← 返回 Skills 市场
atlaspa

Openclaw Vault

作者 AtlasPA · GitHub ↗ · v1.0.2
darwinlinuxwin32 ⚠ suspicious
1508
总下载
5
收藏
5
当前安装
3
版本数
在 OpenClaw 中安装
/install openclaw-vault
功能描述
Credential lifecycle security for agent workspaces. Audit credential exposure, detect misconfigured permissions, inventory all secrets, and identify stale credentials needing rotation. Free alert layer — upgrade to openclaw-vault-pro for automated remediation, credential rotation, and access control.
安全使用建议
This skill appears to implement credential discovery and remediation and runs locally with only Python. However: 1) the code contains modifying operations (fix-permissions, quarantine, protect) that are not fully reflected in the SKILL.md Commands section — treat those as potentially destructive until you inspect them; 2) it will scan sensitive files (shell histories, keys, git history) in whatever workspace it targets (defaulting to OPENCLAW_WORKSPACE, cwd, or ~/.openclaw/workspace) — point it only at a safe copy or test workspace first; 3) review scripts/vault.py (especially the implementations of quarantine, fix-permissions, protect, gitguard, rotate-check) before running to confirm behavior and where it writes/moves files; 4) run read-only commands (audit, exposure, inventory, status) first and do not run remediation commands until you have backups and understand what changes will be made; 5) prefer obtaining this skill from a known repository/author or verify the code hash if you must install it. If you want, I can scan the remainder of vault.py for specific filesystem operations and show the exact lines that perform moves/permission changes and where quarantined files are stored.
功能分析
Type: OpenClaw Skill Name: openclaw-vault Version: 1.0.2 The OpenClaw Vault skill bundle is a credential lifecycle security tool designed to detect and remediate exposed secrets. Its Python script (`scripts/vault.py`) performs extensive local file system scanning, permission checks, and interacts with Git history via `subprocess.run`. While it possesses powerful capabilities like modifying file permissions (`os.chmod`, `icacls`) and moving files to a quarantine directory (`shutil.move`), these actions are explicitly for security hardening and remediation, not for malicious purposes. The skill explicitly states and adheres to 'No external dependencies' and 'No network calls', significantly reducing data exfiltration risk. There is no evidence of prompt injection attempts in `SKILL.md` or `README.md`, nor any clear shell injection vulnerabilities in the Python code's use of `subprocess.run` or `shutil.move`.
能力评估
Purpose & Capability
Name/description (credential lifecycle auditing) matches the shipped script's capabilities (scanning permissions, history, git, configs, docker, staleness). Requiring only python3 is proportionate. However the repository and README advertise additional remediation/automation features and the included script exposes commands to change files (fix-permissions, quarantine, protect) that go beyond the read-only audit commands shown in SKILL.md's Commands section — this inconsistency should be explained by the author.
Instruction Scope
SKILL.md instructs running audit/exposure/inventory/status and documents local-only operation. The script itself (vault.py) includes additional subcommands that can modify or move files (fix-permissions, quarantine, unquarantine, protect, rotate-check, gitguard). The skill auto-detects a workspace via OPENCLAW_WORKSPACE / cwd / ~/.openclaw/workspace and will scan sensitive locations (shell histories, git, configs) — this is expected for an auditor but is invasive. SKILL.md does not declare OPENCLAW_WORKSPACE as a required env var, and the docs differ between README, SKILL.md, and the code, which increases the chance an agent or user will run a modifying command unintentionally.
Install Mechanism
No install spec — instruction-only with an included Python script. That is low-risk relative to arbitrary network installs. The code claims to use only Python stdlib and the file headers/imports shown are consistent with local-only operation (no obvious network libraries).
Credentials
The skill declares no required credentials or env vars. It does optionally read OPENCLAW_WORKSPACE for workspace auto-detection (documented in SKILL.md), which is reasonable. No unexpected cloud credentials or unrelated secrets are requested.
Persistence & Privilege
always:false (no forced persistent inclusion). The script can write to the filesystem (quarantine, fix-permissions, protect); those side-effectful commands are appropriate for remediation features but increase risk if invoked inadvertently. There's no evidence the skill modifies other skills or global agent configs.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install openclaw-vault
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /openclaw-vault 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.2
openclaw-vault 1.0.2 - Removed the upgrade and "openclaw-vault-pro" promotion from documentation for a simpler, more neutral readme. - SKILL.md and README.md are now focused solely on the core features offered in the open-source skill version. - No functional changes to code logic; updates are documentation-only. - Keeps all usage instructions and command references intact.
v1.0.1
- Documentation updates in README.md; no functional or logic changes. - Clarifications and detailed explanations added for credential exposure vectors, audit process, and commands. - Expanded sections on what the skill checks and info about workspace auto-detection.
v1.0.0
Initial release of openclaw-vault - Provides credential lifecycle security for agent workspaces, going beyond simple source code secret detection. - Audits credential exposure, misconfigured permissions, and inventories all secrets. - Identifies stale credentials needing rotation, with exit codes indicating exposure severity. - Runs locally with Python standard library only; no network or external dependencies. - Includes free alerting layer with option to upgrade for automated remediation.
元数据
Slug openclaw-vault
版本 1.0.2
许可证
累计安装 5
当前安装数 5
历史版本数 3
常见问题

Openclaw Vault 是什么?

Credential lifecycle security for agent workspaces. Audit credential exposure, detect misconfigured permissions, inventory all secrets, and identify stale credentials needing rotation. Free alert layer — upgrade to openclaw-vault-pro for automated remediation, credential rotation, and access control. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 1508 次。

如何安装 Openclaw Vault?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install openclaw-vault」即可一键安装,无需额外配置。

Openclaw Vault 是免费的吗?

是的,Openclaw Vault 完全免费(开源免费),可自由下载、安装和使用。

Openclaw Vault 支持哪些平台?

Openclaw Vault 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(darwin, linux, win32)。

谁开发了 Openclaw Vault?

由 AtlasPA(@atlaspa)开发并维护,当前版本 v1.0.2。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论