技能详情(站内镜像,无评论)
作者:Kevin Anderson @anderskev
许可证:MIT-0
MIT-0 ·免费使用、修改和重新分发。无需归因。
版本:v1.2.0
统计:⭐ 0 · 20 · 0 current installs · 0 all-time installs
⭐ 0
安装量(当前) 0
🛡 VirusTotal :良性 · OpenClaw :良性
Package:anderskev/elixir-security-review
安全扫描(ClawHub)
- VirusTotal :良性
- OpenClaw :良性
OpenClaw 评估
The skill is an instruction-only checklist for Elixir security reviews and its files, declared requirements, and instructions are consistent with that purpose.
目的
Name/description match the included checklists and reference documents; nothing in the manifest or SKILL.md requests unrelated credentials, binaries, or system access. The references cover the issues the skill claims to review (code injection, atom exhaustion, secrets, process exposure).
说明范围
SKILL.md provides targeted, code-review-focused instructions and a concrete checklist. Minor inconsistency: it tells the reviewer to 'Load and follow [review-verification-protocol](../review-verification-protocol/SKILL.md)' but that referenced file is not present in the provided file manifest — this is an operational gap (missing doc) rather than an evidence of malicious behavior.
安装机制
No install spec and no bundled code; instruction-only skills write nothing to disk and have minimal install risk.
证书
No environment variables, credentials, or config paths are required. Reference documents discuss environment use in Elixir apps (e.g., System.fetch_env!), which is appropriate context for reviewers but does not indicate the skill needs secrets or keys.
持久
always is false and the skill does not request persistence or elevated platform privileges. It does not modify other skills or system-wide settings.
综合结论
This is an instruction-only security-review checklist for Elixir and appears internally consistent and low-risk. Before using: (1) note the missing referenced 'review-verification-protocol' document — ask the skill author or registry for it if you depend on that step; (2) remember 'benign' means the skill is coherent, not that it will find every vulnerability — still validate findings manually; and (3) if the skill is later extended to include…
安装(复制给龙虾 AI)
将下方整段复制到龙虾中文库对话中,由龙虾按 SKILL.md 完成安装。
请把本段交给龙虾中文库(龙虾 AI)执行:为本机安装 OpenClaw 技能「Elixir Security Review」。简介:Reviews Elixir code for security vulnerabilities including code injection, atom…。
请 fetch 以下地址读取 SKILL.md 并按文档完成安装:https://raw.githubusercontent.com/openclaw/skills/refs/heads/main/skills/anderskev/elixir-security-review/SKILL.md
(来源:yingzhi8.cn 技能库)SKILL.md
暂无本地缓存内容,可在后台执行详情同步。