扫描报告
5 /100
ocas-elephas
Elephas: long-term knowledge graph (Chronicle) maintenance skill
Elephas is a legitimate knowledge graph maintenance skill with well-documented behavior. The base64 decoding at line 266 is standard GitHub API usage for self-update, not obfuscation.
可以安装
This skill is safe to use. No security concerns identified.
| 资源类型 | 声明权限 | 推断权限 | 状态 | 证据 |
|---|---|---|---|---|
| 文件系统 | READ | READ | ✓ 一致 | skill.json declares read access to ~/openclaw/* directories; references show rea… |
| 文件系统 | WRITE | WRITE | ✓ 一致 | skill.json declares write access to ~/openclaw/{db,journals,data}/ocas-elephas/;… |
| 网络访问 | NONE | READ | ✓ 一致 | elephas.update uses gh api to fetch remote version (SKILL.md:266); not declared … |
1 严重 2 项发现
严重 编码执行 Base64 编码执行(代码混淆)
base64 -d SKILL.md:266 提示 邮箱 邮箱地址
[email protected] skill.json:6 目录结构
8 文件 · 44.5 KB · 1217 行 Markdown 7f · 1196L
JSON 1f · 21L
├─
▾
references
│ ├─
ingestion_pipeline.md
Markdown
│ ├─
init_pattern.md
Markdown
│ ├─
journal.md
Markdown
│ ├─
ontology.md
Markdown
│ └─
schemas.md
Markdown
├─
README.md
Markdown
├─
skill.json
JSON
└─
SKILL.md
Markdown
安全亮点
✓ Well-documented skill with clear responsibility boundaries
✓ Uses platform-provided library (real_ladybug) rather than arbitrary shell commands
✓ All file operations scoped to designated openclaw directories
✓ Comprehensive journal and audit trail system
✓ Identity merges are reversible with full merge history preserved
✓ No credential access, no sensitive path traversal (no ~/.ssh, ~/.aws, .env access)
✓ Atomic journal writes (write to .tmp, then rename)
✓ Clear escalation rules for candidate promotion with confidence scoring
✓ No base64 obfuscation or hidden functionality - self-update uses standard GitHub API format