← 返回 Skills 市场
336
总下载
0
收藏
2
当前安装
1
版本数
在 OpenClaw 中安装
/install skills-firewall
功能描述
Security firewall for skills that automatically blocks and filters malicious or potentially harmful skills. Use when: (1) Scanning skills for security threat...
安全使用建议
This package appears to implement exactly what it claims (a local skills scanner/firewall), but review the code before trusting it on important data. Recommended steps before using or installing: 1) Inspect and run the scripts in a sandbox or unprivileged environment (do not point them at system root or directories with secrets). 2) Test on known-good and intentionally-malicious sample skills to verify decisions and to see whether scan_skill and firewall_check agree. 3) Pay attention to the ActionType handling and decision outputs — the enum/value handling looks buggy and could cause misclassification or no action. 4) Consider hardening rules to avoid blocking useful legitimate code (the rules are conservative and substring-based in places, causing false positives). 5) If you will run this in automation, ensure the quarantine behavior and export/import config paths are safe for your environment. If you are not comfortable auditing the Python code, treat this as untrusted and do not run it on sensitive directories.
功能分析
Type: OpenClaw Skill
Name: skills-firewall
Version: 1.0.0
This skill bundle implements a 'Skills Firewall' designed to scan, detect, and report on security threats within other OpenClaw skills. The code (`scripts/scan_skill.py`, `scripts/firewall_check.py`, `scripts/generate_report.py`) performs legitimate security analysis operations such as reading skill files, applying regular expression patterns to detect known malicious constructs (e.g., `eval()`, `os.system()`, hardcoded secrets, `curl`/`wget`), and generating reports. The `SKILL.md` documentation accurately describes the tool's purpose and provides instructions for its use, without any evidence of prompt injection attempts against the AI agent. All file operations and data processing are consistent with the stated goal of a security scanner, and there are no indicators of intentional harmful behavior, data exfiltration, persistence, or unauthorized actions by this skill itself.
能力评估
Purpose & Capability
Name/description match the code: the package contains a scanner (scan_skill.py), a firewall/checker (firewall_check.py) and a report generator (generate_report.py). Required env/config access is minimal (none declared). However there are implementation inconsistencies between components: scan_skill uses regex-based threat indicators while firewall_check does simple case-insensitive substring matching against rules. That mismatch can lead to different outcomes between scanning and firewalling. Also the ActionType enum and how action values are produced/compared appears buggy (ActionType members are defined as tuples but code later treats .value like a string), which could break decision logic.
Instruction Scope
SKILL.md instructs the agent to run the included scripts against arbitrary skill paths. The code will recursively read any file under the provided path with common source extensions ('.py', '.sh', '.js', '.ts', '.ps1', '.md', '.bat') via os.walk — this is expected for a scanner but means the tool will read any files you point it to (including sensitive files if you give it a broad path). The scripts do not perform network calls or exfiltrate data, but they will collect and return matched snippets and metadata about files they read.
Install Mechanism
No install spec or remote downloads. This is instruction-only with bundled Python scripts that run locally. That minimizes supply-chain risk from installation, assuming you run the code locally and don't modify it to fetch remote artifacts.
Credentials
The skill declares no required environment variables, credentials, or config paths. The code also does not attempt to read environment variables beyond typical YAML/config files — so requested permissions match the described purpose.
Persistence & Privilege
Flags show always:false and model invocation allowed (normal). The skill does not request persistent installation or modify other skills' configs. It can export/import a local YAML config and write to a quarantine directory (default './quarantine') which is within the scope of a firewall tool.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install skills-firewall - 安装完成后,直接呼叫该 Skill 的名称或使用
/skills-firewall触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release of skills-firewall — a security firewall for skills.
- Automatically scans and detects security threats in skills based on code patterns.
- Classifies threats by levels: SAFE, LOW, MEDIUM, HIGH, CRITICAL.
- Provides workflows to scan, filter, allow, block, and quarantine skills.
- Generates security reports in text, JSON, or HTML formats.
- Allows management of allowed/blocked skill lists and custom rule configuration.
- Offers programmatic API for integration and advanced use.
- Includes best practices and reference documentation for safe skill management.
元数据
常见问题
skills-firewall 是什么?
Security firewall for skills that automatically blocks and filters malicious or potentially harmful skills. Use when: (1) Scanning skills for security threat... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 336 次。
如何安装 skills-firewall?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install skills-firewall」即可一键安装,无需额外配置。
skills-firewall 是免费的吗?
是的,skills-firewall 完全免费(开源免费),可自由下载、安装和使用。
skills-firewall 支持哪些平台?
skills-firewall 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 skills-firewall?
由 huzibbs(@huzibbs)开发并维护,当前版本 v1.0.0。
推荐 Skills