← 返回
未分类 中文

Trusted ClawHub Install Gate

Audit a local OpenClaw or ClawHub skill directory before installation, classify it as PASS, REVIEW, or BLOCK, check active-project impact, and optionally run...
在安装前审计本地 OpenClaw 或 ClawHub 技能目录,分类为通过(PASS)、待审查(REVIEW)或阻止(BLOCK),检查对当前项目的影响,并可选执行后续操作。
zack-dev-cm zack-dev-cm 来源
未分类 clawhub v0.2.2 1 版本 100000 Key: 无需
★ 0
Stars
📥 310
下载
💾 0
安装
1
版本
#clawhub#install-gate#latest#openclaw#security

概述

Trusted ClawHub Install Gate

Use this skill when a user wants to inspect a local skill artifact before install.

The default result is an audit report, not an installation.

Workflow:

  1. Run clawhub-install-gate inspect first.
  2. Explain the findings and classify the artifact as PASS, REVIEW, or BLOCK.
  3. Before any install, perform an active-project impact check:
    • exact destination skills directory,
    • whether the install is workspace-local or global,
    • whether a skill directory with the same name already exists,
    • whether .clawhub/lock.json or another lockfile may change,
    • required binaries, environment variables, accounts, or network access,
    • scripts, hooks, assets, and references that would become active,
    • whether --replace or --allow-review would be needed.
  4. Do not install on BLOCK.
  5. Only install on REVIEW after explicit user approval for both the residual

findings and the active-project impact.

  1. Prefer workspace-local staging over global installation unless the user

explicitly asks for global install.

  1. Use clawhub-install-gate verify after install when requested.
  2. Use clawhub-install-gate usage when the user asks to track install or REVIEW override usage on this machine.

Active-project decision:

  • NO INSTALL: BLOCK, unclear provenance, unknown destination, duplicate name

without replace approval, global destination without explicit request, hidden

hooks, credential access, service restarts, or unreviewed scripts.

  • STAGE ONLY: PASS or approved REVIEW, but target runtime, duplicate-name

risk, dependency impact, or proof value is still uncertain.

  • INSTALL: PASS, destination is explicit, no duplicate-name surprise, impact

is understood, and the user asked to install.

Review policy:

  • Treat the verdict as an Auto-review-style boundary decision, not a permission grant.
  • BLOCK covers private-data transmission, secret-store probing, broad security weakening, denial circumvention, and destructive actions.
  • If a risky action is denied, do not route around it; choose a materially safer path or stop for user decision.
  • Never treat --allow-review or --replace as implied by the user's earlier

approval. Confirm those flags for the specific artifact and destination.

版本历史

共 1 个版本

  • v0.2.2 当前
    2026-05-21 14:11 安全 安全

安全检测

腾讯云安全 (Keen)

安全,无风险
查看报告

腾讯云安全 (Sanbu)

安全,无风险
查看报告

🔗 相关推荐

dev-programming

Data Science CV Repro Reviewer

zack-dev-cm
审查计算机视觉实验的可重复性证据、数据集准备度、指标阈值和上线风险。当用户要求谨慎的CV实验时使用。
★ 1 📥 953
it-ops-security

MoltGuard - Security & Antivirus & Guardrails

thomaslwang
MoltGuard — OpenClaw 安全守卫,由 OpenGuardrails 提供。安装后可防止您和您的用户受到提示注入、数据泄露及恶意行为的侵害。
★ 116 📥 31,018
it-ops-security

OpenClaw Backup

alex3alex
备份与恢复 OpenClaw 数据。适用于创建备份、设置自动备份计划、从备份恢复或管理备份轮转。处理 ~/.openclaw 目录归档并包含适当的排除规则。
★ 90 📥 31,071