← 返回 Skills 市场
91
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install release-checker
功能描述
一体化发版兼容性检查工具。自动分析 Git diff 检测发版兼容性,通过代码智能识别推送中心/Gateway/配置变更,自动检测 SQL 脚本兼容性并生成多数据库版本,输出完整的 TODO 清单和 Markdown 报告。
安全使用建议
This skill appears to do what it says: it will run git diff and a local Python script that inspects and converts SQL files. Before using it: (1) ensure you trust the included script (review scripts/release_checker.py) because it will read and operate on your repository files; (2) run it in a controlled environment (container or dedicated runner) if you are cautious; (3) install the dependency sqlglot (requirements.txt) in a virtualenv before execution; and (4) be aware it executes subprocesses (git/python) against the project — that is expected behavior, not an unexplained network exfiltration attempt.
功能分析
Type: OpenClaw Skill
Name: release-checker
Version: 1.0.0
The skill bundle provides a comprehensive tool for Java release compatibility checking, but it contains a shell injection vulnerability in `scripts/release_checker.py`. Specifically, the `compare_branch` argument is used to construct a shell command in `GitAnalyzer.get_changed_files` without sanitization, which could allow arbitrary command execution if a malicious branch name is provided. While the `SKILL.md` instructions are highly prescriptive regarding the agent's workflow and user interaction, they do not appear to contain malicious prompt injections or instructions for data exfiltration.
能力评估
Purpose & Capability
Name/description (release compatibility, git-diff, SQL conversion) match the included SKILL.md and the Python script. Required tools (git, python) and file access are appropriate for the stated functionality; no credentials or unrelated services are requested.
Instruction Scope
Runtime instructions only ask the agent to run git diff, list/inspect changed files, interactively ask the user which components to process, and call the included Python script on project files. The script reads repository files and transforms SQL — these actions are within the declared scope. Note: the skill will access the project filesystem and execute git/python locally, which is expected but should be noted by users.
Install Mechanism
There is no install spec (instruction-only), but the bundle includes a Python script and requirements.txt listing sqlglot. The environment must have Python and sqlglot installed; the skill does not automatically install dependencies. This is a low-to-moderate operational note (user or host must provide the runtime dependency).
Credentials
The skill requests no environment variables, credentials, or config paths. It operates on repository files and user-supplied paths only. There are no demands for unrelated tokens/keys — proportional to purpose.
Persistence & Privilege
always is false and the skill is user-invocable; it does not request permanent or elevated platform privileges. Autonomous invocation is allowed (platform default) but is not coupled with other red flags.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install release-checker - 安装完成后,直接呼叫该 Skill 的名称或使用
/release-checker触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Release-checker 1.0.0 初始版本发布:
- 新增一体化发版兼容性检查功能,自动分析 Git diff 变更内容。
- 支持自动智能识别推送中心、Gateway、配置变更等核心组件。
- 内置 SQL 兼容性检测及 MySQL → PostgreSQL/Oracle 自动转换,包含多项规则校验。
- 自动生成详细的 TODO 清单和 Markdown 发版兼容性报告。
- 支持 MyBatis-Plus、Spring Cloud、Java 及多数据库项目场景。
- 提供便捷的用户交互,辅助确认和补充变更详情。
元数据
常见问题
release-checker 是什么?
一体化发版兼容性检查工具。自动分析 Git diff 检测发版兼容性,通过代码智能识别推送中心/Gateway/配置变更,自动检测 SQL 脚本兼容性并生成多数据库版本,输出完整的 TODO 清单和 Markdown 报告。 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 91 次。
如何安装 release-checker?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install release-checker」即可一键安装,无需额外配置。
release-checker 是免费的吗?
是的,release-checker 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
release-checker 支持哪些平台?
release-checker 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 release-checker?
由 QFann(@qfann)开发并维护,当前版本 v1.0.0。
推荐 Skills