← 返回 Skills 市场
52yuanchangxing

Run Command Safety Check

作者 vx:17605205782 · GitHub ↗ · v1.0.0 · MIT-0
darwinlinuxwin32 ✓ 安全检测通过
157
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install run-command-safety-check
功能描述
在执行 shell 方案前检查危险模式,如 pipe-to-shell、覆盖式删除、危险重定向或混淆执行。;use for shell, security, command-review workflows;do not use for 提供攻击性命令, 帮用户绕过限制.
安全使用建议
This skill is coherent and runs locally with only python3 required. Before using it: (1) only point it at files/directories you intend to scan — do not pass root/system or other sensitive directories; (2) prefer sanitized inputs (remove or redact secrets) because the tool may surface snippets (it masks matches but keeps the first 4 characters); (3) use --dry-run or run against a small sample first; (4) review outputs before sharing — the tool does not network out, but its outputs could contain sensitive context; and (5) if you need stricter redaction, inspect/modify scripts/run.py to change the masking behavior.
功能分析
Type: OpenClaw Skill Name: run-command-safety-check Version: 1.0.0 The skill bundle is a security auditing tool designed to scan shell commands and scripts for dangerous patterns such as pipe-to-shell, recursive deletions, and hardcoded secrets. The core logic in `scripts/run.py` uses Python's standard library to perform regex-based scanning and generates structured Markdown reports, including a mechanism to mask detected secrets. The instructions in `SKILL.md` explicitly direct the AI agent to prioritize safety reviews and avoid executing commands or bypassing restrictions, aligning perfectly with the stated purpose.
能力评估
Purpose & Capability
Name/description match the included assets (SKILL.md, resources/spec.json, template) and the shipped script. Required binary is only python3, which is appropriate for a local text/pattern auditor. No unrelated credentials, binaries, or install steps are requested.
Instruction Scope
SKILL.md stays on‑purpose: it instructs the agent to audit commands and scripts and prefer read-only review. The runtime script will read files from the provided input path (file or directory) and search/emit pattern matches. This is expected, but it means the tool can read arbitrary files you give it (including files containing secrets). The script masks matched secrets only partially (keeps first 4 chars then '***'), which could leak identifying fragments; it does not exfiltrate data or make network calls.
Install Mechanism
No install spec; the skill is instruction- and script-based and relies on python3 and the standard library. No remote downloads or package installs are performed.
Credentials
No environment variables, credentials, or config paths are requested. The only runtime dependency is python3. The script does scan for secret-like patterns (appropriate for its purpose) but the partial redaction behavior (revealing first 4 chars) is something users should be aware of.
Persistence & Privilege
always:false and no code writes to agent/global config. The script can write an output file if invoked with --output (normal behavior for a local tool), but it does not request elevated or persistent privileges.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install run-command-safety-check
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /run-command-safety-check 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release of run-command-safety-check skill: - Checks shell commands for dangerous patterns such as pipe-to-shell, destructive delete, risky redirection, or obfuscated execution before running. - Gives structured output: dangerous patterns, medium-risk patterns, background notes, alternative suggestions, manual review points, and final recommendations. - Prioritizes readable, audit-friendly, and dry-run approaches; avoids executing or suggesting aggressive, attack, or privilege-escalation commands. - Clearly states requirements and safe usage boundaries. - Supports review workflows for shell, security, and command-review scenarios.
元数据
Slug run-command-safety-check
版本 1.0.0
许可证 MIT-0
累计安装 0
当前安装数 0
历史版本数 1
常见问题

Run Command Safety Check 是什么?

在执行 shell 方案前检查危险模式,如 pipe-to-shell、覆盖式删除、危险重定向或混淆执行。;use for shell, security, command-review workflows;do not use for 提供攻击性命令, 帮用户绕过限制. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 157 次。

如何安装 Run Command Safety Check?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install run-command-safety-check」即可一键安装,无需额外配置。

Run Command Safety Check 是免费的吗?

是的,Run Command Safety Check 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。

Run Command Safety Check 支持哪些平台?

Run Command Safety Check 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(darwin, linux, win32)。

谁开发了 Run Command Safety Check?

由 vx:17605205782(@52yuanchangxing)开发并维护,当前版本 v1.0.0。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191113 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论