← 返回 Skills 市场
SSL证书查询
作者
sunny-lobster-api
· GitHub ↗
· v1.2.5
· MIT-0
94
总下载
1
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install ssl-monitor
功能描述
查询域名 SSL 证书过期时间。用法:说「查 xxx.cn 证书」或「SSL 证书 xxx.com」即可。
安全使用建议
This skill appears to do exactly what it claims: it uses openssl to connect to the domains you ask about and reports certificate expiry. Before installing, note that: (1) it will open outbound TCP connections to whatever domains you query (port 443) — avoid querying sensitive internal hosts if you don't want probes recorded in logs; (2) it creates/uses a domain list at ~/.openclaw/workspace/ssl-domains.txt (inspect or change that path if desired); (3) review the included check-ssl.sh yourself (it is small and readable) if you have strict security controls; and (4) ensure openssl is available on your system. There are no requested credentials or hidden network endpoints.
功能分析
Type: OpenClaw Skill
Name: ssl-monitor
Version: 1.2.5
The skill provides legitimate SSL certificate monitoring functionality using openssl but contains a shell injection vulnerability. Both the core command in SKILL.md and the check-ssl.sh script use the domain variable directly in shell execution without input sanitization, which could be exploited to run arbitrary commands. No evidence of intentional malice, data exfiltration, or persistence was found.
能力评估
Purpose & Capability
Name/description say 'check domain SSL certificate expiry' and the skill only requires openssl and performs TLS connections to the queried domains to read certificate end dates. The requirement (openssl) is appropriate and proportional.
Instruction Scope
SKILL.md and the included check-ssl.sh only read a domain list (default ~/.openclaw/workspace/ssl-domains.txt) or a provided domain, call openssl against the target host:443, parse dates, and output results. There are no instructions to read unrelated system files, secrets, or to send data to third-party endpoints beyond connecting to the target domains.
Install Mechanism
There is no install spec; this is instruction- and script-only. No downloads from external URLs or archive extraction are performed.
Credentials
The skill declares no required environment variables or credentials. The script writes/reads a domain file under the user's home workspace (~/.openclaw/workspace), which is reasonable for a domain-monitoring tool and does not require sensitive credentials.
Persistence & Privilege
The skill is user-invocable and not always-on. It does not request persistent elevated privileges or modify other skills' configuration. Its default behavior (creating a template domain file under the user's workspace) is limited in scope.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install ssl-monitor - 安装完成后,直接呼叫该 Skill 的名称或使用
/ssl-monitor触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.2.5
- 中文用法说明补充,支持直接一句话查询域名 SSL 证书状态。
- 提供核心命令行逻辑,展示如何检测 SSL 证书过期时间及剩余天数。
- 增加详细响应示例,包含状态判定(正常/注意/紧急)。
- 明确依赖 openssl 工具。
元数据
常见问题
SSL证书查询 是什么?
查询域名 SSL 证书过期时间。用法:说「查 xxx.cn 证书」或「SSL 证书 xxx.com」即可。 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 94 次。
如何安装 SSL证书查询?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install ssl-monitor」即可一键安装,无需额外配置。
SSL证书查询 是免费的吗?
是的,SSL证书查询 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
SSL证书查询 支持哪些平台?
SSL证书查询 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 SSL证书查询?
由 sunny-lobster-api(@sunny-lobster-api)开发并维护,当前版本 v1.2.5。
推荐 Skills