← 返回 Skills 市场
Claw Skill Vetter Pro
作者
Williamwang-wh
· GitHub ↗
· v1.0.0
· MIT-0
170
总下载
0
收藏
2
当前安装
1
版本数
在 OpenClaw 中安装
/install claw-skill-vetter-pro
功能描述
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope,...
使用说明 (SKILL.md)
Skill Vetter 🔒
Security-first vetting protocol for AI agent skills. Never install a skill without vetting it first.
When to Use
- Before installing any skill from ClawdHub
- Before running skills from GitHub repos
- When evaluating skills shared by other agents
- Anytime you're asked to install unknown code
Vetting Protocol
Step 1: Source Check
Questions to answer:
- [ ] Where did this skill come from?
- [ ] Is the author known/reputable?
- [ ] How many downloads/stars does it have?
- [ ] When was it last updated?
- [ ] Are there reviews from other agents?
Step 2: Code Review (MANDATORY)
Read ALL files in the skill. Check for these RED FLAGS:
🚨 REJECT IMMEDIATELY IF YOU SEE:
─────────────────────────────────────────
• curl/wget to unknown URLs
• Sends data to external servers
• Requests credentials/tokens/API keys
• Reads ~/.ssh, ~/.aws, ~/.config without clear reason
• Accesses MEMORY.md, USER.md, SOUL.md, IDENTITY.md
• Uses base64 decode on anything
• Uses eval() or exec() with external input
• Modifies system files outside workspace
• Installs packages without listing them
• Network calls to IPs instead of domains
• Obfuscated code (compressed, encoded, minified)
• Requests elevated/sudo permissions
• Accesses browser cookies/sessions
• Touches credential files
─────────────────────────────────────────
Step 3: Permission Scope
Evaluate:
- [ ] What files does it need to read?
- [ ] What files does it need to write?
- [ ] What commands does it run?
- [ ] Does it need network access? To where?
- [ ] Is the scope minimal for its stated purpose?
Step 4: Risk Classification
| Risk Level | Examples | Action |
|---|---|---|
| 🟢 LOW | Notes, weather, formatting | Basic review, install OK |
| 🟡 MEDIUM | File ops, browser, APIs | Full code review required |
| 🔴 HIGH | Credentials, trading, system | Human approval required |
| ⛔ EXTREME | Security configs, root access | Do NOT install |
Output Format
After vetting, produce this report:
SKILL VETTING REPORT
═══════════════════════════════════════
Skill: [name]
Source: [ClawdHub / GitHub / other]
Author: [username]
Version: [version]
───────────────────────────────────────
METRICS:
• Downloads/Stars: [count]
• Last Updated: [date]
• Files Reviewed: [count]
───────────────────────────────────────
RED FLAGS: [None / List them]
PERMISSIONS NEEDED:
• Files: [list or "None"]
• Network: [list or "None"]
• Commands: [list or "None"]
───────────────────────────────────────
RISK LEVEL: [🟢 LOW / 🟡 MEDIUM / 🔴 HIGH / ⛔ EXTREME]
VERDICT: [✅ SAFE TO INSTALL / ⚠️ INSTALL WITH CAUTION / ❌ DO NOT INSTALL]
NOTES: [Any observations]
═══════════════════════════════════════
Quick Vet Commands
For GitHub-hosted skills:
# Check repo stats
curl -s "https://api.github.com/repos/OWNER/REPO" | jq '{stars: .stargazers_count, forks: .forks_count, updated: .updated_at}'
# List skill files
curl -s "https://api.github.com/repos/OWNER/REPO/contents/skills/SKILL_NAME" | jq '.[].name'
# Fetch and review SKILL.md
curl -s "https://raw.githubusercontent.com/OWNER/REPO/main/skills/SKILL_NAME/SKILL.md"
Trust Hierarchy
- Official OpenClaw skills → Lower scrutiny (still review)
- High-star repos (1000+) → Moderate scrutiny
- Known authors → Moderate scrutiny
- New/unknown sources → Maximum scrutiny
- Skills requesting credentials → Human approval always
Remember
- No skill is worth compromising security
- When in doubt, don't install
- Ask your human for high-risk decisions
- Document what you vet for future reference
Paranoia is a feature. 🔒🦀
安全使用建议
This skill is a manual vetting checklist and appears coherent and low-risk, but verify provenance before relying on it: confirm the author/owner, ensure the _meta.json ownerId matches the registry/source, and prefer running vetting actions in a sandbox or with access limited only to the target skill's files and network. Remember this tool is a checklist — it does not perform automated deep scanning, so perform human review for high-risk skills (credentials, system access, obfuscated code).
功能分析
Type: OpenClaw Skill
Name: claw-skill-vetter-pro
Version: 1.0.0
The skill-vetter-pro bundle is a defensive tool designed to provide a structured security vetting protocol for AI agents. It contains instructions and checklists in SKILL.md to help agents identify red flags like data exfiltration, credential theft, and unauthorized system access in other skills. The included shell commands are limited to querying the GitHub API for repository metadata and file lists, which is consistent with its stated purpose of evaluating third-party code.
能力评估
Purpose & Capability
Name/description match the content: SKILL.md is a manual vetting checklist and provides GitHub API curl examples. It does not request credentials or install components, which is proportionate. Note: the _meta.json ownerId differs from the registry ownerId provided in the submission metadata and there's no homepage/source URL — that provenance mismatch is worth verifying before trusting this vetter.
Instruction Scope
Instructions are a human-style checklist (read all files, look for red flags, run provided curl queries). This stays within vetting scope, but it is high-level and manual — it relies on the agent/human having access to skill files and network. It does instruct 'Read ALL files in the skill', which is expected for a vetter but means the agent must be granted file access to the target skill only (avoid giving it broader system permissions).
Install Mechanism
No install spec and no code files — lowest install risk. Nothing will be written to disk by the skill itself.
Credentials
The skill requires no environment variables, credentials, or config paths; that is proportionate for an instruction-only vetting checklist.
Persistence & Privilege
always:false and default model invocation settings are used. The skill does not request persistent installation or elevated privileges.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install claw-skill-vetter-pro - 安装完成后,直接呼叫该 Skill 的名称或使用
/claw-skill-vetter-pro触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
- Initial release of skill-vetter for version 1.0.0.
- Provides a step-by-step protocol for security-first vetting of AI agent skills before installation.
- Includes a checklist for source verification, mandatory code review with a list of red flags, permission scope assessment, and risk classification.
- Offers a standardized output format for vetting reports.
- Adds quick vetting commands and a trust hierarchy to guide security decisions.
- Emphasizes caution and documentation for all skill installations.
元数据
常见问题
Claw Skill Vetter Pro 是什么?
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope,... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 170 次。
如何安装 Claw Skill Vetter Pro?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install claw-skill-vetter-pro」即可一键安装,无需额外配置。
Claw Skill Vetter Pro 是免费的吗?
是的,Claw Skill Vetter Pro 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
Claw Skill Vetter Pro 支持哪些平台?
Claw Skill Vetter Pro 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Claw Skill Vetter Pro?
由 Williamwang-wh(@williamwang-wh)开发并维护,当前版本 v1.0.0。
推荐 Skills