← 返回 Skills 市场
1513
总下载
0
收藏
10
当前安装
1
版本数
在 OpenClaw 中安装
/install openclaw-skill-auditor
功能描述
Scans ClawHub skills to detect malicious code, obfuscated payloads, and social engineering via pattern matching, deobfuscation, and LLM analysis before insta...
安全使用建议
This skill appears to implement a legitimate scanner, but review before use: (1) be aware it expects (but doesn't declare) the 'clawhub' CLI to fetch remote skills and optionally an LLM CLI (Gemini) for deeper analysis — install and verify those tools from trusted sources first; (2) run the auditor in an isolated sandbox or VM when scanning untrusted skills because it fetches remote skill packages; (3) the script writes collected suspicious snippets to a predictable /tmp file and suggests sending them to an LLM or emailing a personal address — do NOT send secrets or plaintext sensitive files to third-party LLMs or personal emails; (4) if you plan to use the LLM analysis path, configure it to use a trusted, privacy-preserving endpoint or do the analysis offline; and (5) ask the author to explicitly declare required binaries/dependencies and to remove or make the reporting workflow safer (use a private/internal reporting channel). If you need higher assurance, run the script on a throwaway environment and manually inspect its output before following any 'send' recommendations.
功能分析
Type: OpenClaw Skill
Name: openclaw-skill-auditor
Version: 1.0.0
The OpenClaw AgentSkills skill bundle 'skill-auditor' is designed to detect malicious code and security threats in other ClawHub skills. Its `SKILL.md` and `scripts/audit.sh` implement pattern matching, deobfuscation, and LLM analysis to identify high-risk behaviors like base64/curl piped to bash, known C2 servers (e.g., 91.92.242.30), credential theft keywords, and access to sensitive directories. All identified high-risk capabilities are for detection purposes, not execution by the skill itself. The script uses temporary files and `clawhub inspect` for its legitimate auditing function, and the LLM analysis step explicitly saves suspicious code locally and provides a prompt suggestion for the *user* to analyze it, rather than instructing the agent to perform malicious actions or exfiltrate data.
能力评估
Purpose & Capability
SKILL.md and the script implement a skill-auditor as described, but the runtime relies on external CLIs ('clawhub inspect' to fetch skills and optional 'gemini' for LLM analysis) even though the skill declares no required binaries/dependencies. That omission is an incoherence — a scanner that fetches remote skills and optionally runs LLM analysis legitimately needs those tools declared.
Instruction Scope
The instructions and script scan skill files (expected) but also copy suspicious snippets to a predictable /tmp file and explicitly instruct the OpenClaw agent to analyze them with an LLM. That workflow can expose full suspicious code to any LLM or other actor the agent uses. The SKILL.md also encourages reporting findings by emailing a personal address ([email protected]), which could leak code or sensitive material. The script itself does not exfiltrate over network, but its guidance promotes sending data externally.
Install Mechanism
No install spec (instruction-only) — the skill does not download or install third-party code at install time, which minimizes direct install risk.
Credentials
The skill does not request any environment variables or credentials (good). It scans target code for uses of $API_KEY, ~/.ssh, ~/.aws, etc., which is appropriate for a scanner. However, because it encourages copying suspicious snippets to /tmp and sending them for LLM analysis or email, there's a privacy/credential-leak risk if scanned code contains real secrets.
Persistence & Privilege
The skill does not request persistent/always-on privileges and does not modify other skills or system-wide settings. It runs on demand and uses temporary files, which is appropriate for a scanner.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install openclaw-skill-auditor - 安装完成后,直接呼叫该 Skill 的名称或使用
/openclaw-skill-auditor触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release: 3-layer security scanner for ClawHub skills. L1 pattern matching, L2 base64/hex deobfuscation, L3 LLM intent analysis.
元数据
常见问题
OpenClaw Skill Auditor 是什么?
Scans ClawHub skills to detect malicious code, obfuscated payloads, and social engineering via pattern matching, deobfuscation, and LLM analysis before insta... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 1513 次。
如何安装 OpenClaw Skill Auditor?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install openclaw-skill-auditor」即可一键安装,无需额外配置。
OpenClaw Skill Auditor 是免费的吗?
是的,OpenClaw Skill Auditor 完全免费(开源免费),可自由下载、安装和使用。
OpenClaw Skill Auditor 支持哪些平台?
OpenClaw Skill Auditor 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 OpenClaw Skill Auditor?
由 sypsyp97(@sypsyp97)开发并维护,当前版本 v1.0.0。
推荐 Skills