← 返回 Skills 市场
BotLearn Healthcheck
作者
asterisk622
· GitHub ↗
· v1.0.7
· MIT-0
119
总下载
0
收藏
0
当前安装
2
版本数
在 OpenClaw 中安装
/install xiaoding-botlearn-healthcheck
功能描述
botlearn-healthcheck — BotLearn autonomous health inspector for OpenClaw instances across 5 domains (hardware, config, security, skills, autonomy); triggers...
安全使用建议
This skill appears to do what it says (a deep OpenClaw health audit) but its runtime instructions tell the agent to autonomously read many sensitive files and run local OpenClaw CLI commands. Before installing or enabling it: 1) only install from a trusted publisher; 2) review the contents of $OPENCLAW_HOME (openclaw.json, identity/, logs, cron/) to understand what data would be exposed; 3) consider running the checks in a low-privilege or isolated/test environment first; 4) if possible, enforce a policy that the agent must ask for explicit user confirmation before reading or transmitting sensitive files; and 5) verify what the agent will do with collected data (where reports are sent/stored). If you cannot verify the skill's origin or you cannot isolate the environment, avoid enabling it with full access.
功能分析
Type: OpenClaw Skill
Name: xiaoding-botlearn-healthcheck
Version: 1.0.7
The skill bundle defines an autonomous diagnostic tool with broad access to sensitive system data, including configuration files (openclaw.json), identity listings, and gateway logs. While SKILL.md includes explicit instructions for the agent to redact credentials and seek user confirmation before executing fixes, the extensive data collection and reliance on multiple external shell scripts (e.g., scripts/collect-security.sh and scripts/collect-env.sh) constitute high-risk capabilities. The intent appears to be a legitimate health check, but the broad permissions and potential for sensitive data exposure via the reporting mechanism warrant a suspicious classification.
能力评估
Purpose & Capability
Name/description, required binaries (curl, node, bash, and openclaw/clawhub), and primaryEnv (OPENCLAW_HOME) are consistent with a system health inspector for OpenClaw. The breadth of checks (hardware, config, security, skills, autonomy) justifies many of the CLI calls and file reads listed.
Instruction Scope
The SKILL.md explicitly instructs the agent to 'Collect all data autonomously. Never ask the human to execute commands' and enumerates many reads and commands that access potentially sensitive files: $OPENCLAW_HOME/openclaw.json, $OPENCLAW_HOME/cron/*.json, identity directory listing, gateway error logs, workspace identity files, model metadata, etc. It also directs running system-local scripts (scripts/collect-*.sh) and openclaw CLI commands. Those are plausible for a health audit, but they are high-sensitivity operations and the skill contains references to additional docs (setup.md, data_collect.md, check_*.md, openclaw_knowledge.md) that are not bundled — the agent will therefore try to read them from the host environment, which broadens the scope of file access.
Install Mechanism
Instruction-only skill with no install spec — nothing is downloaded or written by the skill installer itself. This is the lowest installer risk.
Credentials
The skill requests access to OPENCLAW_HOME and instructs reading multiple config, log, identity, cron, and workspace files that frequently contain secrets, tokens, or private user data. While such access can be legitimate for a thorough healthcheck, the number and sensitivity of items accessed is high and no limit/consent mechanism is present in the instructions.
Persistence & Privilege
The registry flags are normal (always:false, autonomous invocation allowed). The SKILL.md's 'never ask the human' directive plus allowed autonomous invocation increases the chance the agent will execute many local commands without explicit per-run confirmation — this is expected for an autonomous healthcheck but increases blast radius if the skill is untrusted.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install xiaoding-botlearn-healthcheck - 安装完成后,直接呼叫该 Skill 的名称或使用
/xiaoding-botlearn-healthcheck触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.7
No changes detected in this release.
- Version number updated to 1.0.7.
- No file or documentation changes compared to the previous version.
v1.0.1
Initial release - BotLearn health check skill
元数据
常见问题
BotLearn Healthcheck 是什么?
botlearn-healthcheck — BotLearn autonomous health inspector for OpenClaw instances across 5 domains (hardware, config, security, skills, autonomy); triggers... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 119 次。
如何安装 BotLearn Healthcheck?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install xiaoding-botlearn-healthcheck」即可一键安装,无需额外配置。
BotLearn Healthcheck 是免费的吗?
是的,BotLearn Healthcheck 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
BotLearn Healthcheck 支持哪些平台?
BotLearn Healthcheck 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(darwin, linux)。
谁开发了 BotLearn Healthcheck?
由 asterisk622(@asterisk622)开发并维护,当前版本 v1.0.7。
推荐 Skills