← 返回 Skills 市场
jonathanjing

skill-trust-auditor

作者 Jonathan Jing · GitHub ↗ · v1.1.3
cross-platform ✓ 安全检测通过
617
总下载
0
收藏
1
当前安装
5
版本数
在 OpenClaw 中安装
/install skill-trust-auditor
功能描述
Audit a ClawHub skill for security risks BEFORE installation.
安全使用建议
This skill appears to do what it claims: fetch skill files and run pattern checks. Before installing: (1) review patterns.json if you want to understand what it flags and the allowlisted domains; (2) be aware that enabling '--llm' mode will send snippets to Anthropic if you set ANTHROPIC_API_KEY (only enable if you trust that service); (3) running setup.sh will pip-install packages (requests, anthropic) — inspect the setup script and installed packages if you must maintain a strict supply-chain policy; (4) the auditor fetches remote skill files over the network to analyze them — this network access is necessary but means the tool can only be as accurate as the sources it fetches. Overall, the package is coherent and reasonable for an auditor, but exercise standard caution when enabling LLM judgement or when allowing pip installs on sensitive hosts.
功能分析
Type: OpenClaw Skill Name: skill-trust-auditor Version: 1.1.3 The OpenClaw skill-trust-auditor is designed to identify security risks in other skills. Its own implementation demonstrates a strong focus on security, including robust input validation and sanitization (e.g., `_sanitize_untrusted` in `scripts/analyze_skill.py`) to prevent prompt injection when using LLMs. Shell commands in `scripts/audit.sh` correctly quote user input, mitigating shell injection risks. The skill's dependencies are standard, and there is no evidence of data exfiltration, backdoor installation, or other malicious intent within its own code or instructions. All identified high-risk patterns are part of its detection logic (`scripts/patterns.json`), not actions performed by the skill itself.
能力评估
Purpose & Capability
The skill's name/description (audit ClawHub skills) match the actual artifacts: a Python analyzer, shell wrappers, and a patterns.json. Declared binaries (python3, optional clawhub) are appropriate. No unrelated credentials or binaries are requested.
Instruction Scope
Runtime instructions only run the included setup and audit scripts which fetch SKILL.md and referenced scripts from ClawHub/GitHub, then run regex checks. The instructions do not direct the agent to read unrelated local secrets or modify other skills. The only path that references home config is an optional alias pointing to the installed auditor script (not a request to read ~/.openclaw or secrets).
Install Mechanism
No platform install spec is provided; setup.sh installs Python packages (requests and optional anthropic) from PyPI via pip. This is expected for a Python tool but introduces normal supply-chain risk from PyPI packages; packages are well-known (requests, anthropic) and installation is local and explicit.
Credentials
The skill declares no required env vars. It does optionally use ANTHROPIC_API_KEY for the '--llm' mode (README and setup.sh mention this). That optional key is proportionate to an LLM-as-judge feature but is not required for core auditing; the SKILL metadata does not list it as required, which is consistent.
Persistence & Privilege
The skill does not request always:true, does not attempt to modify other skills or agent core files, and the provided setup only installs local Python packages. It does not create persistent hooks or modify shell profiles.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install skill-trust-auditor
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /skill-trust-auditor 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.1.3
Corrected misleading binary requirements (python3 is mandatory).
v1.1.2
Added simplified installation instructions to SKILL.md and README.md.
v1.1.1
Re-submit for VirusTotal scan clearance (scan clean: 08cd55a5). No code changes from v1.1.0.
v1.1.0
Fix prompt injection vulnerability in LLM-as-judge: sanitize untrusted content, XML boundary tags, system prompt hardening, LLM verdict is advisory-only (never overrides static score)
v1.0.0
Initial release: 52 pattern rules, Trust Score 0-100, LLM-as-judge, ClawHavoc pattern database
元数据
Slug skill-trust-auditor
版本 1.1.3
许可证
累计安装 1
当前安装数 1
历史版本数 5
常见问题

skill-trust-auditor 是什么?

Audit a ClawHub skill for security risks BEFORE installation. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 617 次。

如何安装 skill-trust-auditor?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install skill-trust-auditor」即可一键安装,无需额外配置。

skill-trust-auditor 是免费的吗?

是的,skill-trust-auditor 完全免费(开源免费),可自由下载、安装和使用。

skill-trust-auditor 支持哪些平台?

skill-trust-auditor 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 skill-trust-auditor?

由 Jonathan Jing(@jonathanjing)开发并维护,当前版本 v1.1.3。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论