Scan Report
This report was generated in Chinese. Some content may be in Chinese.
35 /100
task-progress-stream
Stream long-running task progress into the OpenClaw chat UI
技能功能表面合理,但存在多处文档未声明的副作用操作:状态文件写入本地目录、通过openclaw gateway本地通信、执行shell命令。缺少敏感路径隔离和命令白名单机制,存在被滥用执行任意命令的风险。
Use with caution
1. SKILL.md应明确声明状态文件写入目录和gateway通信行为;2. 添加--allowed-commands参数限制可执行命令;3. 考虑限制cwd范围避免逃逸。
Findings 4 items
| Severity | Finding | Location |
|---|---|---|
| Medium | 状态文件写入未声明 Doc Mismatch | scripts/task_progress_stream.js:206 |
| Medium | OpenClaw Gateway通信未声明 Doc Mismatch | scripts/task_progress_stream.js:244 |
| Medium | 任意shell命令执行无限制 RCE | scripts/task_progress_stream.js:298 |
| Low | 进程组管理可能误杀系统进程 Priv Escalation | scripts/task_progress_stream.js:330 |
| Resource | Declared | Inferred | Status | Evidence |
|---|---|---|---|---|
| Filesystem | NONE | WRITE | ✗ Violation | scripts/task_progress_stream.js:206-207 writeJson/writeText写入状态文件 |
| Shell | NONE | WRITE | ✗ Violation | scripts/task_progress_stream.js:298 spawn '/bin/bash' '-lc' cmd |
| Environment | NONE | READ | ✗ Violation | scripts/task_progress_stream.js:292 cwd参数来自用户 |
| Network | NONE | READ | ✗ Violation | scripts/task_progress_stream.js:244 spawn openclaw gateway本地通信 |
File Tree
2 files · 14.0 KB · 528 lines JavaScript 1f · 473L
Markdown 1f · 55L
├─
▾
scripts
│ └─
task_progress_stream.js
JavaScript
└─
SKILL.md
Markdown
Security Positives
✓ 无外部网络请求,仅本地openclaw通信
✓ 无凭证窃取或环境变量遍历行为
✓ 无Base64或混淆代码
✓ 无HTML注释隐藏指令
✓ 核心功能(进度解析)实现合理