扫描报告
5 /100
file-writer
Safely write or append text content to files ONLY in /home/alfred/.openclaw/workspace/scratch with backup support
A well-scoped, properly documented file writing skill with appropriate safety controls and no malicious indicators.
可以安装
No action needed. The skill is safe for use within its documented scope.
| 资源类型 | 声明权限 | 推断权限 | 状态 | 证据 |
|---|---|---|---|---|
| 文件系统 | WRITE | WRITE | ✓ 一致 | SKILL.md declares 'write' tool; scoped to /home/alfred/.openclaw/workspace/scrat… |
| 文件系统 | READ | READ | ✓ 一致 | SKILL.md declares 'read' tool for checks/backups |
| 命令执行 | WRITE | WRITE | ✓ 一致 | exec for 'mkdir -p' only; documented in SKILL.md |
| 网络访问 | NONE | NONE | — | No network calls in any file |
| 环境变量 | NONE | NONE | — | No environment variable access |
| 剪贴板 | NONE | NONE | — | No clipboard access |
| 浏览器 | NONE | NONE | — | No browser access |
| 数据库 | NONE | NONE | — | No database access |
目录结构
3 文件 · 4.0 KB · 84 行 Markdown 2f · 61L
Shell 1f · 23L
├─
▾
references
│ └─
safety.md
Markdown
├─
▾
scripts
│ └─
backup_file.sh
Shell
└─
SKILL.md
Markdown
安全亮点
✓ Strong path sanitization: rejects absolute paths, parent escapes (../), and non-text extensions
✓ Well-defined scope: restricted to /home/alfred/.openclaw/workspace/scratch directory only
✓ Backup mechanism prevents data loss before overwrites
✓ Size limit (50k chars) prevents resource exhaustion
✓ Requires user confirmation for sensitive operations
✓ Fallback to user action if tools unavailable - no forced execution
✓ Script backup_file.sh is simple and safe: only uses cp for backups, no network or credential access
✓ Documentation (references/safety.md) provides clear sanitization patterns
✓ No credential access, no data exfiltration, no obfuscation
✓ Clear doc-to-code alignment with no shadow functionality