扫描报告
5 /100
clawhub-publish-flow
Publish or update an OpenClaw skill on ClawHub using the local authenticated ClawHub session and direct API upload.
A legitimate ClawHub skill publishing workflow that reads local config for auth tokens and uploads skill packages via HTTPS POST — all behavior is documented and standard for a registry publisher tool.
可以安装
No action needed. The skill performs expected operations: reads a local config token, lists a skill directory, and POSTs a multipart form to the ClawHub API.
安全发现 1 项
| 严重性 | 安全发现 | 位置 |
|---|---|---|
| 低危 | Missing referenced script 供应链 | SKILL.md:36 |
| 资源类型 | 声明权限 | 推断权限 | 状态 | 证据 |
|---|---|---|---|---|
| 文件系统 | READ | READ | ✓ 一致 | scripts/publish_to_clawhub.js:58 reads skill directory contents |
| 文件系统 | READ | READ | ✓ 一致 | scripts/publish_to_clawhub.js:42-48 reads ClawHub config from homedir |
| 网络访问 | WRITE | WRITE | ✓ 一致 | scripts/publish_to_clawhub.js:75 POSTs multipart form to /api/v1/skills |
| 命令执行 | READ | READ | ✓ 一致 | SKILL.md:25-29 calls clawhub CLI commands (whoami, inspect) |
| 环境变量 | NONE | NONE | — | No env var access detected |
1 项发现
中危 外部 URL 外部 URL
https://clawhub.ai scripts/publish_to_clawhub.js:65 目录结构
3 文件 · 8.7 KB · 244 行 Markdown 2f · 148L
JavaScript 1f · 96L
├─
▾
references
│ └─
release-checklist.md
Markdown
├─
▾
scripts
│ └─
publish_to_clawhub.js
JavaScript
└─
SKILL.md
Markdown
安全亮点
✓ All shell/subprocess usage (clawhub CLI) is explicitly documented in SKILL.md
✓ No credential harvesting — token is read from local config and used only for the declared API upload
✓ No obfuscation, base64 encoding, or anti-analysis patterns detected
✓ Outbound network contact is limited to the declared ClawHub API endpoint (HTTPS)
✓ Explicit safety rules in SKILL.md (do not publish without request, review outbound payload for secrets)
✓ No access to sensitive paths (~/.ssh, ~/.aws, .env) — only reads ClawHub's own config directory
✓ Sensitive data review before upload is explicitly required in documentation