npm - @pwddd/skills-scanner - Versions diffs - 2.3.0 → 2.4.1 - Mend

@pwddd/skills-scanner 2.3.0 → 2.4.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of @pwddd/skills-scanner might be problematic. Click here for more details.

Files changed (3) hide show

package/README.md CHANGED Viewed

@@ -21,13 +21,11 @@ OpenClaw Plugin，通过 HTTP API 调用远程 [cisco-ai-skill-scanner](https://
 | 功能 | 实现方式 | 状态 |
 |---|---|---|
 | 启动时自动安装 Python 依赖（requests） | `registerService` | ✅ 全自动 |
-| `/scan-skill` `/scan-skills` 按需扫描 | `registerCommand` | ✅ 全自动 |
-| `/scan-report` 立即日报 | `registerCommand` | ✅ 全自动 |
-| `/scan-status` 状态查看 | `registerCommand` | ✅ 全自动 |
+| `/skills-scanner` 统一命令入口 | `registerCommand` | ✅ 全自动 |
 | `openclaw skills-scan` CLI | `registerCli` | ✅ 全自动 |
 | 安装前扫描（新 Skill 出现时自动扫描） | `fs.watch` | ✅ 全自动 |
 | Gateway 启动时在日志里打印配置提示 | Plugin Hook `gateway:startup` | ✅ 全自动 |
-| 每日定期日报 | Cron Job | ⚠️ **需手动注册一次** |
+| 每日定期日报 | Cron Job | ✅ 智能自动注册 |
 ---
@@ -86,7 +84,7 @@ openclaw gateway restart
 - ✅ **自动更新**：配置变更时自动更新任务
 - ✅ **防止冲突**：即使手动创建过任务也能正确识别
-如果自动注册失败，可以使用 `/scan-cron register` 命令手动注册。
+如果自动注册失败，可以使用 `/skills-scanner cron register` 命令手动注册。
 ---
@@ -102,9 +100,9 @@ openclaw gateway restart
 ```bash
 # 使用聊天命令（推荐）
-/scan-cron register    # 注册定时任务
-/scan-cron unregister  # 删除定时任务
-/scan-cron status      # 查看状态
+/skills-scanner cron register    # 注册定时任务
+/skills-scanner cron unregister  # 删除定时任务
+/skills-scanner cron status      # 查看状态
 # 或使用 CLI 命令
 openclaw cron add \
@@ -112,7 +110,7 @@ openclaw cron add \
   --cron "0 8 * * *" \
   --tz "Asia/Shanghai" \
   --session isolated \
-  --message "请执行 /scan-report 并把结果发送到此渠道" \
+  --message "请执行 /skills-scanner scan --report 并把结果发送到此渠道" \
   --announce
 ```
@@ -184,6 +182,60 @@ openclaw cron list
 ---
+## CLI 命令
+### 可用命令
+```bash
+openclaw skills-scan <子命令> [参数]
+```
+### 子命令
+| 命令 | 说明 |
+|---|---|
+| `scan <路径>` | 扫描单个 Skill |
+| `batch <目录>` | 批量扫描目录 |
+| `report` | 生成完整日报 |
+| `health` | 检查 API 服务状态 |
+### 使用示例
+```bash
+# 扫描单个 Skill
+openclaw skills-scan scan ~/.openclaw/skills/my-skill
+# 批量扫描
+openclaw skills-scan batch ~/.openclaw/skills --recursive
+# 生成日报
+openclaw skills-scan report
+# 健康检查
+openclaw skills-scan health
+# 详细扫描
+openclaw skills-scan scan ~/my-skill --detailed --behavioral
+```
+**注意**：CLI 命令是 `skills-scan`（不是 `skills-scanner`）
+---
+## 命令对比
+| 功能 | 聊天命令 | CLI 命令 |
+|---|---|---|
+| 扫描单个 Skill | `/skills-scanner scan <路径>` | `openclaw skills-scan scan <路径>` |
+| 批量扫描 | `/skills-scanner scan <目录> --recursive` | `openclaw skills-scan batch <目录> --recursive` |
+| 生成日报 | `/skills-scanner scan --report` | `openclaw skills-scan report` |
+| 查看状态 | `/skills-scanner status` | - |
+| 健康检查 | `/skills-scanner status`（包含） | `openclaw skills-scan health` |
+| 配置管理 | `/skills-scanner config` | - |
+| 定时任务 | `/skills-scanner cron` | - |
+---
 ## 定时任务说明
 插件会在启动时**自动智能注册**定时任务，无需手动操作：
@@ -200,7 +252,7 @@ openclaw cron list
 - **任务名称**：`skills-daily-report`
 - **执行时间**：每天 08:00
 - **时区**：Asia/Shanghai
-- **执行内容**：发送 `/scan-report` 命令到指定渠道
+- **执行内容**：发送 `/skills-scanner scan --report` 命令到指定渠道
 ### 手动管理
@@ -216,7 +268,7 @@ openclaw cron add \
   --cron "0 8 * * *" \
   --tz "Asia/Shanghai" \
   --session isolated \
-  --message "请执行 /scan-report 并把结果发送到此渠道" \
+  --message "请执行 /skills-scanner scan --report 并把结果发送到此渠道" \
   --announce
 # 删除定时任务
@@ -237,7 +289,7 @@ openclaw cron add \
   --cron "0 8 * * *" \
   --tz "Asia/Shanghai" \
   --session isolated \
-  --message "请执行 /scan-report 并把结果发送到此渠道" \
+  --message "请执行 /skills-scanner scan --report 并把结果发送到此渠道" \
   --announce \
   --channel telegram \
   --to "+8613312345678"
@@ -249,7 +301,7 @@ openclaw cron add \
 Plugin 启动后用 `fs.watch` 监听所有 Skills 目录。任何新 Skill 出现（无论通过 `clawhub install`、CLI 还是手动复制）都会触发扫描。
-扫描结果通过 `persistWatcherAlert` 写入 `~/.openclaw/skills-scanner/state.json`，运行 `/scan-status` 查看并清空告警列表。
+扫描结果通过 `persistWatcherAlert` 写入 `~/.openclaw/skills-scanner/state.json`，运行 `/skills-scanner status` 查看并清空告警列表。
 > **为什么不直接发聊天消息？**
 > OpenClaw Plugin API 没有提供在后台任务里主动推送消息给用户的方法。`event.messages.push()` 只在 Hook handler 的同步上下文中有效，`registerCommand` 的 handler 需要用户主动触发。这是平台限制，不是实现缺陷。

package/index.ts CHANGED Viewed

@@ -3,7 +3,7 @@
  *
  * 已确认可用的功能（全部有文档依据）：
  * 1. registerService  — 启动时自动安装 Python 依赖（uv venv）
- * 2. registerCommand  — 聊天命令 /scan-skill /scan-skills /scan-report /scan-status
+ * 2. registerCommand  — 聊天命令 /skills-scanner (统一命名空间)
  * 3. registerGatewayMethod — RPC 供 Control UI 调用
  * 4. registerCli      — CLI 命令 openclaw skills-scan
  * 5. registerPluginHooksFromDir — 捆绑 gateway:startup hook（日报提醒）
@@ -16,7 +16,7 @@
  * - api.runtime.gateway.call("cron.add") ← 文档无记录
  * - message:preprocessed hook 拦截   ← 该事件不存在
  *
- * Cron 日报：需用户安装后手动执行一次 CLI 命令注册（见 README）。
+ * Cron 日报：插件启动时智能自动注册（幂等操作，防止重复）。
  */
 import { execSync, exec } from "child_process";
@@ -247,9 +247,9 @@ function generateConfigGuide(cfg: ScannerConfig, apiUrl: string, scanDirs: strin
     "   openclaw gateway restart",
     "",
     "3. 验证配置：",
-    "   /scan-status",
+    "   /skills-scanner status",
     "",
-    "💬 或者在聊天中执行 /scan-status 查看当前状态",
+    "💬 或者在聊天中执行 /skills-scanner status 查看当前状态",
     "",
     "提示：此消息只在首次运行时显示。",
     "════════════════════════════════════════════════════════════════",
@@ -440,7 +440,7 @@ async function ensureCronJob(logger: any): Promise<void> {
       `--cron "${CRON_SCHEDULE}"`,
       `--tz "${CRON_TIMEZONE}"`,
       '--session isolated',
-      '--message "请执行 /scan-report 并把结果发送到此渠道"',
+      '--message "请执行 /skills-scanner scan --report 并把结果发送到此渠道"',
       '--announce'
     ].join(' ');
@@ -481,7 +481,7 @@ async function ensureCronJob(logger: any): Promise<void> {
       logger.info(`[skills-scanner]     --cron "${CRON_SCHEDULE}" \\`);
       logger.info(`[skills-scanner]     --tz "${CRON_TIMEZONE}" \\`);
       logger.info('[skills-scanner]     --session isolated \\');
-      logger.info('[skills-scanner]     --message "请执行 /scan-report 并把结果发送到此渠道" \\');
+      logger.info('[skills-scanner]     --message "请执行 /skills-scanner scan --report 并把结果发送到此渠道" \\');
       logger.info('[skills-scanner]     --announce');
       logger.info("[skills-scanner]");
     }
@@ -553,7 +553,7 @@ async function buildDailyReport(
         const r = allResults.find(x => (x.name || basename(x.path ?? "")) === name);
         lines.push(`  • ${name} [${r?.max_severity ?? "?"}] — ${r?.findings ?? "?"} 条发现`);
       }
-      lines.push("", "💡 运行 `/scan-skill <路径> --detailed` 查看详情");
+      lines.push("", "💡 运行 `/skills-scanner scan <路径> --detailed` 查看详情");
     } else {
       lines.push("", "🎉 所有 Skills 安全，未发现威胁。");
     }
@@ -661,7 +661,7 @@ function startWatcher(
 // ── Plugin 入口 ───────────────────────────────────────────────────────────────
-export default async function register(api: any) {
+export default function register(api: any) {
   const cfg: ScannerConfig = api.config?.plugins?.entries?.["skills-scanner"]?.config ?? {};
   const apiUrl         = cfg.apiUrl         ?? "http://localhost:8000";
   const scanDirs       = (cfg.scanDirs?.map(expandPath) ?? []).filter(existsSync).length > 0
@@ -733,7 +733,7 @@ export default async function register(api: any) {
       if (!depsReady) {
         api.logger.error("[skills-scanner] ❌ 依赖安装失败，服务无法启动");
-        api.logger.error("[skills-scanner] 请手动运行: uv pip install --python \"" + VENV_PYTHON + "\" cisco-ai-skill-scanner");
+        api.logger.error("[skills-scanner] 请手动运行: uv pip install --python \"" + VENV_PYTHON + "\" requests>=2.31.0");
         return;
       }
@@ -745,6 +745,15 @@ export default async function register(api: any) {
         api.logger.info("[skills-scanner] ⏭️  安装前扫描已禁用");
       }
+      // 智能注册定时任务（仅在 Gateway 模式下，CLI 模式跳过）
+      // 检测方式：Gateway 模式下 api.runtime 存在，CLI 模式下不存在
+      const isGatewayMode = !!(api as any).runtime;
+      if (isGatewayMode) {
+        api.logger.info("[skills-scanner] ─────────────────────────────────────");
+        api.logger.info("[skills-scanner] 🕐 检查定时任务...");
+        await ensureCronJob(api.logger);
+      }
       api.logger.info("[skills-scanner] ─────────────────────────────────────");
     },
     stop: () => {
@@ -754,11 +763,7 @@ export default async function register(api: any) {
     },
   });
-  // ── 2. 智能 Cron 任务注册 ────────────────────────────────────────────────
-  await ensureCronJob(api.logger);
-  api.logger.info("[skills-scanner] ═══════════════════════════════════════");
-  // ── 3. /skills-scanner 主命令（命名空间）─────────────────────────────────
+  // ── 2. /skills-scanner 主命令（命名空间）─────────────────────────────────
   api.registerCommand({
     name: "skills-scanner",
     description: "Skills 安全扫描工具。用法: /skills-scanner <子命令> [参数]",
@@ -1038,317 +1043,7 @@ export default async function register(api: any) {
       "• `/skills-scanner config [show|reset]` - 配置管理",
       "• `/skills-scanner cron [register|unregister|status]` - 定时任务",
     ].join("\n");
-  }
-  // ── 3. /scan-skill ────────────────────────────────────────────────────────
-  api.registerCommand({
-    name: "scan-skill",
-    description: "扫描单个 Skill 目录。用法: /scan-skill <路径> [--detailed] [--behavioral]",
-    acceptsArgs: true,
-    requireAuth: true,
-    handler: async (ctx: any) => {
-      const raw = (ctx.args ?? "").trim();
-      if (!raw) return { text: "用法：`/scan-skill <路径> [--detailed] [--behavioral]`" };
-      // 先检查依赖
-      if (!isVenvReady()) {
-        return { text: "⏳ Python 依赖尚未就绪，请稍后重试或查看日志" };
-      }
-      const parts      = raw.split(/\s+/);
-      const skillPath  = expandPath(parts.find(p => !p.startsWith("--")) ?? "");
-      const detailed   = parts.includes("--detailed");
-      const useBehav   = parts.includes("--behavioral") || behavioral;
-      const res = await runScan("scan", skillPath, {
-        detailed,
-        behavioral: useBehav,
-        apiUrl,
-        useLLM,
-        policy
-      });
-      const icon = res.exitCode === 0 ? "✅" : "❌";
-      return { text: `${icon} 扫描完成\n\`\`\`\n${res.output}\n\`\`\`` };
-    },
-  });
-  // ── 4. /scan-skills ───────────────────────────────────────────────────────
-  api.registerCommand({
-    name: "scan-skills",
-    description: "批量扫描目录下所有 Skills。用法: /scan-skills <目录> [--recursive] [--detailed]",
-    acceptsArgs: true,
-    requireAuth: true,
-    handler: async (ctx: any) => {
-      const raw = (ctx.args ?? "").trim();
-      if (!raw) return { text: "用法：`/scan-skills <目录> [--recursive] [--detailed]`" };
-      if (!isVenvReady()) return { text: "⏳ Python 依赖尚未就绪，请稍后重试" };
-      const parts     = raw.split(/\s+/);
-      const dirPath   = expandPath(parts.find(p => !p.startsWith("--")) ?? "");
-      const recursive = parts.includes("--recursive");
-      const detailed  = parts.includes("--detailed");
-      const useBehav  = parts.includes("--behavioral") || behavioral;
-      const res = await runScan("batch", dirPath, {
-        recursive,
-        detailed,
-        behavioral: useBehav,
-        apiUrl,
-        useLLM,
-        policy
-      });
-      const icon = res.exitCode === 0 ? "✅" : "❌";
-      return { text: `${icon} 批量扫描完成\n\`\`\`\n${res.output}\n\`\`\`` };
-    },
-  });
-  // ── 5. /scan-report ───────────────────────────────────────────────────────
-  api.registerCommand({
-    name: "scan-report",
-    description: "立即执行全量扫描并生成安全日报",
-    acceptsArgs: false,
-    requireAuth: true,
-    handler: async (_ctx: any) => {
-      if (!isVenvReady()) return { text: "⏳ Python 依赖尚未就绪，请稍后重试" };
-      if (scanDirs.length === 0) return { text: "⚠️ 未找到可扫描目录，请检查配置" };
-      const report = await buildDailyReport(scanDirs, behavioral, apiUrl, useLLM, policy, api.logger);
-      return { text: report };
-    },
-  });
-  // ── 6. /scan-status ───────────────────────────────────────────────────────
-  api.registerCommand({
-    name: "scan-status",
-    description: "查看 Skills Scanner 状态和待查告警",
-    acceptsArgs: false,
-    requireAuth: true,
-    handler: async (_ctx: any) => {
-      const state = loadState() as any;
-      const alerts: string[] = state.pendingAlerts ?? [];
-      const lines = [
-        "📋 *Skills Scanner 状态*",
-        `API 服务地址：${apiUrl}`,
-        `Python 依赖：${isVenvReady() ? "✅ 就绪" : "❌ 未就绪"}`,
-        `Python 路径：${VENV_PYTHON}`,
-        `scan.py 路径：${SCAN_SCRIPT}`,
-        `安装前扫描：${preInstallScan === "on" ? `✅ 监听中（${onUnsafe}）` : "❌ 已禁用"}`,
-        `扫描策略：${policy}`,
-        `LLM 分析：${useLLM ? "✅ 启用" : "❌ 禁用"}`,
-        `行为分析：${behavioral ? "✅ 启用" : "❌ 禁用"}`,
-        `上次扫描：${state.lastScanAt ? new Date(state.lastScanAt).toLocaleString("zh-CN") : "从未"}`,
-        `上次问题 Skills：${state.lastUnsafeSkills?.length ? state.lastUnsafeSkills.join(", ") : "无"}`,
-        `扫描目录：\n${scanDirs.map(d => `  • ${d}`).join("\n")}`,
-      ];
-      // API 健康检查
-      if (isVenvReady()) {
-        lines.push("", "🔍 *API 服务检查*");
-        try {
-          // 调用 scan.py health 命令
-          const cmd = `"${VENV_PYTHON}" "${SCAN_SCRIPT}" --api-url "${apiUrl}" health`;
-          // 清除代理环境变量
-          const env = { ...process.env };
-          delete env.http_proxy;
-          delete env.https_proxy;
-          delete env.HTTP_PROXY;
-          delete env.HTTPS_PROXY;
-          delete env.all_proxy;
-          delete env.ALL_PROXY;
-          const { stdout, stderr } = await execAsync(cmd, { timeout: 5000, env });
-          const output = (stdout + stderr).trim();
-          if (output.includes("✓") || output.includes("正常")) {
-            lines.push(`API 服务：✅ 正常`);
-            // 尝试解析可用的分析器信息
-            if (output.includes("analyzers_available")) {
-              try {
-                // 从输出中提取 JSON（如果有的话）
-                const jsonMatch = output.match(/\{[\s\S]*\}/);
-                if (jsonMatch) {
-                  const healthData = JSON.parse(jsonMatch[0]);
-                  if (healthData.analyzers_available) {
-                    lines.push(`可用分析器：${healthData.analyzers_available.join(", ")}`);
-                  }
-                  if (healthData.version) {
-                    lines.push(`API 版本：${healthData.version}`);
-                  }
-                }
-              } catch {}
-            }
-          } else {
-            lines.push(`API 服务：❌ 不可用`);
-            lines.push(`响应：${output}`);
-          }
-        } catch (err: any) {
-          lines.push(`API 服务：❌ 连接失败`);
-          const errorMsg = err.message || err.toString();
-          if (errorMsg.includes("ECONNREFUSED") || errorMsg.includes("无法连接")) {
-            lines.push(`错误：无法连接到 ${apiUrl}`);
-          } else {
-            lines.push(`错误：${errorMsg}`);
-          }
-          lines.push("", "💡 请确保 skill-scanner-api 服务正在运行：");
-          lines.push("```");
-          lines.push("skill-scanner-api");
-          lines.push("# 或指定端口");
-          lines.push("skill-scanner-api --port 8080");
-          lines.push("```");
-        }
-      } else {
-        lines.push("", "⚠️ Python 依赖未就绪，无法检查 API 服务");
-      }
-      if (alerts.length > 0) {
-        lines.push("", `🔔 *待查告警（${alerts.length} 条）：*`);
-        alerts.slice(-5).forEach(a => lines.push(`  ${a}`));
-        // 读取后清空
-        saveState({ ...state, pendingAlerts: [] });
-      }
-      // 定时任务状态
-      lines.push("", "🕐 *定时任务状态*");
-      if (state.cronJobId && state.cronJobId !== 'manual-created' && state.cronJobId !== 'created-unknown-id') {
-        lines.push(`任务 ID：${state.cronJobId}`);
-        lines.push(`任务名称：${CRON_JOB_NAME}`);
-        lines.push(`执行时间：每天 ${CRON_SCHEDULE.split(' ')[1]}:${CRON_SCHEDULE.split(' ')[0]} (${CRON_TIMEZONE})`);
-        lines.push("状态：✅ 已注册");
-        lines.push("", "💡 查看所有定时任务：`openclaw cron list`");
-        lines.push("💡 删除定时任务：`openclaw cron remove " + state.cronJobId + "`");
-      } else if (state.cronJobId === 'manual-created') {
-        lines.push("状态：✅ 已手动创建（无法获取 ID）");
-        lines.push("", "💡 查看所有定时任务：`openclaw cron list`");
-      } else {
-        lines.push("状态：❌ 未注册");
-        lines.push("", "💡 手动注册定时任务：");
-        lines.push("```");
-        lines.push("openclaw cron add \\");
-        lines.push(`  --name "${CRON_JOB_NAME}" \\`);
-        lines.push(`  --cron "${CRON_SCHEDULE}" \\`);
-        lines.push(`  --tz "${CRON_TIMEZONE}" \\`);
-        lines.push("  --session isolated \\");
-        lines.push('  --message "请执行 /scan-report 并把结果发送到此渠道" \\');
-        lines.push("  --announce");
-        lines.push("```");
-      }
-      return { text: lines.join("\n") };
-    },
-  });
-  // ── 7. /scan-cron ─────────────────────────────────────────────────────────
-  api.registerCommand({
-    name: "scan-cron",
-    description: "管理定时任务。用法: /scan-cron [register|unregister|status]",
-    acceptsArgs: true,
-    requireAuth: true,
-    handler: async (ctx: any) => {
-      const action = (ctx.args ?? "").trim().toLowerCase() || "status";
-      const state = loadState() as any;
-      if (action === "register" || action === "add") {
-        // 强制重新注册
-        api.logger.info("[skills-scanner] 用户请求重新注册定时任务");
-        // 清除旧的 cronJobId，强制重新创建
-        const oldJobId = state.cronJobId;
-        if (oldJobId && oldJobId !== 'manual-created' && oldJobId !== 'created-unknown-id') {
-          try {
-            execSync(`openclaw cron remove ${oldJobId}`, { encoding: 'utf-8', timeout: 5000 });
-            api.logger.info(`[skills-scanner] 已删除旧任务: ${oldJobId}`);
-          } catch (err: any) {
-            api.logger.warn(`[skills-scanner] 删除旧任务失败: ${err.message}`);
-          }
-        }
-        saveState({ ...state, cronJobId: undefined });
-        await ensureCronJob(api.logger);
-        const newState = loadState() as any;
-        if (newState.cronJobId) {
-          return { text: `✅ 定时任务注册成功\n任务 ID: ${newState.cronJobId}\n执行时间: 每天 ${CRON_SCHEDULE.split(' ')[1]}:${CRON_SCHEDULE.split(' ')[0]} (${CRON_TIMEZONE})` };
-        } else {
-          return { text: "❌ 定时任务注册失败，请查看日志或手动注册" };
-        }
-      } else if (action === "unregister" || action === "remove" || action === "delete") {
-        // 删除定时任务
-        if (!state.cronJobId) {
-          return { text: "⚠️ 未找到已注册的定时任务" };
-        }
-        if (state.cronJobId === 'manual-created' || state.cronJobId === 'created-unknown-id') {
-          return { text: "⚠️ 无法自动删除手动创建的任务，请使用：\n`openclaw cron list` 查看任务\n`openclaw cron remove <job-id>` 删除任务" };
-        }
-        try {
-          execSync(`openclaw cron remove ${state.cronJobId}`, { encoding: 'utf-8', timeout: 5000 });
-          saveState({ ...state, cronJobId: undefined });
-          return { text: `✅ 定时任务已删除: ${state.cronJobId}` };
-        } catch (err: any) {
-          return { text: `❌ 删除失败: ${err.message}\n请手动执行: \`openclaw cron remove ${state.cronJobId}\`` };
-        }
-      } else if (action === "status" || action === "info") {
-        // 显示状态
-        const lines = ["🕐 *定时任务状态*"];
-        if (state.cronJobId && state.cronJobId !== 'manual-created' && state.cronJobId !== 'created-unknown-id') {
-          lines.push(`任务 ID: ${state.cronJobId}`);
-          lines.push(`任务名称: ${CRON_JOB_NAME}`);
-          lines.push(`执行时间: 每天 ${CRON_SCHEDULE.split(' ')[1]}:${CRON_SCHEDULE.split(' ')[0]} (${CRON_TIMEZONE})`);
-          lines.push("状态: ✅ 已注册");
-          lines.push("");
-          lines.push("可用操作:");
-          lines.push("• `/scan-cron unregister` - 删除定时任务");
-          lines.push("• `/scan-cron register` - 重新注册定时任务");
-          lines.push("• `openclaw cron list` - 查看所有定时任务");
-        } else if (state.cronJobId === 'manual-created') {
-          lines.push("状态: ✅ 已手动创建（无法获取 ID）");
-          lines.push("");
-          lines.push("💡 使用 `openclaw cron list` 查看所有定时任务");
-        } else {
-          lines.push("状态: ❌ 未注册");
-          lines.push("");
-          lines.push("💡 使用 `/scan-cron register` 注册定时任务");
-        }
-        return { text: lines.join("\n") };
-      } else {
-        return { text: "用法: `/scan-cron [register|unregister|status]`\n\n• `register` - 注册定时任务\n• `unregister` - 删除定时任务\n• `status` - 查看状态（默认）" };
-      }
-    },
-  });
-  // ── 8. /scan-config ───────────────────────────────────────────────────────
-  api.registerCommand({
-    name: "scan-config",
-    description: "显示配置向导和当前配置",
-    acceptsArgs: true,
-    requireAuth: true,
-    handler: async (ctx: any) => {
-      const action = (ctx.args ?? "").trim().toLowerCase() || "show";
-      if (action === "show" || action === "guide" || action === "help") {
-        // 显示配置向导
-        const configGuide = generateConfigGuide(cfg, apiUrl, scanDirs, behavioral, useLLM, policy, preInstallScan, onUnsafe);
-        return { text: "```\n" + configGuide + "\n```" };
-      } else if (action === "reset") {
-        // 重置配置审查标记，下次启动会再次显示向导
-        const state = loadState() as any;
-        saveState({ ...state, configReviewed: false });
-        return { text: "✅ 配置审查标记已重置\n下次重启 Gateway 时将再次显示配置向导" };
-      } else {
-        return { text: "用法: `/scan-config [show|reset]`\n\n• `show` - 显示配置向导（默认）\n• `reset` - 重置首次运行标记" };
-      }
-    },
-  });
-  // ── 9. Gateway RPC ────────────────────────────────────────────────────────
+  }  // ── 9. Gateway RPC ────────────────────────────────────────────────────────
   api.registerGatewayMethod("skillsScanner.scan", async ({ respond, params }: any) => {
     const { path: p, mode = "scan", recursive = false, detailed = false } = params ?? {};
     if (!p)             return respond(false, { error: "缺少 path 参数" });
@@ -1412,6 +1107,41 @@ export default async function register(api: any) {
         const report = await buildDailyReport(scanDirs, behavioral, apiUrl, useLLM, policy, console);
         console.log(report);
       });
+    cmd.command("health")
+      .description("检查 API 服务健康状态")
+      .action(async () => {
+        if (!isVenvReady()) {
+          console.error("❌ Python 依赖未就绪");
+          process.exit(1);
+        }
+        try {
+          const cmd = `"${VENV_PYTHON}" "${SCAN_SCRIPT}" --api-url "${apiUrl}" health`;
+          const env = { ...process.env };
+          delete env.http_proxy;
+          delete env.https_proxy;
+          delete env.HTTP_PROXY;
+          delete env.HTTPS_PROXY;
+          delete env.all_proxy;
+          delete env.ALL_PROXY;
+          const { stdout, stderr } = await execAsync(cmd, { timeout: 5000, env });
+          const output = (stdout + stderr).trim();
+          console.log(output);
+          if (output.includes("✓") || output.includes("正常")) {
+            process.exit(0);
+          } else {
+            process.exit(1);
+          }
+        } catch (err: any) {
+          console.error(`❌ 连接失败: ${err.message}`);
+          console.error(`\n💡 请确保 skill-scanner-api 服务正在运行：`);
+          console.error(`   skill-scanner-api`);
+          process.exit(1);
+        }
+      });
   }, { commands: ["skills-scan"] });
   api.logger.info("[skills-scanner] ✅ Plugin 注册完成");

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@pwddd/skills-scanner",
-  "version": "2.3.0",
+  "version": "2.4.1",
   "description": "OpenClaw Plugin：Skills 安全扫描、安装前拦截、安全日报（命名空间命令、智能定时任务）",
   "main": "index.ts",
   "files": [