← 返回 Skills 市场
Pipeworx abuseipdb
作者
Bruce Gutman
· GitHub ↗
· v1.0.0
· MIT-0
74
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install pipeworx-abuseipdb
功能描述
Check, report, and retrieve abuse confidence scores and details for IP addresses using the AbuseIPDB v2 API.
安全使用建议
Do not install or enable this skill until the author clarifies a few things: (1) how AbuseIPDB authentication is handled — declare the required API key env var (or explain that the pipeworx gateway holds it and why that is trusted); (2) why runtime traffic is sent to https://gateway.pipeworx.io/abuseipdb/mcp instead of directly to api.abuseipdb.com, and provide the gateway's privacy/security policy and owner identity; (3) provide a complete SKILL.md (the current file is truncated) describing exactly what data is sent on each call. If you must try it, restrict the skill to manual invocation, monitor outgoing network requests, and avoid sending sensitive context through it. If the gateway approach is intended, prefer a documented, auditable proxy under your control or require that the skill declare and use a user-controlled API key.
功能分析
Type: OpenClaw Skill
Name: pipeworx-abuseipdb
Version: 1.0.0
The skill is a standard integration for the AbuseIPDB API, providing functions to check, report, and retrieve blacklisted IP addresses. It operates via a remote MCP server hosted at gateway.pipeworx.io, and the documentation in SKILL.md contains no suspicious instructions, obfuscation, or evidence of malicious intent.
能力评估
Purpose & Capability
Name/description say this wraps the AbuseIPDB v2 API, which normally requires an API key; the SKILL.md does not declare any required credential or environment variable and instead includes an mcpServers entry that points to https://gateway.pipeworx.io/abuseipdb/mcp — a different endpoint. It's unclear whether the gateway holds the API key or the skill expects the agent to provide credentials, so the required access is not proportional or explained.
Instruction Scope
The runtime instructions are minimal and partially truncated. They reference an mcpServers gateway URL (pipeworx) instead of directly calling api.abuseipdb.com as the description implies. Because the SKILL.md lacks details on what data is sent to the gateway and who controls it, the instructions permit sending IPs and related metadata to an undeclared third party — this is outside the skill's documented scope and raises data-exfiltration concerns.
Install Mechanism
There is no install spec and no code files — this is instruction-only, so nothing is written to disk by an installer. That minimizes install-time risk.
Credentials
No environment variables or primary credentials are declared, yet AbuseIPDB v2 requires an API key for authenticated operations (check/report/blacklist). The absence of any declared credential is disproportionate and ambiguous — either this skill expects an undocumented key to be present, or it relies on the external gateway to hold credentials, neither of which is made explicit.
Persistence & Privilege
always is false and disable-model-invocation is default (agent may invoke autonomously). There is no request for permanent presence or modification of other skills' configs in the provided instructions.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install pipeworx-abuseipdb - 安装完成后,直接呼叫该 Skill 的名称或使用
/pipeworx-abuseipdb触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release
元数据
常见问题
Pipeworx abuseipdb 是什么?
Check, report, and retrieve abuse confidence scores and details for IP addresses using the AbuseIPDB v2 API. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 74 次。
如何安装 Pipeworx abuseipdb?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install pipeworx-abuseipdb」即可一键安装,无需额外配置。
Pipeworx abuseipdb 是免费的吗?
是的,Pipeworx abuseipdb 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
Pipeworx abuseipdb 支持哪些平台?
Pipeworx abuseipdb 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Pipeworx abuseipdb?
由 Bruce Gutman(@b-gutman)开发并维护,当前版本 v1.0.0。
推荐 Skills