← 返回 Skills 市场
zuoyuting214

Zyt credentials guard

作者 zuoyuting214 · GitHub ↗ · v0.5.0 · MIT-0
cross-platform ✓ 安全检测通过
183
总下载
0
收藏
0
当前安装
5
版本数
在 OpenClaw 中安装
/install zyt-credentials-guard
功能描述
Guide users to configure local Chanjing credentials safely via local commands only, and validate local token status when needed.
安全使用建议
This skill appears to be a documentation-only helper for managing local Chanjing credentials and is internally consistent. Before installing/using it, consider: 1) It will read and may write ~/.chanjing/credentials.json (or $CHANJING_CONFIG_DIR); only use if you are comfortable the agent can access that file. 2) Verify the token endpoint domain (https://open-api.chanjing.cc) matches the official Chanjing service you trust. 3) The package references helper scripts and an openapi yaml that are not included — if you later install a variant that adds scripts, inspect them before running. 4) Never paste AK/SK into chat; if you accidentally do, rotate keys. If you want the agent to never access local files, do not enable this skill or avoid granting filesystem access.
功能分析
Type: OpenClaw Skill Name: zyt-credentials-guard Version: 0.5.0 The skill is a security-conscious credential manager for the Chanjing API. It explicitly instructs the AI agent to avoid requesting or echoing secrets (AK/SK) within the chat interface, instead guiding the user to manage them in a local configuration file (~/.chanjing/credentials.json). The logic involves opening a legitimate login URL (chanjing.cc) and performing local token refreshes via the official API endpoint, with no evidence of data exfiltration or malicious execution.
能力评估
Purpose & Capability
The name/description say it's a local guide for Chanjing credentials and the instructions only require reading/writing a local credentials.json and calling the Chanjing token endpoint. Requesting CHANJING_CONFIG_DIR to locate the config file is appropriate for this purpose.
Instruction Scope
The SKILL.md instructs the agent to read/write ~/.chanjing/credentials.json (or $CHANJING_CONFIG_DIR/credentials.json), open the Chanjing login page in the browser, and POST to https://open-api.chanjing.cc/open/v1/access_token to refresh tokens. Those actions match the stated scope. Minor inconsistency: the docs/reference mention a helper script path ('scripts/chanjing-config' and functions like read_config()) and a chanjing-openapi.yaml that are not included in the package — this is documentation-only and not dangerous, but it is an inconsistency to note.
Install Mechanism
No install spec and no code files — instruction-only skill. Low risk from installation because nothing is downloaded or written by an installer.
Credentials
The skill declares only CHANJING_CONFIG_DIR which is reasonable to locate the local credentials. The reference mentions CHANJING_API_BASE as a possible env var but it is not declared in requires.env; this is a minor documentation inconsistency but not an over-broad credential request. The skill does not request unrelated secrets or cloud credentials.
Persistence & Privilege
always:false and no install hooks; the skill does not request persistent/privileged presence. It does instruct reading and writing a local credential file (expected for its function) but does not attempt to modify other skills or system-wide settings.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install zyt-credentials-guard
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /zyt-credentials-guard 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v0.5.0
Initial publish.
v0.4.0
Initial publish.
v0.3.0
Initial publish.
v0.2.0
Initial publish.
v0.1.0
Initial publish.
元数据
Slug zyt-credentials-guard
版本 0.5.0
许可证 MIT-0
累计安装 0
当前安装数 0
历史版本数 5
常见问题

Zyt credentials guard 是什么?

Guide users to configure local Chanjing credentials safely via local commands only, and validate local token status when needed. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 183 次。

如何安装 Zyt credentials guard?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install zyt-credentials-guard」即可一键安装,无需额外配置。

Zyt credentials guard 是免费的吗?

是的,Zyt credentials guard 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。

Zyt credentials guard 支持哪些平台?

Zyt credentials guard 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 Zyt credentials guard?

由 zuoyuting214(@zuoyuting214)开发并维护,当前版本 v0.5.0。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论