 Skill 的名称或使用 /claim-risk-auditor 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v1.0.0

Initial release of claim-risk-auditor. - Checks for high-risk assertions in copy, academic papers, promotional scripts, and product descriptions. - Highlights evidence gaps and suggests more cautious rephrasing. - Useful for marketing, branding, training, livestream scripts, and academic writing. - Supports input via clipboard for quick risk auditing.

元数据

Slug claim-risk-auditor

版本 1.0.0

许可证 MIT-0

累计安装 1

当前安装数 1

历史版本数 1

常见问题