← 返回 Skills 市场
yiyuanlu

Openclaw Security Checklist

作者 yiyuanlu · GitHub ↗ · v1.0.0 · MIT-0
cross-platform ✓ 安全检测通过
246
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install openclaw-security-checklist
功能描述
OpenClaw 部署前安全检查清单。聚焦合规导向的部署前检查(非事后加固),覆盖防火墙、SSH、API 密钥管理、数据出境合规、多部署场景验证。使用清单式检查,可逐项打勾并生成报告。适用于个人 Mac、VPS、Docker、企业部署场景。
安全使用建议
This skill is internally consistent with being a deployment pre-check tool, but review and understand the scripts before running. Note the script will read system files (/etc/ssh/sshd_config), your ~/.openclaw workspace and environment variables to look for secrets — that is expected but can expose sensitive values if you redirect or share output. The script issues an external request to ipinfo.io to detect server country (this reveals your host IP/country to that service). Also ignore/avoid insecure example snippets in the docs that echo API keys into ~/.zshrc or logs; prefer secure secret stores. Recommended: inspect scripts locally, run them in a constrained/test environment first, and do not pipe or share the raw output if you suspect it may contain secrets.
功能分析
Type: OpenClaw Skill Name: openclaw-security-checklist Version: 1.0.0 The bundle is a legitimate security auditing and compliance tool designed for OpenClaw deployments. The primary scripts, 'scripts/security-check.sh' and 'security-checklist.sh', perform local system inspections including firewall status, SSH configurations, API key storage permissions, and system update status. While the scripts use potentially sensitive commands like 'grep' to locate hardcoded API keys and 'curl' to check IP geolocation for data residency compliance, all findings are saved to local report files (e.g., '~/openclaw-security-report.txt') with no evidence of data exfiltration, persistence mechanisms, or malicious prompt injection.
能力评估
Purpose & Capability
Name/description (deployment pre-check, compliance-focused) align with included README, references and the provided shell scripts which implement firewall, SSH, API-key and data-border checks across Mac/VPS/Docker/enterprise scenarios.
Instruction Scope
Runtime instructions simply run the included shell script and point to local reference files. The script performs local checks (reads /etc/ssh/sshd_config, ~/.openclaw/workspace, system commands like netstat/docker/dmidecode) which are appropriate for a security checklist, but it also performs network queries (curl ipinfo.io) to determine server country — this leaks the host's IP/country to a third party and should be highlighted to users. The script prints findings (including file paths and warnings about detected secrets) which may expose sensitive data if output is captured or shared.
Install Mechanism
No install spec; this is instruction+script only. No downloads or archive extraction are performed by the skill itself, so installation risk is low.
Credentials
The skill declares no required environment variables. The scripts do enumerate environment variables and scan the user's workspace for 'sk-'/'api_key' patterns and .env/config files — this is expected for a secrets-detection checklist, but it means the script will inspect sensitive local state (env and files). Reference docs include examples that write keys into shell rc or logs (insecure examples) — these are poor practices that the user should not adopt without modification.
Persistence & Privilege
The skill does not request persistent elevated privileges, does not set always:true, and does not modify other skills. It writes a local report to ~/openclaw-security-report.txt which is reasonable for a local audit tool.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install openclaw-security-checklist
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /openclaw-security-checklist 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
openclaw-security-checklist v1.0.0 - 首次发布,提供 OpenClaw 部署前安全与合规检查清单。 - 覆盖防火墙、SSH、API 密钥、数据出境合规及多部署场景(Mac/VPS/Docker/企业)。 - 提供自动检查脚本与手动清单打勾两种使用方式,生成可分享的报告。 - 细化合规要点,适配中国相关法规。 - 支持多环境部署的细分检查建议。
元数据
Slug openclaw-security-checklist
版本 1.0.0
许可证 MIT-0
累计安装 0
当前安装数 0
历史版本数 1
常见问题

Openclaw Security Checklist 是什么?

OpenClaw 部署前安全检查清单。聚焦合规导向的部署前检查(非事后加固),覆盖防火墙、SSH、API 密钥管理、数据出境合规、多部署场景验证。使用清单式检查,可逐项打勾并生成报告。适用于个人 Mac、VPS、Docker、企业部署场景。 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 246 次。

如何安装 Openclaw Security Checklist?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install openclaw-security-checklist」即可一键安装,无需额外配置。

Openclaw Security Checklist 是免费的吗?

是的,Openclaw Security Checklist 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。

Openclaw Security Checklist 支持哪些平台?

Openclaw Security Checklist 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 Openclaw Security Checklist?

由 yiyuanlu(@yiyuanlu)开发并维护,当前版本 v1.0.0。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191113 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论