← 返回 Skills 市场
msrovani

EvidenceOps - Forensic Evidence Management

作者 msrovani · GitHub ↗ · v1.0.0
darwinlinuxwin32 ✓ 安全检测通过
638
总下载
1
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install skill-evidenceops
功能描述
Forensic media triage with chain of custody. Use when receiving images, videos, audio, PDFs, or documents that need evidence-grade handling, integrity verifi...
安全使用建议
This package appears to be a legitimate forensic evidence tool, but check these before installing: - Confirm source integrity: the repository/package owner is not a known homepage; verify the npm package name and publisher, or install from the included code after review. - Resolve the metadata inconsistency: SKILL.md recommends npm install but registry metadata shows “no install spec.” Ask the publisher which install method to use. - If you plan to use S3/MinIO: configure AWS credentials via IAM roles or environment in a controlled way (avoid embedding static secrets). The skill itself doesn't declare required env vars because cloud storage is optional. - Review and test redaction and path-sanitization on non-sensitive test data to ensure they behave as described. - Review the platform permission grant for “Bash” / shell execution—this is broad and should be restricted to trusted environments. - For production, follow the SECURITY.md recommendations: channel allowlist, pairing, size limits, audit logging, and object-locked S3 buckets if using cloud storage. If you want, I can list specific files to inspect (e.g., src/drivers/s3.ts, src/utils/redaction.ts, src/utils/path.ts) or summarize their contents for deeper review.
功能分析
Type: OpenClaw Skill Name: skill-evidenceops Version: 1.0.0 The OpenClaw AgentSkills skill bundle 'evidenceops' is classified as benign. It demonstrates a strong security posture with robust input sanitization (path traversal prevention, filename sanitization), cryptographic integrity verification (SHA-256, hash chain), immutability controls (read-only files, S3 Object Lock), and automatic secret/PII redaction in audit logs. The `SKILL.md` actively uses the prompt injection surface to declare security guarantees and 'NEVER' statements, which are consistently supported by the TypeScript code and comprehensive security documentation (`SECURITY.md`, `DESIGN.md`). The CI/CD pipeline (`security.yml`) further reinforces this by including secret scanning, dependency auditing, and SAST tools, indicating a proactive security development approach. There is no evidence of intentional harmful behavior or exploitation.
能力评估
Purpose & Capability
The skill name/description (forensic media triage, chain of custody) aligns with the provided code and docs: a plugin implements ingestion, verification, manifests, exports, filesystem and S3 drivers, hashing, path sanitization, and redaction. The included dependencies (exifreader, archiver, AWS SDK) are consistent with the stated functionality.
Instruction Scope
SKILL.md instructions are scoped to forensic intake: staging files, calculating SHA-256, extracting metadata, generating derivatives, calling evidence.ingest and updating manifests. The instructions explicitly forbid modifying originals, executing untrusted code, or exfiltrating data. They reference only relevant inputs (file content, filename, channel, sender) and expected tools (evidence.*).
Install Mechanism
SKILL.md frontmatter and README recommend installing the plugin via npm (@openclaw/evidence-vault). There is no remote arbitrary-download/install step (good). Small inconsistency: registry metadata earlier said “No install spec — instruction-only”, but the skill and repo include an npm plugin and package files. Confirm which install path the platform will use (manual copy vs npm install).
Credentials
The skill declares no required environment variables, which is reasonable for a local-first tool. However, the plugin contains an S3 driver and lists @aws-sdk/client-s3 in dependencies; if you configure an S3 backend you will need appropriate credentials or IAM roles. The skill does not automatically request/require AWS credentials, which is proportionate provided S3 use is optional and user-configured.
Persistence & Privilege
The skill is not marked always:true and does not request system-wide config changes. It documents use of a vault directory and local manifests; nothing in the repository indicates it would modify other skills or force-enable itself. Permission scoping includes Read/Write/Bash in metadata — Bash access is broad but justified for staging/derivative generation; review platform permission model before granting shell access.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install skill-evidenceops
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /skill-evidenceops 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
This is the initial release of EvidenceOps, a forensic-grade evidence management system for OpenClaw. It provides: 1. **Complete Skill for ClawHub** - Ready-to-publish skill with comprehensive documentation 2. **Dual Storage Drivers** - Filesystem (local) and S3/MinIO (cloud) backends 3. **Chain of Custody** - Cryptographic hash chain for evidence integrity 4. **Security-First Design** - Path sanitization, secret redaction, channel controls 5. **Full Test Coverage** - Unit and integration tests for core functionality The skill teaches OpenClaw agents how to: - Accept media from any channel - Create/manage cases with proper IDs - Stage originals without modification - Extract metadata (EXIF, duration, pages) - Generate derivatives in separate folders - Maintain tamper-evident audit trails - Return evidence receipts to users The plugin provides the backend implementation with: - Pluggable storage architecture - Deterministic manifest generation - Channel-based access control - Comprehensive error handling
元数据
Slug skill-evidenceops
版本 1.0.0
许可证
累计安装 0
当前安装数 0
历史版本数 1
常见问题

EvidenceOps - Forensic Evidence Management 是什么?

Forensic media triage with chain of custody. Use when receiving images, videos, audio, PDFs, or documents that need evidence-grade handling, integrity verifi... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 638 次。

如何安装 EvidenceOps - Forensic Evidence Management?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install skill-evidenceops」即可一键安装,无需额外配置。

EvidenceOps - Forensic Evidence Management 是免费的吗?

是的,EvidenceOps - Forensic Evidence Management 完全免费(开源免费),可自由下载、安装和使用。

EvidenceOps - Forensic Evidence Management 支持哪些平台?

EvidenceOps - Forensic Evidence Management 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(darwin, linux, win32)。

谁开发了 EvidenceOps - Forensic Evidence Management?

由 msrovani(@msrovani)开发并维护,当前版本 v1.0.0。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191113 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论