风险评分

100/100 (Very Low)

OpenClaw: benign
VirusTotal: benign
StaticScan: clean

Security embedded Dev

作者: kamalsrini
Slug:supply-chain-enterprise-security-skill
版本:1.0.0
更新时间:2026-03-18 09:26:53
风险信息

OpenClaw: benign

查看 OpenClaw 分析摘要 
The skill is an instruction-only model supply-chain security review guide and its requested actions and tooling are coherent with that purpose.

VirusTotal: benign VT 报告

静态扫描: clean 

No suspicious patterns detected.
README

README 未提供

文件列表

无文件信息

下载
下载官方 ZIP
原始 JSON 数据
{
    "latestVersion": {
        "_creationTime": 1773796378968,
        "_id": "k9703pny899ryd1am3014kv5wh8353va",
        "changelog": "Initial release introducing model supply chain security review skill.\n\n- Enables structured assessment of AI\/ML model supply chains, covering model provenance, training data lineage, fine-tuning integrity, inference dependency review, and backdoor detection.\n- Aligns assessments with OWASP LLM03:2025, SLSA v1.0, and MITRE ATLAS supply chain frameworks.\n- Guides users through context gathering and a step-by-step process to identify risks from unverified models, insecure download methods, and unsafe dependencies.\n- Designed for use by security, ML, and appsec engineers during build, review, and operate phases.\n- Ensures injection-hardened operation; restricts tool usage to safe, read-only commands.",
        "changelogSource": "user",
        "createdAt": 1773796378968,
        "parsed": {
            "clawdis": {
                "author": "unitoneai"
            }
        },
        "version": "1.0.0"
    },
    "owner": {
        "_creationTime": 0,
        "_id": "publishers:missing",
        "displayName": "kamalsrini",
        "handle": "kamalsrini",
        "image": "https:\/\/avatars.githubusercontent.com\/u\/6233046?v=4",
        "kind": "user",
        "linkedUserId": "kn7f96v8wcyphkkcdq9zp1yyc58359wf"
    },
    "ownerHandle": "kamalsrini",
    "skill": {
        "_creationTime": 1773796378968,
        "_id": "kd7621kd7rwqv47w7efszpzp5d834d3y",
        "badges": [],
        "createdAt": 1773796378968,
        "displayName": "Security embedded Dev",
        "latestVersionId": "k9703pny899ryd1am3014kv5wh8353va",
        "ownerUserId": "kn7f96v8wcyphkkcdq9zp1yyc58359wf",
        "slug": "supply-chain-enterprise-security-skill",
        "stats": {
            "comments": 0,
            "downloads": 51,
            "installsAllTime": 0,
            "installsCurrent": 0,
            "stars": 0,
            "versions": 1
        },
        "summary": "Reviews AI\/ML model supply chains for security risks including model provenance verification, training data lineage, fine-tuning pipeline integrity, inferenc...",
        "tags": {
            "appsec": "k9703pny899ryd1am3014kv5wh8353va",
            "compliance": "k9703pny899ryd1am3014kv5wh8353va",
            "identity": "k9703pny899ryd1am3014kv5wh8353va",
            "latest": "k9703pny899ryd1am3014kv5wh8353va",
            "scanner": "k9703pny899ryd1am3014kv5wh8353va",
            "security": "k9703pny899ryd1am3014kv5wh8353va",
            "securityengineer": "k9703pny899ryd1am3014kv5wh8353va",
            "vciso": "k9703pny899ryd1am3014kv5wh8353va",
            "vulnerabilities": "k9703pny899ryd1am3014kv5wh8353va"
        },
        "updatedAt": 1773797213561
    }
}