OpenClaw: suspicious
VirusTotal: suspicious
StaticScan: clean
OpenClaw: suspicious
The skill's stated goal (keeping secrets out of the agent context) is plausible, but the runtime instructions contain practices that can expose secrets (passing secrets on the CLI) and rely on npx to ... [内容已截断]
VirusTotal: suspicious VT 报告
静态扫描: clean
No suspicious patterns detected.
README 未提供
无文件信息
{
"latestVersion": {
"_creationTime": 1773088620490,
"_id": "k97385k755a6t3bwssd5363avd82kpw6",
"changelog": "No user-visible changes in this version.\n\n- Version bumped to 1.0.69 with no file or documentation changes detected.",
"changelogSource": "auto",
"createdAt": 1773088620490,
"parsed": {
"clawdis": {
"homepage": "https:\/\/heyvincent.ai",
"requires": {
"config": [
"${OPENCLAW_STATE_DIR:-$HOME\/.openclaw}\/credentials\/credentials",
".\/credentials"
]
}
}
},
"version": "1.0.69"
},
"owner": {
"_creationTime": 0,
"_id": "publishers:missing",
"displayName": "Chris Cassano",
"handle": "glitch003",
"image": "https:\/\/avatars.githubusercontent.com\/u\/1285652?v=4",
"kind": "user",
"linkedUserId": "kn7da12r1b6qj77ppe2mvy0brd8087cx"
},
"ownerHandle": "glitch003",
"skill": {
"_creationTime": 1771918635600,
"_id": "kd740mancjqvryphhvd16kf2bs81rqd9",
"badges": [],
"createdAt": 1771918635600,
"displayName": "Vincent - Credentials",
"latestVersionId": "k97385k755a6t3bwssd5363avd82kpw6",
"ownerUserId": "kn7da12r1b6qj77ppe2mvy0brd8087cx",
"slug": "vincent-credentials",
"stats": {
"comments": 0,
"downloads": 349,
"installsAllTime": 2,
"installsCurrent": 2,
"stars": 0,
"versions": 10
},
"summary": "Secure credential management for agents. Use this skill when users need to store API keys, passwords, OAuth tokens, or SSH keys and write them to .env files...",
"tags": {
"latest": "k97385k755a6t3bwssd5363avd82kpw6"
},
"updatedAt": 1774326722942
}
}