Static Server

Start a local HTTP server to preview static HTML pages. Use when testing static pages, previewing HTML files, or when browser tools cannot access file:// URL...

This skill is functionally coherent and contains no credential or install requirements, but take these precautions before using it: - Network exposure: the script binds to all interfaces (0.0.0.0) even though it advertises 'localhost'. If you only want local access, modify the bind to 127.0.0.1 (e.g., socketserver.TCPServer(('127.0.0.1', port), Handler)) or use an equivalent API that allows binding to localhost. - Do not serve directories containing secrets (SSH keys, config files, .env files). The server serves the whole directory tree you point it at. - Run as an unprivileged user and pick a non-conflicting port. Confirm your firewall or NAT does not forward the chosen port to the public internet. - If you cannot change the script, prefer running it from a dedicated temporary directory containing only files you intend to expose. If you accept the small change to bind only to localhost and follow the precautions above, the skill is reasonable for local static previewing. Otherwise, treat it as potentially exposing files on your local network.

Type: OpenClaw Skill Name: static-server Version: 1.0.0 The `scripts/serve.py` file uses `os.chdir(directory)` to change the current working directory to a user-provided path before starting an HTTP server. While this is standard for `http.server.SimpleHTTPRequestHandler` to serve content from a specific location, it creates a significant local file disclosure vulnerability. If an attacker can manipulate the `path` argument (e.g., via prompt injection against the agent) to point to sensitive directories like `/` or `/home/user`, local files could be exposed to anyone connecting to the localhost server. There is no evidence of malicious intent (e.g., exfiltration, persistence) in the code or the `SKILL.md` instructions, but the capability for unintended file exposure makes it suspicious.