风险评分

90/100 (Very Low)

OpenClaw: benign
VirusTotal: benign
StaticScan: suspicious

sx-security-audit

作者: zhuxiaobao-y
Slug:sx-security-audit
版本:1.0.0
更新时间:2026-03-24 14:03:28
风险信息

OpenClaw: benign

查看 OpenClaw 分析摘要(前 200 字预览) 
The skill's code and runtime instructions are consistent with a local security-audit tool: it reads configs, filesystem, env vars and can optionally send a report to Feishu; nothing in the bundle indi...

[内容已截断]

VirusTotal: benign VT 报告

静态扫描: suspicious 

Detected: suspicious.dynamic_code_execution
README

README 未提供

文件列表

无文件信息

下载
下载官方 ZIP
原始 JSON 数据
{
    "latestVersion": {
        "_creationTime": 1773283302741,
        "_id": "k978p84pqzz0z67b6bpprn8fr182s8xx",
        "changelog": "Initial release of SX-security-audit – a comprehensive security auditing skill.\n\n- Provides modular checks including file permissions, secrets, dependencies, environment variables, Git, network ports, shell, and macOS security.\n- Detects known key formats and uses entropy analysis for enhanced secret detection.\n- Supports CLI options for module selection, output format (JSON, Markdown), severity filtering, and silent mode.\n- Allows behavior customization via `.security-audit.json` config files with path exclusions and severity thresholds.\n- Generates detailed, prioritized security audit reports and supports report delivery to Feishu in multiple message formats.\n- Includes guidance for both automated and manual report sending.",
        "changelogSource": "user",
        "createdAt": 1773283302741,
        "version": "1.0.0"
    },
    "owner": {
        "_creationTime": 0,
        "_id": "publishers:missing",
        "displayName": "zhuxiaobao-y",
        "handle": "zhuxiaobao-y",
        "image": "https:\/\/avatars.githubusercontent.com\/u\/242132972?v=4",
        "kind": "user",
        "linkedUserId": "kn7430vg2m3x4kthgg87bfw7bh82kmbh"
    },
    "ownerHandle": "zhuxiaobao-y",
    "skill": {
        "_creationTime": 1773283302741,
        "_id": "kd7e9kn42q6xjjvjtxmyxb10ns82spsb",
        "badges": [],
        "createdAt": 1773283302741,
        "displayName": "sx-security-audit",
        "latestVersionId": "k978p84pqzz0z67b6bpprn8fr182s8xx",
        "ownerUserId": "kn7430vg2m3x4kthgg87bfw7bh82kmbh",
        "slug": "sx-security-audit",
        "stats": {
            "comments": 0,
            "downloads": 142,
            "installsAllTime": 1,
            "installsCurrent": 1,
            "stars": 0,
            "versions": 1
        },
        "summary": "全方位安全审计技能。检查文件权限、环境变量、依赖漏洞、配置文件、网络端口、Git 安全、Shell 安全、macOS 安全、密钥检测等。支持 CLI 参数、JSON 输出、配置文件。当用户要求\"安全检查\"、\"漏洞扫描\"、\"权限检查\"、\"安全审计\"时使用此技能。",
        "tags": {
            "latest": "k978p84pqzz0z67b6bpprn8fr182s8xx"
        },
        "updatedAt": 1774332208134
    }
}