风险评分

41/100 (Medium)

OpenClaw: suspicious
VirusTotal: suspicious
StaticScan: unknown

Authy

作者: eric8810
Slug:authy
版本:0.3.0
更新时间:2026-03-24 12:10:27
风险信息

OpenClaw: suspicious

查看 OpenClaw 分析摘要(前 200 字预览) 
The skill's declared runtime behavior (wrapping an on-PATH authy CLI to inject secrets into subprocess env vars) is coherent, but metadata mismatches and the fact that it enables running arbitrary com...

[内容已截断]

VirusTotal: suspicious VT 报告

静态扫描: unknown

README

README 未提供

文件列表

无文件信息

下载
下载官方 ZIP
原始 JSON 数据
{
    "latestVersion": {
        "_creationTime": 1771463246071,
        "_id": "k97d24q7s4mkmcbda2jb0ehdvd81fjat",
        "changelog": "Project config (.authy.toml), shell hook, alias generator, tightened agent skill scope",
        "changelogSource": "user",
        "createdAt": 1771463246071,
        "parsed": {
            "clawdis": {
                "requires": {
                    "bins": [
                        "authy"
                    ],
                    "env": [
                        "AUTHY_KEYFILE",
                        "AUTHY_TOKEN"
                    ]
                }
            }
        },
        "version": "0.3.0"
    },
    "owner": {
        "_creationTime": 0,
        "_id": "publishers:missing",
        "displayName": "eric8810",
        "handle": "eric8810",
        "image": "https:\/\/avatars.githubusercontent.com\/u\/756579?v=4",
        "kind": "user",
        "linkedUserId": "kn70x4rara9b7j62gekdj7z73d81bbsv"
    },
    "ownerHandle": "eric8810",
    "skill": {
        "_creationTime": 1771349823617,
        "_id": "kd78qna9gzna7av09tt2nscs3581bpam",
        "badges": [],
        "createdAt": 1771349823617,
        "displayName": "Authy",
        "latestVersionId": "k97d24q7s4mkmcbda2jb0ehdvd81fjat",
        "ownerUserId": "kn70x4rara9b7j62gekdj7z73d81bbsv",
        "slug": "authy",
        "stats": {
            "comments": 0,
            "downloads": 554,
            "installsAllTime": 0,
            "installsCurrent": 0,
            "stars": 2,
            "versions": 4
        },
        "summary": "Inject secrets into subprocesses via environment variables. You never see secret values — authy run injects them directly. Use for any command that needs API...",
        "tags": {
            "latest": "k97d24q7s4mkmcbda2jb0ehdvd81fjat"
        },
        "updatedAt": 1774325427742
    }
}