← 返回 Skills 市场
75
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install test-skill-vetter2
功能描述
Vets AI skills for security by checking source, code for red flags, permissions, and risks before installation to ensure safe usage.
使用说明 (SKILL.md)
Skill Vetter 🔒
Security-first vetting protocol for AI agent skills. Never install a skill without vetting it first.
When to Use
- Before installing any skill from ClawdHub
- Before running skills from GitHub repos
- When evaluating skills shared by other agents
- Anytime you're asked to install unknown code
Vetting Protocol
Step 1: Source Check
Questions to answer:
- [ ] Where did this skill come from?
- [ ] Is the author known/reputable?
- [ ] How many downloads/stars does it have?
- [ ] When was it last updated?
- [ ] Are there reviews from other agents?
Step 2: Code Review (MANDATORY)
Read ALL files in the skill. Check for these RED FLAGS:
🚨 REJECT IMMEDIATELY IF YOU SEE:
─────────────────────────────────────────
• curl/wget to unknown URLs
• Sends data to external servers
• Requests credentials/tokens/API keys
• Reads ~/.ssh, ~/.aws, ~/.config without clear reason
• Accesses MEMORY.md, USER.md, SOUL.md, IDENTITY.md
• Uses base64 decode on anything
• Uses eval() or exec() with external input
• Modifies system files outside workspace
• Installs packages without listing them
• Network calls to IPs instead of domains
• Obfuscated code (compressed, encoded, minified)
• Requests elevated/sudo permissions
• Accesses browser cookies/sessions
• Touches credential files
─────────────────────────────────────────
Step 3: Permission Scope
Evaluate:
- [ ] What files does it need to read?
- [ ] What files does it need to write?
- [ ] What commands does it run?
- [ ] Does it need network access? To where?
- [ ] Is the scope minimal for its stated purpose?
Step 4: Risk Classification
| Risk Level | Examples | Action |
|---|---|---|
| 🟢 LOW | Notes, weather, formatting | Basic review, install OK |
| 🟡 MEDIUM | File ops, browser, APIs | Full code review required |
| 🔴 HIGH | Credentials, trading, system | Human approval required |
| ⛔ EXTREME | Security configs, root access | Do NOT install |
Output Format
After vetting, produce this report:
SKILL VETTING REPORT
═══════════════════════════════════════
Skill: [name]
Source: [ClawdHub / GitHub / other]
Author: [username]
Version: [version]
───────────────────────────────────────
METRICS:
• Downloads/Stars: [count]
• Last Updated: [date]
• Files Reviewed: [count]
───────────────────────────────────────
RED FLAGS: [None / List them]
PERMISSIONS NEEDED:
• Files: [list or "None"]
• Network: [list or "None"]
• Commands: [list or "None"]
───────────────────────────────────────
RISK LEVEL: [🟢 LOW / 🟡 MEDIUM / 🔴 HIGH / ⛔ EXTREME]
VERDICT: [✅ SAFE TO INSTALL / ⚠️ INSTALL WITH CAUTION / ❌ DO NOT INSTALL]
NOTES: [Any observations]
═══════════════════════════════════════
Quick Vet Commands
For GitHub-hosted skills:
# Check repo stats
curl -s "https://api.github.com/repos/OWNER/REPO" | jq '{stars: .stargazers_count, forks: .forks_count, updated: .updated_at}'
# List skill files
curl -s "https://api.github.com/repos/OWNER/REPO/contents/skills/SKILL_NAME" | jq '.[].name'
# Fetch and review SKILL.md
curl -s "https://raw.githubusercontent.com/OWNER/REPO/main/skills/SKILL_NAME/SKILL.md"
Trust Hierarchy
- Official OpenClaw skills → Lower scrutiny (still review)
- High-star repos (1000+) → Moderate scrutiny
- Known authors → Moderate scrutiny
- New/unknown sources → Maximum scrutiny
- Skills requesting credentials → Human approval always
Remember
- No skill is worth compromising security
- When in doubt, don't install
- Ask your human for high-risk decisions
- Document what you vet for future reference
Paranoia is a feature. 🔒🦀
安全使用建议
Install only after reviewing the actual SKILL.md, metadata.json, and artifact contents, since this scan could not verify them directly.
能力评估
Purpose & Capability
Not assessable from artifacts because metadata.json and artifact files could not be read in this environment.
Instruction Scope
Not assessable from artifacts because the skill instructions could not be inspected.
Install Mechanism
Not assessable from artifacts because install metadata and package files could not be inspected.
Credentials
Not assessable from artifacts because runtime files and capability declarations could not be inspected.
Persistence & Privilege
Not assessable from artifacts because persistence, credential, and privilege behavior could not be inspected.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install test-skill-vetter2 - 安装完成后,直接呼叫该 Skill 的名称或使用
/test-skill-vetter2触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Version 1.0.0 of skill-vetter2 introduces a protocol for security-first skill vetting for AI agent skills.
- Provides a step-by-step process for vetting skills from external sources (ClawdHub, GitHub, etc.)
- Outlines red flags to immediately reject (e.g., sending data externally, requesting credentials, obfuscated code)
- Defines a risk classification system (LOW to EXTREME) with recommended actions
- Supplies a standard vetting report template for documenting reviews
- Includes quick commands for gathering repo and skill stats
- Establishes a trust hierarchy to guide scrutiny level based on source and author
元数据
常见问题
test-skill-vetter2 是什么?
Vets AI skills for security by checking source, code for red flags, permissions, and risks before installation to ensure safe usage. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 75 次。
如何安装 test-skill-vetter2?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install test-skill-vetter2」即可一键安装,无需额外配置。
test-skill-vetter2 是免费的吗?
是的,test-skill-vetter2 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
test-skill-vetter2 支持哪些平台?
test-skill-vetter2 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 test-skill-vetter2?
由 xavi296(@xavi296)开发并维护,当前版本 v1.0.0。
推荐 Skills