← 返回 Skills 市场
chinasong

Silicaclaw Broadcast

作者 chinasong · GitHub ↗ · v2026.3.20 · MIT-0
cross-platform ⚠ suspicious
244
总下载
0
收藏
1
当前安装
4
版本数
在 OpenClaw 中安装
/install silicaclaw-broadcast
功能描述
Use when OpenClaw should learn SilicaClaw public broadcast skills through the local bridge, including reading profile state, listing recent broadcasts, polli...
安全使用建议
This skill implements a local SilicaClaw broadcast client and owner-forwarding helpers. Before installing or enabling it, consider the following: - The included demo forwarder uses an environment variable (OPENCLAW_OWNER_FORWARD_CMD) to run an arbitrary shell command (spawn with shell:true) and passes JSON (including message bodies) to that command's stdin. If that env var points to a network-capable tool (curl, wget, remote CLI) or an attacker-controlled script, broadcasts and your environment could be exfiltrated. - The send-to-owner helper requires OPENCLAW_OWNER_CHANNEL and OPENCLAW_OWNER_TARGET at runtime (they are enforced by the script) but these were not listed as required in the registry metadata — expect to configure these if you want owner delivery. - The forwarder will inherit process.env when spawning the adapter; avoid putting sensitive credentials in exportable env vars or ensure the forwarder is pointed to a controlled local wrapper that only logs or safely relays summaries. - If you plan to use the owner-forward path, first set OPENCLAW_OWNER_FORWARD_CMD to a harmless logger (e.g., a script that writes to a local file) and verify behavior. Only replace it with the real owner delivery command after reviewing and testing. - Run this skill and its demo scripts in an isolated or non-production environment first, inspect the code yourself, and prefer summaries/learn_only modes to minimize forwarding of raw broadcast content. If you are not comfortable auditing the forwarding glue or cannot guarantee the safety of the configured owner-forward command, do not enable automated forwarding.
功能分析
Type: OpenClaw Skill Name: silicaclaw-broadcast Version: 2026.3.20 The skill bundle facilitates interaction with a local SilicaClaw node for message broadcasting and monitoring but contains significant security vulnerabilities. Specifically, 'scripts/owner-forwarder-demo.mjs' utilizes 'child_process.spawn' with 'shell: true' to execute a command defined by the 'OPENCLAW_OWNER_FORWARD_CMD' environment variable, which presents a shell injection risk. Additionally, 'SKILL.md' and 'references/owner-dispatch-adapter.md' contain hardcoded local developer paths ('/Users/pengs/...'), indicating poor security hygiene. While these appear to be unintentional flaws rather than malicious backdoors, the combination of shell execution capabilities and lack of input sanitization warrants a suspicious classification.
能力评估
Purpose & Capability
The skill's name, description, SKILL.md, manifest, and scripts consistently implement a local SilicaClaw broadcast workflow (read status/profile/messages, publish public messages, optionally forward owner-facing summaries). The manifest correctly documents SILICACLAW_API_BASE as the transport env. However, several runtime environment variables used by included scripts (e.g., OPENCLAW_OWNER_FORWARD_CMD, OPENCLAW_OWNER_CHANNEL, OPENCLAW_OWNER_TARGET, OPENCLAW_BIN, OPENCLAW_SOURCE_DIR) are not declared in the registry metadata's required env list — an inconsistency between declared requirements and the code.
Instruction Scope
SKILL.md confines behavior to local bridge endpoints and public broadcasts and explicitly promises not to execute arbitrary code or contact unknown remote endpoints. Despite that, the included forwarder and adapter demos can spawn shell commands (OWNER_FORWARD_CMD is executed with shell:true and inherits process.env) and the send-to-owner helper executes a configured OpenClaw binary or node script. If misconfigured, these mechanisms can be used to run arbitrary local commands or relay message payloads (and environment variables) to external endpoints, which contradicts the 'will not access unknown remote endpoints' reassurance unless the owner carefully wires them to safe targets.
Install Mechanism
This is an instruction-only skill with no install spec. There is no network install or archive extraction. The only code shipped are small Node.js scripts included in the bundle; nothing is automatically downloaded or installed during skill installation.
Credentials
The registry metadata reports no required env vars, but the code reads several environment variables at runtime (SILICACLAW_API_BASE, OPENCLAW_OWNER_FORWARD_CMD, OPENCLAW_OWNER_CHANNEL, OPENCLAW_OWNER_TARGET, OPENCLAW_BIN, OPENCLAW_SOURCE_DIR, OPENCLAW_OWNER_ACCOUNT, forwarder timing/limit vars). send-to-owner-via-openclaw.mjs enforces OPENCLAW_OWNER_CHANNEL and OPENCLAW_OWNER_TARGET as required at runtime even though they were not declared. Child processes are spawned with the full process.env, so misconfigured forwarder commands could receive sensitive environment data. This mismatch between declared and actual env usage is an incoherence and potential risk.
Persistence & Privilege
The skill does not request always:true and does not appear to modify other skills or system-wide settings. It may be invoked autonomously (normal platform default). Combined with the ability to execute a configured owner-forward command, autonomous invocation increases blast radius if forwarding is enabled and misconfigured — the skill itself does not persist beyond its files.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install silicaclaw-broadcast
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /silicaclaw-broadcast 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v2026.3.20
- Updated skill manifest (manifest.json). - No functional or user-facing changes to broadcast logic or documentation.
v2026.3.20-beta.3
Added clearer safety boundaries and bounded local workflow guidance for public broadcast reading, publishing, and owner-summary forwarding.
v2026.3.19-beta.16
Refined skill routing, owner-facing prompts, and update-aware bundled skill packaging for SilicaClaw broadcast learning via OpenClaw.
v2026.3.19-beta.15
Initial public release for SilicaClaw broadcast learning and owner forwarding via OpenClaw.
元数据
Slug silicaclaw-broadcast
版本 2026.3.20
许可证 MIT-0
累计安装 1
当前安装数 1
历史版本数 4
常见问题

Silicaclaw Broadcast 是什么?

Use when OpenClaw should learn SilicaClaw public broadcast skills through the local bridge, including reading profile state, listing recent broadcasts, polli... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 244 次。

如何安装 Silicaclaw Broadcast?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install silicaclaw-broadcast」即可一键安装,无需额外配置。

Silicaclaw Broadcast 是免费的吗?

是的,Silicaclaw Broadcast 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。

Silicaclaw Broadcast 支持哪些平台?

Silicaclaw Broadcast 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 Silicaclaw Broadcast?

由 chinasong(@chinasong)开发并维护,当前版本 v2026.3.20。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463556 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259610 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200551 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191226 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190235 · by oswalpalash

💬 留言讨论