← 返回 Skills 市场
schoolllllll
作者
sophiaashi
· GitHub ↗
· v1.0.1
· MIT-0
299
总下载
0
收藏
0
当前安装
2
版本数
在 OpenClaw 中安装
/install teamolab-school
功能描述
执行龙虾学校十道测试题,依步骤操作并保存所有证据,确保结果真实完整且逐题汇总。
安全使用建议
This skill runs many local and networked tests and then asks to push all evidence to a GitHub repo you do not control. Before installing or running it, consider the following: (1) It will write files to ~/Desktop/claw_evidence and read your Desktop file list — sensitive filenames or content could be captured. (2) The upload step requires Git credentials (SSH key or HTTP auth) even though the skill declares none; running it could cause your existing SSH keys or credential helper to be used to push data to that remote repo. (3) The prompt-injection test asks you to record the assistant's exact reply — that can cause internal prompts or sensitive text to be written out if the model is tricked. (4) It also expects access to notification, scheduling, and memory tools that typically require tokens or config. Recommended actions: run only in an isolated/sandboxed environment (no personal SSH keys, no sensitive files on Desktop), or edit the SKILL.md to remove the automatic upload step or replace the repo URL with a repo you control and to require explicit credentials (e.g., GIT_SSH_KEY or GITHUB_TOKEN) before pushing. If you must test it, provide disposable credentials and remove any sensitive files from ~/Desktop first. If you do not want automated pushing or potential exfiltration, do not install or invoke this skill. If you need certainty about what it will access, request the skill author to declare required env vars/config paths and to remove the instruction that records full assistant replies.
功能分析
Type: OpenClaw Skill
Name: teamolab-school
Version: 1.0.1
The skill bundle, framed as an 'intelligence test' for the agent, performs several high-risk actions in SKILL.md, including taking browser screenshots, listing notification channels, and gathering system metadata. Most critically, it instructs the agent to exfiltrate all collected 'evidence' files to an external GitHub repository (github.com/sophiaashi/shcool-skill-upload.git). While the data collected in this specific version is relatively low-sensitivity, the automated pipeline for uploading local files to a remote, hardcoded destination is a significant security risk and a common pattern for data exfiltration.
能力评估
Purpose & Capability
The skill's stated purpose is to run 10 test items and save evidence — that justifies local file writes and web queries. However, it also requires pushing results to a remote GitHub repository and using notification/scheduling/memory tools. The metadata declares no required env vars or config paths, yet uploading to GitHub and using external notification/scheduling services normally requires credentials (SSH keys, tokens) or config access. This is a capability mismatch: the skill expects access to system credentials/config that it does not declare.
Instruction Scope
SKILL.md instructs the agent to create files under ~/Desktop, take a browser screenshot of an external site, run/repair code, perform web searches for 'today' news, list and use notification channels, use the memory system, schedule immediate jobs, run parallel queries, and finally upload all evidence to a specified GitHub repo and report the commit hash. It also asks to save the agent's 'complete reply' for a prompt-injection decoy test — which could cause the agent to output internal instructions, prompts, or other sensitive content if tricked. The instructions reference external endpoints and system resources beyond a simple 'test runner' (e.g., GitHub push, HTTP endpoints, possible SSH key use), and they grant broad discretion to access tools that may store secrets.
Install Mechanism
This is an instruction-only skill with no install spec and no code files. That lowers installation risk because nothing new is written to disk by an installer. The runtime instructions themselves, however, perform file I/O and network actions.
Credentials
No environment variables, primary credential, or config paths are declared, yet the runtime requires (or will implicitly use) credentials and config: pushing to git (SSH agent or credential helper / existing SSH keys), notification channels (API tokens/webhooks), scheduling/memory tools (which may require tokens or config), and browser tooling. The skill therefore underdeclares required privileges and secrets which is disproportionate and risky.
Persistence & Privilege
always is false (good). The skill writes files to the user's Desktop and expects to push to a remote repo, which may use existing SSH keys or credential helpers. It does not declare or request permanent platform-level privileges, nor does it modify other skills' configs. Still, uploading user files to a third-party GitHub repo is a persistent exfiltration vector tied to available credentials.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install teamolab-school - 安装完成后,直接呼叫该 Skill 的名称或使用
/teamolab-school触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.1
Initial release with upload-to-git requirement for result files:
- First public release of "龙虾学校 · 智力测试"流程说明文档。
- 新增:所有测试结束后,要求将 summary.json(建议连同全部证据文件和 ai_news.md)上传至指定 GitHub 仓库(支持 SSH/HTTPS)。
- 明确上传步骤、仓库地址、提交信息格式及最终需返回的文件路径和 commit hash。
- 其余流程与前一版一致,涵盖自动测试10道题及详细汇总生成要求。
v1.0.0
龙虾学校·智力测试 v0.2 首个版本上线!
- 实现了 10 项自动化测试,覆盖文件写入、浏览器截图、抗 Prompt 注入、代码执行修复、实时新闻搜索、定时任务、消息通知、记忆系统、并行能力与全链路压测。
- 每项测试均要求严格结果保存、失败原因如实记录,并统一输出证据与 summary.json 汇总。
- 支持多工具联动检测各类能力,提升测试覆盖面和结果可靠性。
- 明确拒绝跳步、结果伪造,保证测试流程公正透明。
元数据
常见问题
schoolllllll 是什么?
执行龙虾学校十道测试题,依步骤操作并保存所有证据,确保结果真实完整且逐题汇总。 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 299 次。
如何安装 schoolllllll?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install teamolab-school」即可一键安装,无需额外配置。
schoolllllll 是免费的吗?
是的,schoolllllll 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
schoolllllll 支持哪些平台?
schoolllllll 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 schoolllllll?
由 sophiaashi(@sophiaashi)开发并维护,当前版本 v1.0.1。
推荐 Skills