← 返回 Skills 市场
100
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install toolweb-openshift-hardening
功能描述
Professional OpenShift Container Platform security configuration generator that creates hardened deployment manifests and security policies.
安全使用建议
This skill appears to implement what it claims (OpenShift hardening config generation) but has several red flags you should consider before installing or using it:
- Verify the vendor and provenance: the SKILL.md uses Red Hat terminology but there is no source or homepage and the owner ID is unverified. Confirm this is an official or trusted provider before sending data.
- Avoid sending sensitive cluster data or secrets: the API paths and the example download URL point to api.mkkpro.com and the OpenAPI spec does not define authentication. Data you send could be stored or accessed by a third party.
- Prefer local/offline generation or an officially supported tool if you must harden production clusters. If you still want to test this skill, do so in an isolated environment with non-production data and contact the vendor for security/privacy documentation and authentication requirements.
- If you need to proceed in a real environment, ask the skill author for: a) proof of identity/affiliation, b) privacy/security policy for submitted data, and c) an authenticated API flow (OAuth/API key) with clear retention rules.
Because of the external service call and lack of provenance/authentication, treat this skill as suspicious until those questions are answered.
功能分析
Type: OpenClaw Skill
Name: toolweb-openshift-hardening
Version: 1.0.0
The skill bundle provides a professional interface for generating OpenShift security hardening configurations via an external API (api.mkkpro.com). The documentation in SKILL.md and the OpenAPI definition are consistent with the stated purpose of creating network policies and RBAC rules, with no evidence of malicious instructions, data exfiltration, or unauthorized execution logic.
能力评估
Purpose & Capability
The SKILL.md and openapi.json describe an API that generates OpenShift hardening manifests and policy objects, which is coherent with the skill name and description. However the package claims Red Hat branding while the source/homepage are missing and the owner ID is unverified — that mismatch is a provenance/branding concern (possible impersonation or misleading naming).
Instruction Scope
The instructions present sample requests/responses and an OpenAPI spec for endpoints that accept hardeningOptions and return download URLs. They do not instruct the agent to read local system files or environment variables, but they imply sending user-supplied configuration/context to a remote service. Because OpenShift manifests and cluster details can be sensitive, this external-call vector is a privacy/exfiltration risk even though the SKILL.md doesn't directly tell the agent to read local files.
Install Mechanism
No install spec and no code files beyond documentation/OpenAPI are included; this is instruction-only so nothing will be written to disk by an installer. That lowers risk from arbitrary code installation.
Credentials
The skill declares no required environment variables or credentials. At first glance this is proportional, but the OpenAPI spec contains no securitySchemes or authentication details: the documented endpoints (including a downloadUrl hosted at https://api.mkkpro.com) appear callable without declared credentials. Sending potentially sensitive cluster config to an unauthenticated third‑party endpoint is a data‑exposure concern. Also the lack of provenance for the service means there's no assurance of how submitted data will be stored or used.
Persistence & Privilege
always:false and no install/update behavior are present. The skill does not request permanent presence or modify other skills/configs — no elevated persistence privileges are requested.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install toolweb-openshift-hardening - 安装完成后,直接呼叫该 Skill 的名称或使用
/toolweb-openshift-hardening触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Red Hat OpenShift Security Hardening Tool – Initial Release
- Launches a professional API to generate security-hardened configuration files for OpenShift deployments.
- Automates creation of production-ready manifests covering network policies, RBAC, pod security, image security, and encryption.
- Provides endpoints for health checks, option discovery, and configuration generation with compliance mapping.
- Offers multi-format (YAML/JSON) output and downloadable bundles.
- Supports varied pricing plans with Free, Developer, Professional, and Enterprise tiers.
元数据
常见问题
OpenShift Hardening 是什么?
Professional OpenShift Container Platform security configuration generator that creates hardened deployment manifests and security policies. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 100 次。
如何安装 OpenShift Hardening?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install toolweb-openshift-hardening」即可一键安装,无需额外配置。
OpenShift Hardening 是免费的吗?
是的,OpenShift Hardening 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
OpenShift Hardening 支持哪些平台?
OpenShift Hardening 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 OpenShift Hardening?
由 ToolWeb(@krishnakumarmahadevan-cmd)开发并维护,当前版本 v1.0.0。
推荐 Skills