← 返回 Skills 市场
suhteevah

inputshield

作者 suhteevah · GitHub ↗ · v1.0.1 · MIT-0
darwinlinuxwin32 ⚠ suspicious
86
总下载
0
收藏
0
当前安装
2
版本数
在 OpenClaw 中安装
/install inputshield
功能描述
Input validation & sanitization scanner -- catches missing validation, unsafe deserialization, ReDoS, path traversal, command injection, and XSS patterns
使用说明 (SKILL.md)

\r \r

InputShield -- Input Validation & Sanitization Scanner\r

\r InputShield scans codebases for missing input validation, unsafe deserialization, ReDoS (Regular Expression Denial of Service), path traversal, command injection, XSS via unsanitized output, and other input handling vulnerabilities. It uses regex-based pattern matching against 90 vulnerability patterns across 6 detection categories, produces markdown reports with actionable remediation recommendations, and integrates with git hooks via lefthook. 100% local. Zero telemetry.\r \r

Commands\r

\r

Free Tier (No license required)\r

\r

inputshield scan [file|directory]\r

One-shot input validation scan of files or directories.\r \r How to execute:\r

bash "\x3CSKILL_DIR>/scripts/dispatcher.sh" --path [target]\r
```\r
\r
**What it does:**\r
1. Accepts a file path or directory (defaults to current directory)\r
2. Discovers all source files (skips .git, node_modules, binaries, images, .min.js)\r
3. Runs 90 input validation vulnerability detection patterns against each file\r
4. Respects .gitignore and exclusion files\r
5. Calculates an input safety score (0-100) per file and overall\r
6. Grades: A (90-100), B (80-89), C (70-79), D (60-69), F (\x3C60)\r
7. Outputs findings with: file, line number, check ID, severity, description, recommendation\r
8. Exit code 0 if score >= 70, exit code 1 if score \x3C 70\r
9. Free tier limited to first 30 patterns (5 per category)\r
\r
**Example usage scenarios:**\r
- "Scan my code for input validation issues" -> runs `inputshield scan .`\r
- "Check for XSS vulnerabilities" -> runs `inputshield scan src/`\r
- "Find command injection risks" -> runs `inputshield scan .`\r
- "Audit input handling in my project" -> runs `inputshield scan .`\r
- "Check for ReDoS patterns" -> runs `inputshield scan .`\r
- "Find path traversal vulnerabilities" -> runs `inputshield scan src/`\r
\r
### Pro Tier ($19/user/month -- requires INPUTSHIELD_LICENSE_KEY)\r
\r
#### `inputshield scan --tier pro [file|directory]`\r
Full scan with 60 patterns (10 per category).\r
\r
**How to execute:**\r
```bash\r
bash "\x3CSKILL_DIR>/scripts/dispatcher.sh" --path [target] --tier pro --license-key "$INPUTSHIELD_LICENSE_KEY"\r
```\r
\r
**What it does:**\r
1. Validates Pro+ license\r
2. Runs expanded pattern set (60 of 90 patterns)\r
3. All free tier features plus deeper detection coverage\r
4. Unlimited file scanning\r
\r
#### `inputshield hooks install`\r
Install git pre-commit hooks that scan staged files for input validation issues before every commit.\r
\r
**How to execute:**\r
```bash\r
bash "\x3CSKILL_DIR>/scripts/dispatcher.sh" hooks install\r
```\r
\r
**What it does:**\r
1. Validates Pro+ license\r
2. Copies lefthook config to project root\r
3. Installs lefthook pre-commit hook\r
4. On every commit: scans all staged files, blocks commit if critical/high findings\r
\r
#### `inputshield hooks uninstall`\r
Remove InputShield git hooks.\r
\r
```bash\r
bash "\x3CSKILL_DIR>/scripts/dispatcher.sh" hooks uninstall\r
```\r
\r
#### `inputshield report [directory]`\r
Generate a markdown input validation report with findings, severity breakdown, and remediation steps.\r
\r
```bash\r
bash "\x3CSKILL_DIR>/scripts/dispatcher.sh" report --path [directory]\r
```\r
\r
**What it does:**\r
1. Validates Pro+ license\r
2. Runs full scan of the directory\r
3. Generates a formatted markdown report from template\r
4. Includes per-file breakdowns, input safety scores, remediation priority\r
5. Output suitable for security reviews and compliance audits\r
\r
### Team/Enterprise Tier ($39/user/month -- requires INPUTSHIELD_LICENSE_KEY with team tier)\r
\r
#### `inputshield scan --tier team [file|directory]`\r
Complete scan with all 90 patterns (15 per category).\r
\r
```bash\r
bash "\x3CSKILL_DIR>/scripts/dispatcher.sh" --path [target] --tier team --license-key "$INPUTSHIELD_LICENSE_KEY"\r
```\r
\r
#### `inputshield audit [directory]`\r
Deep input validation audit with all 90 patterns and verbose output.\r
\r
```bash\r
bash "\x3CSKILL_DIR>/scripts/dispatcher.sh" audit --path [directory] --verbose\r
```\r
\r
**What it does:**\r
1. Validates Team+ license\r
2. Runs all 90 patterns with verbose output\r
3. Per-category breakdown with detailed statistics\r
4. JSON/HTML output formats available\r
\r
#### `inputshield scan --category [IV|DS|RD|PT|CI|XS]`\r
Category-specific scan to focus on a single vulnerability class.\r
\r
```bash\r
bash "\x3CSKILL_DIR>/scripts/dispatcher.sh" --path [target] --category CI\r
```\r
\r
#### `inputshield status`\r
Show license and configuration information.\r
\r
```bash\r
bash "\x3CSKILL_DIR>/scripts/dispatcher.sh" status\r
```\r
\r
## Detection Categories\r
\r
InputShield detects 90 vulnerability patterns across 6 categories (15 patterns each):\r
\r
| Category | Code | Examples | Severities |\r
|----------|------|----------|------------|\r
| **Input Validation** | IV | Missing length checks, no type validation, raw user input acceptance, missing allowlist, no boundary checks, unvalidated numeric input, missing null checks, regex-less format validation | Critical/High/Medium/Low |\r
| **Deserialization** | DS | Unsafe JSON.parse, pickle.loads, yaml.load without SafeLoader, Java ObjectInputStream, unvalidated unmarshaling, PHP unserialize, Ruby Marshal.load, .NET BinaryFormatter | Critical/High/Medium |\r
| **ReDoS** | RD | Catastrophic backtracking, nested quantifiers, overlapping alternations, exponential patterns, unbounded repetition on complex groups, evil regex constructs | High/Medium/Low |\r
| **Path Traversal** | PT | Directory traversal (../), unsanitized file paths, user-controlled file access, symlink following, path joining with user input, open() with variables, file inclusion | Critical/High/Medium |\r
| **Command Injection** | CI | Shell exec with user input, eval(), exec(), system() with variables, subprocess with shell=True, os.popen, template injection, child_process.exec | Critical/High/Medium |\r
| **XSS/Output** | XS | innerHTML with user data, dangerouslySetInnerHTML, document.write, unsanitized template interpolation, missing output encoding, v-html directive, raw HTML rendering | Critical/High/Medium/Low |\r
\r
## Severity Levels\r
\r
| Level | Meaning | Score Weight | Action Required |\r
|-------|---------|-------------|-----------------|\r
| **Critical** | Directly exploitable vulnerabilities (RCE, injection) | -25 points | Fix immediately -- blocks deployment |\r
| **High** | Serious security risks requiring prompt attention | -15 points | Fix in current sprint |\r
| **Medium** | Potential vulnerabilities that need review | -8 points | Review and remediate |\r
| **Low** | Informational, possible false positives, style issues | -3 points | Investigate when convenient |\r
\r
## Scoring System\r
\r
InputShield calculates an **Input Safety Score** from 0 to 100:\r
\r
- Score starts at **100** (clean)\r
- Each finding deducts points based on severity: critical=25, high=15, medium=8, low=3\r
- Score floors at **0** (cannot go negative)\r
- **Pass threshold: 70** (exit code 0 if >= 70, exit code 1 if \x3C 70)\r
\r
### Letter Grades\r
\r
| Grade | Score Range | Meaning |\r
|-------|------------|---------|\r
| **A** | 90-100 | Excellent -- minimal or no input validation issues |\r
| **B** | 80-89 | Good -- minor issues that should be addressed |\r
| **C** | 70-79 | Acceptable -- passing threshold, issues need attention |\r
| **D** | 60-69 | Poor -- below threshold, significant issues found |\r
| **F** | 0-59 | Failing -- critical input validation vulnerabilities detected |\r
\r
## Tier-Based Pattern Access\r
\r
| Tier | Patterns Available | Per Category | Price |\r
|------|-------------------|-------------|-------|\r
| **Free** | 30 patterns | 5 per category | $0 |\r
| **Pro** | 60 patterns | 10 per category | $19/user/month |\r
| **Team** | 90 patterns (all) | 15 per category | $39/user/month |\r
| **Enterprise** | 90 patterns (all) | 15 per category | Custom pricing |\r
\r
## Configuration\r
\r
Users can configure InputShield in `~/.openclaw/openclaw.json`:\r
\r
```json\r
{\r
  "skills": {\r
    "entries": {\r
      "inputshield": {\r
        "enabled": true,\r
        "apiKey": "YOUR_LICENSE_KEY_HERE",\r
        "config": {\r
          "severityThreshold": "high",\r
          "ignorePatterns": ["**/test/**", "**/fixtures/**", "**/*.test.*"],\r
          "ignoreChecks": [],\r
          "reportFormat": "markdown",\r
          "categories": ["IV", "DS", "RD", "PT", "CI", "XS"]\r
        }\r
      }\r
    }\r
  }\r
}\r
```\r
\r
## Output Formats\r
\r
InputShield supports three output formats via `--format`:\r
\r
- **text** (default) -- Colorized terminal output with severity badges\r
- **json** -- Structured JSON output for CI/CD integration\r
- **html** -- HTML report with severity highlighting and category charts\r
\r
## Important Notes\r
\r
- **Free tier** works immediately with no configuration (30 patterns, 5 per category)\r
- **All scanning happens locally** -- no code is sent to external servers\r
- **License validation is offline** -- no phone-home or network calls\r
- Pattern matching only -- no AST parsing, no external dependencies beyond bash\r
- Supports scanning all file types in a single pass\r
- Git hooks use **lefthook** which must be installed (see install metadata above)\r
- Exit codes: 0 = pass (score >= 70), 1 = fail (score \x3C 70, for CI/CD integration)\r
- All regex patterns use POSIX ERE syntax compatible with `grep -E`\r
\r
## Error Handling\r
\r
- If lefthook is not installed and user tries `hooks install`, prompt to install it\r
- If license key is invalid or expired, show clear message with link to https://inputshield.pages.dev/renew\r
- If a file is binary, skip it automatically with no warning\r
- If no scannable files found in target, report clean scan with info message\r
- If --category specifies an invalid category, show available categories\r
\r
## When to Use InputShield\r
\r
The user might say things like:\r
- "Scan my code for input validation issues"\r
- "Check for XSS vulnerabilities"\r
- "Find command injection risks in my project"\r
- "Audit input handling"\r
- "Check for ReDoS patterns"\r
- "Find path traversal vulnerabilities"\r
- "Scan for unsafe deserialization"\r
- "Check if my code sanitizes user input"\r
- "Find missing input validation"\r
- "Detect SQL injection and command injection"\r
- "Check for unsafe eval usage"\r
- "Scan for innerHTML XSS risks"\r
- "Find pickle.loads and yaml.load issues"\r
- "Generate an input validation report"\r
- "Set up pre-commit hooks for input validation"\r
- "Run a security scan focused on input handling"\r
安全使用建议
What to consider before installing: - The skill appears to be what it claims: a local, grep/regex-based scanner with an optional paid license. The single required secret (INPUTSHIELD_LICENSE_KEY) is proportionate to the license checks. - License handling: the scripts will look in ~/.openclaw/openclaw.json for a stored apiKey and may invoke local python/node/jq to parse that file; if you prefer, set INPUTSHIELD_LICENSE_KEY as an environment variable instead of storing it in config. - Pre-commit hooks: installing hooks will copy/modify lefthook.yml in your repo and run lefthook install. The hooks source the skill scripts from the skill installation directory at commit time — ensure that directory is trusted and not writable by others because hooks execute code from there when you commit. - No telemetry/network calls were found in the provided scripts, but the source is listed as "unknown" in registry metadata; if you do not already trust the publisher, inspect the shipped scripts (dispatcher.sh, analyzer.sh, license.sh, patterns.sh) before running installs or enabling hooks. - Functional note: detection is regex-based and may produce false positives; review findings before taking automated action. If you install, prefer running a one-shot scan first (no hooks) to validate behavior and outputs.
功能分析
Type: OpenClaw Skill Name: inputshield Version: 1.0.1 InputShield is a local static analysis security tool (SAST) designed to scan codebases for input validation vulnerabilities such as XSS, command injection, and ReDoS. The bundle uses standard Bash utilities (grep, find) to perform pattern matching against a library of 90 security-focused regexes defined in patterns.sh. Analysis of the core logic in analyzer.sh and dispatcher.sh confirms that all scanning and scoring occur locally, with no evidence of data exfiltration or unauthorized network activity. The license validation in license.sh is performed offline via JWT decoding, and the git hook integration via lefthook.yml is a standard feature consistent with the tool's stated purpose.
能力标签
requires-sensitive-credentials
能力评估
Purpose & Capability
The skill's name/description (input validation scanner) matches the provided files and runtime behavior: dispatcher, analyzer, pattern definitions, and license checking. Required binaries (git, bash, python3, jq) and the single primary credential (INPUTSHIELD_LICENSE_KEY) are appropriate for local scanning, config parsing, and license validation. The brew install of lefthook is coherent with the described git-hook integration.
Instruction Scope
SKILL.md instructs the agent to run local shell scripts which: discover source files, run grep-based regex patterns, produce reports, and optionally install lefthook hooks. The runtime scripts only read project files and the declared config path (~/.openclaw/openclaw.json) for license lookup. There are no instructions to send data to external endpoints or to read unrelated system credentials. One minor note: license.sh will attempt to run local python/node/jq to parse the OpenClaw config and will accept an env var override for the license key.
Install Mechanism
Install is limited to recommending/using the lefthook brew formula (common git hook manager). There are no downloads from untrusted URLs or archive extraction steps in the provided install spec. The installer copies a lefthook.yml into the repo when hooks are installed, which is expected for pre-commit hook integration.
Credentials
Only one primary credential is required (INPUTSHIELD_LICENSE_KEY) which is justified by the Pro/Team licensing model. The scripts also read the declared config path (~/.openclaw/openclaw.json) to find a stored apiKey. There is an optional CLAWHUB_JWT_SECRET usage inside license validation (only for signature verification) which is not required but harmless when present; it is not listed as required in metadata but its presence only tightens license verification.
Persistence & Privilege
The skill is not always-enabled and is user-invocable (normal). Installing hooks will write/modify lefthook.yml in the repository and run lefthook install — expected behavior. Note: the lefthook hook configuration sources scripts from the skill directory (INPUTSHIELD_SKILL_DIR or ~/.openclaw/skills/inputshield) at commit time; this means the hook will execute whatever code exists at that path when triggered, so ensure the skill install location is trusted and not writable by untrusted parties.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install inputshield
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /inputshield 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.1
Fix: declare all deps, JWT verification, configPaths
v1.0.0
Initial release of InputShield: input validation & sanitization scanner. - Scans codebases for missing validation, unsafe deserialization, ReDoS, path traversal, command injection, and XSS patterns using regex-based detection. - Supports three tiers: Free (30 patterns), Pro (60 patterns), and Team/Enterprise (all 90 patterns, audit, category scan, and advanced reporting). - Generates input safety scores, severity grades, and markdown reports with actionable remediation steps. - Integrates with git via Lefthook for pre-commit scanning (Pro+). - 100% local operation with zero telemetry; supports Mac, Linux, and Windows.
元数据
Slug inputshield
版本 1.0.1
许可证 MIT-0
累计安装 0
当前安装数 0
历史版本数 2
常见问题

inputshield 是什么?

Input validation & sanitization scanner -- catches missing validation, unsafe deserialization, ReDoS, path traversal, command injection, and XSS patterns. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 86 次。

如何安装 inputshield?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install inputshield」即可一键安装,无需额外配置。

inputshield 是免费的吗?

是的,inputshield 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。

inputshield 支持哪些平台?

inputshield 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(darwin, linux, win32)。

谁开发了 inputshield?

由 suhteevah(@suhteevah)开发并维护,当前版本 v1.0.1。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191113 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论