← 返回 Skills 市场
Security Monitor Deploy
作者
aiwithabidi
· GitHub ↗
· v1.0.0
642
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install security-monitor-deploy
功能描述
Comprehensive security audit for OpenClaw deployments. Checks Docker port bindings, SSH config, openclaw.json settings, file permissions, exposed services, a...
安全使用建议
This skill appears to do what it says: a local security audit. Before installing or running it: 1) Review the entire scripts/security_audit.sh file yourself (the provided content was truncated in the review). 2) Run it on a non-production or disposable system first (or inside an isolated container/VM) so you don't expose real secrets during testing. 3) Note it inspects /var/run/docker.sock and may run docker inspect/ps — if your Docker containers hold secrets in environment variables, the audit may see them. 4) Confirm you trust the unknown publisher/homepage; if unsure, ask for source provenance or run the script under restricted privileges. 5) If you need higher assurance, have someone with shell experience audit the remainder of the script for any unexpected network calls, obfuscated behavior, or commands that read or transmit file contents.
功能分析
Type: OpenClaw Skill
Name: security-monitor-deploy
Version: 1.0.0
The OpenClaw AgentSkills bundle 'security-monitor-deploy' is a security auditing tool. The `SKILL.md` documentation clearly outlines its purpose to perform comprehensive security checks on Docker, SSH, network, file permissions, and OpenClaw configurations. The `scripts/security_audit.sh` script implements these checks by inspecting system configurations, Docker settings, network services, and file permissions using standard system utilities (e.g., `docker`, `grep`, `stat`, `find`, `ss`, `python3` for JSON parsing). While the script requires significant system access to perform its audit functions, all actions are directly aligned with its stated purpose of identifying security vulnerabilities, not exploiting them or exfiltrating data. There is no evidence of malicious intent, data exfiltration, persistence mechanisms, obfuscation, or prompt injection attempts against the agent.
能力评估
Purpose & Capability
Name/description claim a local security audit. The skill only requires the docker binary and its script inspects OpenClaw config files, Docker, SSH, firewall, listening services, and file permissions — all consistent with an audit tool. No unrelated credentials or binaries are requested.
Instruction Scope
The SKILL.md instructs the agent to run the included shell script which enumerates and inspects local files (/root/.openclaw/openclaw.json, ~/.openclaw, /etc/ssh/sshd_config, /var/run/docker.sock, SSH key dirs, .env files) and runs docker/ss/netstat/iptables/ufw commands. This is expected for a security audit, but these actions access sensitive local files and system state — the script checks permissions and configuration but generally does not display full private key contents in the portions shown. The SKILL.md and script are consistent, but the script was truncated in the review so the full behavior could not be confirmed.
Install Mechanism
No install spec; this is instruction-only with a bundled script. Nothing is downloaded or written to disk by an installer. This is the lower-risk pattern for skills that are local-audit focused.
Credentials
The skill declares no required environment variables or credentials, which is appropriate. However, the script reads various sensitive files and system resources (openclaw.json, .env files, SSH key paths, Docker socket and container details). Those accesses are proportionate to an auditing tool but are inherently sensitive — running the script gives it the ability to inspect local secrets and container metadata (Docker inspect can reveal container environment variables).
Persistence & Privilege
The skill is not always-enabled and does not request persistent presence or modify other skills. It runs as a one-off script when invoked. The agent's autonomous invocation capability is default and not combined with other concerning privileges here.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install security-monitor-deploy - 安装完成后,直接呼叫该 Skill 的名称或使用
/security-monitor-deploy触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release of Security Monitor.
- Performs comprehensive security audits for OpenClaw deployments.
- Checks Docker port bindings, SSH configuration, OpenClaw JSON settings, file permissions, exposed services, and firewall rules.
- Generates a security score (0–100) with detailed recommendations.
- Supports detailed output in both standard and JSON formats.
- Includes scoring rubric and actionable improvement tips for production readiness.
元数据
常见问题
Security Monitor Deploy 是什么?
Comprehensive security audit for OpenClaw deployments. Checks Docker port bindings, SSH config, openclaw.json settings, file permissions, exposed services, a... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 642 次。
如何安装 Security Monitor Deploy?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install security-monitor-deploy」即可一键安装,无需额外配置。
Security Monitor Deploy 是免费的吗?
是的,Security Monitor Deploy 完全免费(开源免费),可自由下载、安装和使用。
Security Monitor Deploy 支持哪些平台?
Security Monitor Deploy 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Security Monitor Deploy?
由 aiwithabidi(@aiwithabidi)开发并维护,当前版本 v1.0.0。
推荐 Skills