skills/nathansteelqoder/openclaw-config-qoder-integration/openclaw-complete-deployment-guide/Socket

openclaw-complete-deployment-guide

Warn

Audited by Socket on Mar 14, 2026

1 alert found:

Security

SecuritySKILL.md

MEDIUM

SecurityMEDIUM

SKILL.md

该技能的主题与内容基本一致，确实是在部署一个高权限、多平台接入的 OpenClaw 系统；但其实际风险很高。主要问题是核心依赖通过 curl|bash 和额外 Git/Release 二进制安装，随后向这些工具转交大量凭证，并启用可通过聊天平台远程触发的高权限代理/命令执行能力。整体更适合判定为 SUSPICIOUS：目的与能力一致，但供应链信任、凭证转交和自动执行范围明显过大。

Confidence: 87%Severity: 86%

Audit Metadata

Analyzed At

Mar 14, 2026, 06:25 AM

Package URL

pkg:socket/skills-sh/nathansteelqoder%2Fopenclaw-config-qoder-integration%2Fopenclaw-complete-deployment-guide%2F@78053d4264bc71dd503f9be95df0ab7efba39722