风险评分

65/100 (Medium)

OpenClaw: suspicious
VirusTotal: benign
StaticScan: clean

Container Runtime Threat Model Generator

作者: ToolWeb
Slug:container-runtime-threat-model
版本:1.0.0
更新时间:2026-03-24 15:20:53
风险信息

OpenClaw: suspicious

查看 OpenClaw 分析摘要(前 200 字预览) 
The skill is coherent with its stated purpose (container threat modeling) but it mandates sending potentially sensitive configuration data to a third-party API and forbids local reasoning — a privacy/...

[内容已截断]

VirusTotal: benign VT 报告

静态扫描: clean 

No suspicious patterns detected.
README

README 未提供

文件列表

无文件信息

下载
下载官方 ZIP
原始 JSON 数据
{
    "latestVersion": {
        "_creationTime": 1773811649578,
        "_id": "k976z6jegz52ye82vshsxhn81d835n5a",
        "changelog": "Initial release — containerized application threat modeling powered by ToolWeb API.\n\n- Generates automated STRIDE-based threat models for container runtimes (Docker, containerd, Kubernetes, etc.).\n- Analyzes attack surfaces including container images, privileges, host\/network exposure, permissions, and security controls.\n- Requires TOOLWEB_API_KEY and curl; supports Linux, Mac, and Windows.\n- Always retrieves results from ToolWeb API — never answers using general knowledge.\n- Provides detailed risk scores, attack trees, prioritized mitigations, and per-component analysis.\n- Handles API errors and missing prerequisites with clear user guidance.",
        "changelogSource": "auto",
        "createdAt": 1773811649578,
        "parsed": {
            "clawdis": {
                "emoji": "🐳",
                "os": [
                    "linux",
                    "darwin",
                    "win32"
                ],
                "primaryEnv": "TOOLWEB_API_KEY",
                "requires": {
                    "bins": [
                        "curl"
                    ],
                    "env": [
                        "TOOLWEB_API_KEY"
                    ]
                }
            }
        },
        "version": "1.0.0"
    },
    "owner": {
        "_creationTime": 0,
        "_id": "publishers:missing",
        "displayName": "ToolWeb",
        "handle": "krishnakumarmahadevan-cmd",
        "image": "https:\/\/avatars.githubusercontent.com\/u\/245780162?v=4",
        "kind": "user",
        "linkedUserId": "kn7fvt8nzppepr4d89w8yk0y4s82sf3g"
    },
    "ownerHandle": "krishnakumarmahadevan-cmd",
    "skill": {
        "_creationTime": 1773811649578,
        "_id": "kd77h43rrgvv5qvqhz3wf9cwqd8341z6",
        "badges": [],
        "createdAt": 1773811649578,
        "displayName": "Container Runtime Threat Model Generator",
        "latestVersionId": "k976z6jegz52ye82vshsxhn81d835n5a",
        "ownerUserId": "kn7fvt8nzppepr4d89w8yk0y4s82sf3g",
        "slug": "container-runtime-threat-model",
        "stats": {
            "comments": 0,
            "downloads": 51,
            "installsAllTime": 0,
            "installsCurrent": 0,
            "stars": 0,
            "versions": 1
        },
        "summary": "Generate container runtime threat models analyzing attack surfaces across container components, images, privileges, network exposure, and security controls....",
        "tags": {
            "latest": "k976z6jegz52ye82vshsxhn81d835n5a"
        },
        "updatedAt": 1774336853933
    }
}