← 返回 Skills 市场

skill sec

Name: skill sec
Author: uttamnest

作者 uttamnest · GitHub ↗ · v1.0.1

cross-platform ⚠ suspicious

564

总下载

当前安装

版本数

在 OpenClaw 中安装

/install skill-sec

功能描述

Security agent that inventories installed OpenClaw skills, analyzes them for threats, and syncs results to your Clawned dashboard.

安全使用建议

This skill appears to do what it says: it inventories installed skills and (when you explicitly run a scan) uploads selected source/config files to a Clawned server. Before installing or enabling it, consider: - Only provide CLAWNED_API_KEY if you trust the Clawned service and its privacy/security practices (default server is api.clawned.io). Review their privacy/retention policies. - 'sync' uploads only metadata (owner, slug, displayName, commit/version). 'scan --path' will upload file contents (up to 30 files, 512KB each) — do NOT run scan on arbitrary or sensitive directories (e.g., repos containing secrets). - The agent reads ~/.openclaw/openclaw.json to find extra skill directories; make sure that file does not expose unintended paths you don't want scanned. - The script stores a local state file at ~/.openclaw/clawned_agent.json (agent id, timestamps). - If you want extra caution: run a quick code review of scripts/agent.py locally, or run the agent in a constrained environment (container) or against a test CLAWNED_SERVER endpoint before using it on production data. If you have low tolerance for uploading any project files, avoid using 'scan --path' or run scans only on copies you control.

功能分析

Type: OpenClaw Skill Name: skill-sec Version: 1.0.1 The skill is classified as suspicious due to its high-risk capabilities, despite being explicitly declared in the documentation. The `scripts/agent.py` file, when executing the `scan --path` command, reads the full content of other skill's source files and sends them to the external server `https://api.clawned.io`. While this is declared in `SKILL.md` as part of a security analysis feature, sending arbitrary source code to an external endpoint is a significant trust requirement and a potential data exfiltration risk if the server or skill were compromised. Additionally, the skill accesses `~/.openclaw/openclaw.json` (a `CRED-001` pattern) in `scripts/agent.py` to discover skill directories, even though it claims to only read `extraDirs` and not credentials, this still represents a sensitive file access capability.

能力评估

✓ Purpose & Capability

Name/description, required binary (python3), and required env var (CLAWNED_API_KEY) align with behavior in the code: the agent discovers installed skills and POSTs metadata or, on explicit scan, file contents to a Clawned server. Reading ~/.openclaw/openclaw.json to locate extraDirs is consistent with discovery functionality.

ℹ Instruction Scope

SKILL.md and the script keep scope consistent: 'sync' only sends metadata (owner, slug, displayName, latest.commit/version), while 'scan --path' explicitly reads up to 30 scannable files (many config/source extensions) and uploads their contents. The skill explicitly excludes .env files, but other config files (JSON/YAML/TOML, etc.) are collected on explicit scans — users should avoid scanning arbitrary/non-skill directories.

✓ Install Mechanism

No install spec is provided (instruction-only + included Python script). Nothing is downloaded or installed at runtime; risk from install mechanism is low.

✓ Credentials

Only CLAWNED_API_KEY is required (CLAWNED_SERVER is optional). That single credential is proportional to a service that must authenticate to a remote dashboard. The agent does read openclaw.json to find extraDirs, but it does not send that config to the server in normal operation.

✓ Persistence & Privilege

The skill is not auto-included (always:false). It writes a small state file (~/.openclaw/clawned_agent.json) to store agent_id and last sync timestamps — this is reasonable for an agent. There is no evidence it modifies other skills or system-wide config.

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install skill-sec
安装完成后，直接呼叫该 Skill 的名称或使用 /skill-sec 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v1.0.1

- Added a new "Data & Privacy" section explaining what metadata and files are collected or sent during `sync` and `scan` commands. - Clarified that no file contents, secrets, or `.env` files are sent or read during default sync operations. - Detailed file handling, scan exclusions, and local config access for increased transparency.

v1.0.0

Initial release of the security agent for OpenClaw. - Inventories all installed OpenClaw skills automatically. - Analyzes skills for security threats using detection patterns and threat models. - Syncs security results to the dashboard. - Includes CLI script (`agent.py`) for manual scan, sync, inventory, and status. - Provides setup instructions and supports scheduled automatic scans.

元数据

Slug skill-sec

版本 1.0.1

许可证 —

累计安装 1

当前安装数 1

历史版本数 2

常见问题

skill sec 是什么？

Security agent that inventories installed OpenClaw skills, analyzes them for threats, and syncs results to your Clawned dashboard. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件，目前累计下载 564 次。

如何安装 skill sec？

在 OpenClaw 或 Claude Code 对话框中运行命令「/install skill-sec」即可一键安装，无需额外配置。

skill sec 是免费的吗？

是的，skill sec 完全免费（开源免费），可自由下载、安装和使用。

skill sec 支持哪些平台？

skill sec 跨平台运行，可在任意部署了 OpenClaw / Claude Code 的环境中使用（cross-platform）。

谁开发了 skill sec？

由 uttamnest（@uttamnest）开发并维护，当前版本 v1.0.1。