中文 EN

Scan Report

Scan New Files

Trusted — Risk Score 0/100
Last scan:8 hr ago Rescan
0 /100
cost-optimizer
Smart cost optimization skill for OpenClaw. Reduces API costs by 70-97% through intelligent model routing, session management, output efficiency, and free model usage.
cost-optimizer v7.0.0 是一个完全合法的 OpenClaw 成本优化工具,包含 29 个 Shell 脚本用于成本审计、监控、配置管理和预设应用。无任何恶意行为。
Skill Namecost-optimizer
Duration53.2s
Enginepi
Safe to install
可直接使用。pre-scan 标记的 `rm -rf ~` 为误报(实际为 `rm -rf ~/.openclaw/workspace/skills/cost-optimizer`)。无敏感操作。
ResourceDeclaredInferredStatusEvidence
Filesystem WRITE WRITE ✓ Aligned SKILL.md:scripts reference — backup-config.sh writes to $HOME/.openclaw/config-b…
Shell WRITE WRITE ✓ Aligned SKILL.md — 29 bash scripts (cost-audit.sh, heartbeat-cost.sh, etc.) all via bash…
Environment READ READ ✓ Aligned Scripts read $HOME/.openclaw paths and config JSON files
Network NONE NONE No curl/wget network calls in scripts (openrouter URLs in SKILL.md are informati…
1 Critical 9 findings
💀
Critical Dangerous Command 危险 Shell 命令
rm -rf ~
GUIDE.md:672
🔗
Medium External URL 外部 URL
https://openrouter.ai/keys
GUIDE.md:13
🔗
Medium External URL 外部 URL
https://YOUR_DOWNLOAD_URL
GUIDE.md:31
🔗
Medium External URL 外部 URL
https://vps.example.com:3578
GUIDE.md:603
🔗
Medium External URL 外部 URL
https://img.shields.io/badge/version-7.0.0-blue.svg
README.md:5
🔗
Medium External URL 外部 URL
https://img.shields.io/badge/license-MIT-green.svg
README.md:6
🔗
Medium External URL 外部 URL
https://img.shields.io/badge/OpenClaw-2026.3+-purple.svg
README.md:7
🔗
Medium External URL 外部 URL
https://myclaw.example.com:3578
scripts/multi-instance.sh:37
🔗
Medium External URL 外部 URL
https://openrouter.ai/api/v1
scripts/setup-openrouter.sh:37

File Tree

40 files · 217.9 KB · 6216 lines
Shell 27f · 4065L Markdown 6f · 1858L JavaScript 2f · 205L JSON 5f · 88L
├─ 📁 presets
│ ├─ 📋 agency-team.preset.json JSON 17L · 614 B
│ ├─ 📋 researcher.preset.json JSON 17L · 624 B
│ ├─ 📋 solo-coder.preset.json JSON 17L · 617 B
│ ├─ 📋 writer.preset.json JSON 17L · 609 B
│ └─ 📋 zero-budget.preset.json JSON 20L · 715 B
├─ 📁 references
│ ├─ 📝 model-tiers.md Markdown 56L · 2.1 KB
│ └─ 📝 setup-config.md Markdown 59L · 2.3 KB
├─ 📁 scripts
│ ├─ 🔧 apply-preset.sh Shell 231L · 6.0 KB
│ ├─ 🔧 backup-config.sh Shell 45L · 1.2 KB
│ ├─ 🔧 compaction-log.sh Shell 157L · 5.7 KB
│ ├─ 🔧 config-diff.sh Shell 176L · 5.9 KB
│ ├─ 🔧 context-monitor.sh Shell 129L · 5.4 KB
│ ├─ 🔧 cost-audit.sh Shell 148L · 6.3 KB
│ ├─ 📜 cost-dashboard.js JavaScript 163L · 7.0 KB
│ ├─ 🔧 cost-history.sh Shell 157L · 5.9 KB
│ ├─ 🔧 cost-monitor.sh Shell 123L · 3.6 KB
│ ├─ 🔧 cron-setup.sh Shell 102L · 3.9 KB
│ ├─ 🔧 dedup-detector.sh Shell 150L · 5.3 KB
│ ├─ 🔧 fallback-validator.sh Shell 213L · 7.6 KB
│ ├─ 🔧 heartbeat-cost.sh Shell 214L · 7.6 KB
│ ├─ 🔧 idle-sleep.sh Shell 152L · 4.8 KB
│ ├─ 🔧 model-switcher.sh Shell 109L · 5.2 KB
│ ├─ 🔧 model-test.sh Shell 88L · 3.2 KB
│ ├─ 🔧 multi-instance.sh Shell 185L · 6.0 KB
│ ├─ 📜 parse-config.js JavaScript 42L · 1.2 KB
│ ├─ 🔧 preset-manager.sh Shell 165L · 5.6 KB
│ ├─ 🔧 prompt-tracker.sh Shell 189L · 6.2 KB
│ ├─ 🔧 provider-compare.sh Shell 137L · 5.0 KB
│ ├─ 🔧 provider-health.sh Shell 157L · 4.9 KB
│ ├─ 🔧 restore-config.sh Shell 88L · 2.8 KB
│ ├─ 🔧 session-replay.sh Shell 241L · 8.5 KB
│ ├─ 🔧 setup-openrouter.sh Shell 150L · 4.6 KB
│ ├─ 🔑 token-counter.sh Shell 150L · 4.7 KB
│ ├─ 🔑 token-enforcer.sh Shell 115L · 3.8 KB
│ ├─ 🔧 tool-audit.sh Shell 155L · 6.7 KB
│ └─ 🔧 webhook-report.sh Shell 139L · 4.5 KB
├─ 📝 CHANGELOG.md Markdown 65L · 3.9 KB
├─ 📝 GUIDE.md Markdown 678L · 18.6 KB
├─ 📝 README.md Markdown 363L · 11.7 KB
└─ 📝 SKILL.md Markdown 637L · 27.3 KB

Security Positives

✓ 纯成本优化工具,代码逻辑清晰易懂
✓ 所有文件操作均在用户授权范围内($HOME/.openclaw/ 目录)
✓ 脚本均有 --dry-run 选项,执行前可预览
✓ backup-config.sh 在任何修改前自动创建快照
✓ restore-config.sh 恢复前先备份当前配置
✓ API key 仅写入 /tmp 临时文件,不外传
✓ 无 eval、base64 解码、混淆等技术
✓ 无凭证收割、敏感路径访问、远程代码执行