← 返回 Skills 市场
OpenA2A Security
作者
Abdel Fane
· GitHub ↗
· v1.0.0
519
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install opena2a-security
功能描述
Security hardening for OpenClaw. Audit your configuration, scan installed skills for malware, detect CVE-2026-25253, check credential exposure, and get actio...
安全使用建议
This skill looks like an on-demand local auditor, but proceed cautiously: (1) The SKILL.md tells the agent to run 'npx hackmyagent' — npx will typically fetch code from the npm registry at runtime, which contradicts the claim 'runs entirely locally' and means remote code could be executed. (2) There is no source/homepage or pinned package/version/checksum provided — you cannot verify the exact code that will run. Recommended next steps before installing/using: a) Verify provenance of 'hackmyagent' (npm package page, repository, maintainer) and prefer a pinned, audited release; b) If possible, vendor the scanner locally (install the package yourself and inspect it) or run the commands manually in a controlled sandbox; c) Run the scanner in an isolated environment (container or VM) and review generated output before allowing any automation to act on it; d) Ask the publisher for a homepage, repository link, and a signed checksum or pinned version; e) If you must run via npx, consider network controls or npm cache use and inspect package contents (npm pack) beforehand. If the author can supply a repository link, pinned version, and checksum, or provide a vendored copy of hackmyagent, the concerns would be largely mitigated.
功能分析
Type: OpenClaw Skill
Name: opena2a-security
Version: 1.0.0
This skill is designed for security auditing and hardening of OpenClaw installations. Its stated purpose is to scan for vulnerabilities, malware, and credential exposure, which is a legitimate security function. The `SKILL.md` explicitly declares `permissions.network: []`, ensuring no external API calls, and `permissions.exec` is limited to `npx hackmyagent`, which is the open-source security scanner it uses. All instructions for the AI agent are transparent, directly related to security scanning, and lack any evidence of prompt injection, data exfiltration, obfuscation, or other malicious intent. The requested filesystem access to `~/.openclaw` is necessary and appropriate for its stated security auditing purpose.
能力评估
Purpose & Capability
Name/description claim a local security auditor for OpenClaw; the SKILL.md requires node/npx and instructs running a tool called 'hackmyagent', which is coherent with a scanner. However the registry metadata lists no source or homepage despite in-text claims (OpenA2A/opena2a.org), which reduces provenance confidence. The 'runs entirely locally / no external API calls' claim conflicts with using npx to obtain and run a package.
Instruction Scope
Runtime instructions tell the agent to execute commands like 'npx hackmyagent secure ~/.openclaw' and other npx invocations. Those commands will run code obtained at runtime (npx may fetch from npm) and potentially access and report on ~/.openclaw and config files. The SKILL.md explicitly asserts no data leaves the machine, but using npx introduces a network-fetch step not reflected in the frontmatter permissions (network: []). The instructions do not ask for unrelated files or secrets, but the network/download contradiction increases risk.
Install Mechanism
There is no install spec (instruction-only), but the skill relies on npx to fetch and run 'hackmyagent' from the npm ecosystem. Dynamic fetch-and-execute via npx is a non-trivial install/runtime action: it may download arbitrary code at run time and run lifecycle scripts. The SKILL.md does not pin a package version, provide a provenance URL, or a checksum. This is moderate-to-high risk compared with a fully local, vendored scanner.
Credentials
The skill requests no environment variables and only declares filesystem access to ~/.openclaw, which is proportionate for a local OpenClaw audit. There are no requests for unrelated cloud credentials or wide-ranging env secrets. That said, because it executes external code via npx, that external code could request additional access during runtime — which is not captured here.
Persistence & Privilege
The skill does not request always:true and does not ask to modify other skills or agent-wide settings. It appears to be an on-demand audit tool, which is appropriate for its purpose.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install opena2a-security - 安装完成后,直接呼叫该 Skill 的名称或使用
/opena2a-security触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release of opena2a-security for OpenClaw.
- Adds local security auditing and hardening with no external API calls.
- Scans configurations, installed skills, and credentials for vulnerabilities and exposures, including CVE-2026-25253.
- Detects malicious skill code, supply chain risks, and improper credential handling.
- Provides actionable security recommendations tailored to your setup.
- Outputs results in multiple formats (text, json, sarif, html, asp).
- Documentation includes step-by-step run instructions and guidance for both users and skill publishers.
元数据
常见问题
OpenA2A Security 是什么?
Security hardening for OpenClaw. Audit your configuration, scan installed skills for malware, detect CVE-2026-25253, check credential exposure, and get actio... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 519 次。
如何安装 OpenA2A Security?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install opena2a-security」即可一键安装,无需额外配置。
OpenA2A Security 是免费的吗?
是的,OpenA2A Security 完全免费(开源免费),可自由下载、安装和使用。
OpenA2A Security 支持哪些平台?
OpenA2A Security 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 OpenA2A Security?
由 Abdel Fane(@abdelsfane)开发并维护,当前版本 v1.0.0。
推荐 Skills