← 返回 Skills 市场
harrylabsj

Contract Risk Scan

作者 haidong · GitHub ↗ · v1.0.1 · MIT-0
cross-platform ✓ 安全检测通过
241
总下载
0
收藏
1
当前安装
2
版本数
在 OpenClaw 中安装
/install contract-risk-scan
功能描述
Scan contracts for common risk clauses and potential issues. Use when the user asks about 合同风险、合同审查、条款风险、合同问题、帮我看合同、合同检查, or wants to identify problematic cl...
使用说明 (SKILL.md)

Contract Risk Scan

Overview

This skill helps users identify common risk clauses and potential issues in contract drafts. It scans for problematic language, ambiguous terms, and high-risk provisions that may need attention.

⚠️ Important Disclaimer: This tool provides preliminary risk identification only. It does not constitute legal advice, nor does it replace professional legal counsel. Always consult a qualified attorney for important contract decisions.

When to Use This Skill

  • Reviewing a contract draft before signing
  • Identifying potentially risky clauses
  • Getting a quick overview of contract concerns
  • Preparing questions for legal consultation

Limitations

  • Only identifies common risk patterns, not all possible issues
  • Cannot assess context-specific risks
  • Does not evaluate enforceability under specific jurisdictions
  • Not a substitute for professional legal review

Workflow

  1. Receive contract text — User provides contract content or specific clauses
  2. Identify contract type — Determine if it's a service agreement, NDA, employment contract, lease, etc.
  3. Scan for risks — Check against common risk patterns (see references/common-risks.md)
  4. Report findings — Present identified risks with severity levels and explanations
  5. Suggest next steps — Recommend consulting an attorney for high-risk items

Risk Severity Levels

Level Description Action Recommended
🔴 Critical High-risk clauses that could cause significant harm Consult attorney immediately
🟡 Warning Potentially problematic clauses needing review Discuss with attorney
🟢 Advisory Minor issues or suggestions for improvement Consider revisions

Common Risk Categories

1. Liability & Indemnification

  • Unlimited liability clauses
  • One-sided indemnification
  • Missing liability caps

2. Termination

  • No termination for convenience
  • Excessive notice periods
  • Harsh termination penalties

3. Payment Terms

  • Net 60+ payment terms
  • No late payment penalties
  • Unclear payment schedules

4. Intellectual Property

  • Unclear IP ownership
  • Overly broad IP assignments
  • Missing license grants

5. Confidentiality

  • Indefinite confidentiality obligations
  • Unclear definition of confidential info
  • Missing return/destruction clauses

6. Dispute Resolution

  • Unfair venue selection
  • Missing arbitration/mediation clauses
  • One-sided attorney fee provisions

Usage

Basic Scan

"帮我扫描这份合同的风险"
"检查这个条款有没有问题"
"合同风险审查"

Specific Focus

"重点看付款条款的风险"
"检查知识产权相关条款"
"看看违约责任部分"

Output Format

For each identified risk:

  • Clause location (section/paragraph reference)
  • Risk description (what's problematic)
  • Severity level (🔴🟡🟢)
  • Suggested action (what to consider)

References

For detailed risk patterns and examples, see:

Privacy Note

Contract content is processed for risk analysis only. No contract data is stored or transmitted to third parties.

安全使用建议
This appears to be a straightforward local contract-risk scanner: it uses regex rules to flag common problematic clauses and contains tests and an example script. Before installing, consider: (1) It is a preliminary, non-exhaustive tool and not legal advice — consult a lawyer for important contracts. (2) The scanner may produce false positives/negatives because it relies on pattern matching; review flagged context manually. (3) If you plan to run the included Node script in an environment where contract text is sensitive, ensure the runtime environment (your machine or agent) is trusted — the repository itself does not transmit or store data, but your agent or other installed tooling might. Otherwise the skill is internally coherent and proportionate to its stated purpose.
功能分析
Type: OpenClaw Skill Name: contract-risk-scan Version: 1.0.1 The skill is a legitimate contract analysis tool that uses regular expressions to identify common legal risks (e.g., unlimited liability, auto-renewal) in provided text. The core logic in `scripts/contract-scanner.js` is transparent, contains no network or file-system write operations, and includes clear disclaimers regarding legal advice. No evidence of data exfiltration, malicious execution, or prompt injection was found.
能力评估
Purpose & Capability
The name and description (contract risk scanning) match the provided code and reference data: regex-based risk patterns, scanning functions, examples, and test cases. Required environment, binaries, and config paths are empty — appropriate for a text-scanning tool.
Instruction Scope
SKILL.md restricts behavior to receiving contract text, identifying contract type, scanning against documented risk patterns, and reporting results. The runtime code performs only local regex scans and text formatting; it does not read unrelated system files or attempt network transmission. The privacy claim (no data stored/transmitted) aligns with the code (no network or persistence calls).
Install Mechanism
There is no install spec (skill is instruction/code-only). The package contains Node.js scripts and a small Python example and tests — all local files. No external downloads, package installs, or extracted archives are present.
Credentials
The skill requests no environment variables, credentials, or config paths. All processing is local and the number and type of environment requests are proportionate to the stated purpose.
Persistence & Privilege
The skill is not always-enabled and does not request elevated or persistent privileges. It does not modify other skills or system-wide settings. Files included are standard scripts and tests for local use.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install contract-risk-scan
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /contract-risk-scan 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.1
Bump version
v1.0.0
Initial release: Scan contracts for 15+ common risk patterns with severity classification
元数据
Slug contract-risk-scan
版本 1.0.1
许可证 MIT-0
累计安装 2
当前安装数 1
历史版本数 2
常见问题

Contract Risk Scan 是什么?

Scan contracts for common risk clauses and potential issues. Use when the user asks about 合同风险、合同审查、条款风险、合同问题、帮我看合同、合同检查, or wants to identify problematic cl... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 241 次。

如何安装 Contract Risk Scan?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install contract-risk-scan」即可一键安装,无需额外配置。

Contract Risk Scan 是免费的吗?

是的,Contract Risk Scan 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。

Contract Risk Scan 支持哪些平台?

Contract Risk Scan 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 Contract Risk Scan?

由 haidong(@harrylabsj)开发并维护,当前版本 v1.0.1。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论