← 返回 Skills 市场
581
总下载
0
收藏
1
当前安装
1
版本数
在 OpenClaw 中安装
/install crypto-2
功能描述
Encryption and decryption toolkit for string and byte data. Supports Fernet (AES-128) symmetric encryption, fallback XOR encryption, custom password protecti...
使用说明 (SKILL.md)
Pywayne Crypto
加密解密工具集,支持对称加密、自定义密码和代码混淆保护。
Quick Start
from pywayne.crypto import encrypt, decrypt
# 基础加密/解密
encrypted = encrypt("Hello World")
decrypted = decrypt(encrypted)
print(decrypted) # 输出: Hello World
# 使用自定义密码加密
encrypted = encrypt("Secret message", "my_password")
decrypted = decrypt(encrypted, "my_password")
print(decrypted) # 输出: Secret message
encrypt - 加密函数
加密字符串或字节数据。
# 文本加密
encrypted = encrypt("机密信息", "password")
# 字节加密
byte_data = b"binary data"
encrypted = encrypt(byte_data, "password")
参数:
| 参数 | 类型 | 说明 |
|---|---|---|
text |
str or bytes | 要加密的文本数据或字节数据 |
password |
str | 可选,自定义密码。不提供时使用默认密钥 |
返回值:str - base64 编码的加密字符串
参数类型错误处理:
- 当输入不是
str或bytes时抛出ValueError
decrypt - 解密函数
解密之前加密的字符串。
# 解密(使用默认密钥)
decrypted = decrypt(encrypted_text)
# 解密(使用自定义密码)
decrypted = decrypt(encrypted_text, "my_password")
参数:
| 参数 | 类型 | 说明 |
|---|---|---|
encrypted_text |
str | 要解密的 base64 编码字符串 |
password |
str | 可选,解密密码。必须与加密时使用的密码相同 |
返回值:str - 解密后的原始字符串
批量操作
支持批量加密和解密操作。
from pywayne.crypto import encrypt, decrypt
data = ["数据1", "数据2", "数据3"]
password = "batch_password"
# 批量加密
encrypted_list = encrypt_batch(data, password)
# 批量解密
decrypted_list = decrypt_batch(encrypted_list, password)
参数:
| 函数 | 参数 | 说明 |
|---|---|---|
encrypt_batch(data_list, password) |
data_list: 数据列表 | password: 密码 |
decrypt_batch(encrypted_list, password) |
encrypted_list: 加密数据列表 | password: 密码 |
返回值:list[str] - 解密结果列表(失败项目为 None)
配置文件管理
保存和加载加密配置文件(JSON 格式)。
from pywayne.crypto import encrypt, decrypt
# 保存配置
config = {"database": {"host": "localhost", "username": "admin", "password": "secret"}}
save_config(config, "master_password", "config.enc")
# 加载配置
loaded_config = load_config("master_password", "config.enc")
print(loaded_config) # 输出: {'database': {...}}
参数:
| 函数 | 参数 | 说明 |
|---|---|---|
save_config(config_dict, password, filename) |
config_dict: 配置字典 | password: 加密密码 |
load_config(password, filename) |
password: 解密密码 | filename: 配置文件名 |
异常:
ValueError:配置文件解密失败(密码错误或数据损坏)
加密策略
模块采用分层加密策略,优先使用 Fernet,回退到 XOR。
| 策略 | 说明 | |
|---|---|---|
| Fernet 加密(推荐) | AES-128 对称加密,带消息完整性验证 | |
| XOR 加密(回退) | 简单异或加密,无依赖,基本功能 | |
| 代码混淆保护 | Base64 编码隐藏、动态函数生成、命名空间清理 |
错误处理
完善的异常处理机制,支持密码错误、数据格式错误、解密失败等情况。
# 密码错误
try:
decrypted = decrypt(encrypted_text, "wrong_password")
except ValueError:
print("错误: 解密失败,密码不正确")
# 数据格式错误
try:
encrypted = encrypt(123)
except ValueError:
print("错误: 输入类型必须是字符串或字节")
最佳实践
- 密码妥善保管,避免硬编码在源码中
- 高安全性要求的应用使用专业加密库
- 密钥通过环境变量传递,避免写入日志
安全使用建议
This SKILL.md looks like documentation for a Python library, but the skill bundle does not include the library nor an install source. Before installing or using it: 1) verify the package exists from a trusted source (PyPI/GitHub) and review its code; 2) avoid using any 'default key' — require explicit key management and avoid hardcoded secrets; 3) be cautious about the 'code obfuscation' feature (it can be abused to hide malicious behavior); 4) prefer a skill that either bundles audited code or provides a clear, trusted install URL and provenance. If you cannot verify the upstream project and its code, do not use this skill for protecting real secrets.
功能分析
Type: OpenClaw Skill
Name: crypto-2
Version: 0.1.0
The skill bundle describes an encryption and decryption toolkit. The `SKILL.md` file transparently documents functions for symmetric encryption (Fernet/XOR), batch processing, and saving/loading encrypted configuration files. It also mentions 'code obfuscation protection' as a feature of the toolkit, which, while a capability that could be misused, is presented as a utility rather than an instruction for malicious action. There is no evidence of prompt injection with malicious intent, data exfiltration, unauthorized execution, or persistence mechanisms. The documented file I/O for configuration files is explicit and aligned with the skill's stated purpose.
能力评估
Purpose & Capability
The skill claims to be an encryption toolkit (pywayne.crypto) and shows Python APIs, but there is no code bundle, no install spec, and no homepage or source. A consumer installing this skill would expect the library to be provided or a safe install path (PyPI/GitHub), which is missing — that mismatch is incoherent with the described purpose.
Instruction Scope
The SKILL.md instructs using encrypt/decrypt, batch operations, save/load config (writing encrypted files), and mentions code obfuscation. It does not instruct reading unrelated system files or exfiltrating data, but it assumes filesystem access and handling of sensitive secrets. The doc also recommends using environment variables for keys but does not declare or require any specific env vars; default key behavior is unspecified (potentially insecure). The inclusion of 'code obfuscation' is notable because it can be abused to hide malicious code.
Install Mechanism
There is no install spec. Because the instructions reference 'from pywayne.crypto import ...' an agent or user would need to install that package from somewhere; no trusted source (PyPI name, GitHub repo, release URL) is provided. That lack of provenance increases risk if an agent attempts to fetch/install an unknown package.
Credentials
The skill requests no env vars or credentials in metadata, but the docs advise passing keys via environment variables and refer to a 'default key' when no password is provided. Absence of declared required secrets while recommending env-based keys is a mismatch. The skill does not explicitly request unrelated credentials, which is appropriate, but key management details are underspecified and could lead to insecure defaults.
Persistence & Privilege
The skill does not request always:true or any elevated persistent privileges. It is user-invocable and allows model invocation (platform defaults); nothing here amplifies privilege beyond normal.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install crypto-2 - 安装完成后,直接呼叫该 Skill 的名称或使用
/crypto-2触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v0.1.0
pywayne-crypto v0.1.0 initial release
- Provides encryption and decryption toolkit for strings and bytes with Fernet (AES-128) and fallback XOR encryption.
- Supports custom password protection for data, batch encryption/decryption, and config file (JSON) encryption.
- Offers code obfuscation features including base64 hiding and namespace cleanup.
- Includes detailed parameter validation and error handling for type errors and decryption failures.
- Documentation includes practical usage, API details, best practices, and comprehensive code examples.
元数据
常见问题
Pywayne Crypto 是什么?
Encryption and decryption toolkit for string and byte data. Supports Fernet (AES-128) symmetric encryption, fallback XOR encryption, custom password protecti... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 581 次。
如何安装 Pywayne Crypto?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install crypto-2」即可一键安装,无需额外配置。
Pywayne Crypto 是免费的吗?
是的,Pywayne Crypto 完全免费(开源免费),可自由下载、安装和使用。
Pywayne Crypto 支持哪些平台?
Pywayne Crypto 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Pywayne Crypto?
由 wangyendt(@wangyendt)开发并维护,当前版本 v0.1.0。
推荐 Skills