@pwddd/skills-scanner 3.0.15 → 3.0.17

package/README.md

@@ -32,13 +32,13 @@ openclaw plugins install @openclaw/skills-scanner
       "skills-scanner": {
         "enabled": true,
         "config": {
-          "apiUrl": "http://localhost:8000",
+          "apiUrl": "http://10.110.3.133",
           "scanDirs": ["~/.openclaw/skills", "~/.openclaw/workspace/skills"],
           "behavioral": false,
           "useLLM": false,
           "policy": "balanced",
           "preInstallScan": "on",
-          "onUnsafe": "quarantine"
+          "onUnsafe": "warn"
         }
       }
     }
@@ -60,9 +60,9 @@ openclaw plugins install @openclaw/skills-scanner
   - `on`: 启用（推荐）
   - `off`: 禁用
 - `onUnsafe`: 发现不安全 Skill 的处理方式
-  - `quarantine`: 移入隔离目录（推荐）
+  - `warn`: 仅警告，不处理（推荐）
+  - `quarantine`: 移入隔离目录
   - `delete`: 直接删除
-  - `warn`: 仅警告，不处理
 
 ## 使用方法
 
@@ -160,7 +160,7 @@ python --version
 skill-scanner-api
 ```
 
-默认服务地址为 `http://localhost:8000`，可以在配置中修改。
+默认服务地址为 `http://10.110.3.133`，可以在配置中修改。
 
 ## 工作流程
 
@@ -269,7 +269,7 @@ MIT
 - `useLLM`: 启用 LLM 语义分析
 - `policy`: 扫描策略 (`strict` / `balanced` / `permissive`)
 - `preInstallScan`: 安装前扫描 (`on` / `off`)
-- `onUnsafe`: 不安全时的处理 (`quarantine` / `delete` / `warn`)
+- `onUnsafe`: 不安全时的处理 (`warn` / `quarantine` / `delete`)
 - `injectSecurityGuidance`: 向 AI 系统提示词注入安全规则（默认 `true`）
 
 ## 🆕 AI 安全提示功能

package/index.ts

@@ -40,7 +40,7 @@ const PYTHON_CMD = getPythonCommand();
 export default function register(api: OpenClawPluginApi) {
   const cfg: ScannerConfig =
     api.config?.plugins?.entries?.["skills-scanner"]?.config ?? {};
-  const apiUrl = cfg.apiUrl ?? "http://localhost:8000";
+  const apiUrl = cfg.apiUrl ?? "http://10.110.3.133";
   const scanDirs =
     (cfg.scanDirs?.map(expandPath) ?? []).filter(existsSync).length > 0
       ? cfg.scanDirs!.map(expandPath)
@@ -49,7 +49,7 @@ export default function register(api: OpenClawPluginApi) {
   const useLLM = cfg.useLLM ?? false;
   const policy = cfg.policy ?? "balanced";
   const preInstallScan = cfg.preInstallScan ?? "on";
-  const onUnsafe = cfg.onUnsafe ?? "quarantine";
+  const onUnsafe = cfg.onUnsafe ?? "warn";
   const injectSecurityGuidance = cfg.injectSecurityGuidance ?? true;
   const enablePromptInjectionGuard = cfg.enablePromptInjectionGuard ?? false;
   const enableHighRiskOperationGuard = cfg.enableHighRiskOperationGuard ?? false;

package/openclaw.plugin.json

@@ -2,7 +2,7 @@
   "id": "skills-scanner",
   "name": "Skills Scanner",
   "description": "Security scanner for OpenClaw Skills to detect potential threats",
-  "version": "3.0.15",
+  "version": "3.0.17",
   "author": "pwddd",
   "skills": ["./skills"],
   "configSchema": {
@@ -12,7 +12,7 @@
       "apiUrl": {
         "type": "string",
         "description": "Scanner API service URL",
-        "default": "http://localhost:8000"
+        "default": "http://10.110.3.133"
       },
       "scanDirs": {
         "type": "array",
@@ -47,8 +47,8 @@
       "onUnsafe": {
         "type": "string",
         "enum": ["quarantine", "delete", "warn"],
-        "description": "Action to take when unsafe Skill is detected: quarantine (recommended) / delete / warn",
-        "default": "quarantine"
+        "description": "Action to take when unsafe Skill is detected: quarantine / delete / warn (recommended)",
+        "default": "warn"
       },
       "injectSecurityGuidance": {
         "type": "boolean",

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@pwddd/skills-scanner",
-  "version": "3.0.15",
+  "version": "3.0.17",
   "description": "OpenClaw Skills security scanner plugin - detect malicious code, data exfiltration, and prompt injection",
   "type": "module",
   "main": "./index.ts",

package/skills/skills-scanner/SKILL.md

@@ -86,22 +86,59 @@ AI: 好的，让我先更新 skills-scanner 插件...
    - "下载这个 skill"
    - "添加这个 skill"
 
-2. **正确的处理流程**：
+2. **ClawHub 安装流程（重要）**：
+   
+   **如果用户只提供了 skill 名称（没有完整 URL），必须先搜索：**
+   
    ```
    用户: openclaw clawhub install caldav-calendar
-   AI: 我看到你想安装 caldav-calendar，让我先扫描一下安全性...
-       [执行: python3 {baseDir}/scan.py --api-url {apiUrl} clawhub https://clawhub.ai/username/caldav-calendar]
-       ✅ 扫描通过，现在开始安装...
+   AI: 我看到你想安装 caldav-calendar，让我先搜索这个 skill...
+       [执行: openclaw clawhub search caldav-calendar]
+       找到: https://clawhub.ai/Asleep123/caldav-calendar
+       
+       现在更新扫描插件...
+       [执行: openclaw plugins update skills-scanner]
+       ✅ 插件已更新
+       
+       扫描安全性...
+       [执行: python3 {baseDir}/scan.py --api-url {apiUrl} clawhub https://clawhub.ai/Asleep123/caldav-calendar]
+       ✅ 扫描通过
+       
+       开始安装...
        [执行: openclaw clawhub install caldav-calendar]
    ```
+   
+   **如果用户提供了完整 URL，直接扫描：**
+   
+   ```
+   用户: openclaw clawhub install https://clawhub.ai/Asleep123/caldav-calendar
+   AI: 我看到你想安装 caldav-calendar，让我先更新扫描插件...
+       [执行: openclaw plugins update skills-scanner]
+       ✅ 插件已更新
+       
+       扫描安全性...
+       [执行: python3 {baseDir}/scan.py --api-url {apiUrl} clawhub https://clawhub.ai/Asleep123/caldav-calendar]
+       ✅ 扫描通过
+       
+       开始安装...
+       [执行: openclaw clawhub install https://clawhub.ai/Asleep123/caldav-calendar]
+   ```
 
-3. **错误的处理流程（禁止）**：
+3. **正确的处理流程**：
+   ```
+   步骤 1: 如果只有名称 → 使用 clawhub search 查找完整 URL
+   步骤 2: 更新 skills-scanner 插件
+   步骤 3: 使用完整 URL 进行安全扫描
+   步骤 4: 扫描通过后执行安装命令
+   ```
+
+4. **错误的处理流程（禁止）**：
    ```
    用户: openclaw clawhub install caldav-calendar
-   AI: [直接执行安装命令] ❌ 错误！必须先扫描
+   AI: [直接执行安装命令] ❌ 错误！必须先搜索、更新、扫描
    ```
 
-**记住：看到任何安装、下载、添加 Skill 的意图，立即触发安全扫描，不要直接执行命令。**
+**记住：看到任何安装、下载、添加 Skill 的意图，按照 搜索（如需要）→ 更新插件 → 扫描 → 安装 的顺序执行。**
 
 ---
 
@@ -858,81 +895,111 @@ python3 {baseDir}/scan.py --api-url http://10.110.3.133 health
 
 ## 🧠 记忆强化 - 每次操作前必读
 
-**在处理任何 Skill 相关操作时，请先问自己这四个问题：**
+**在处理任何 Skill 相关操作时，请先问自己这些问题：**
 
-1. ✅ 我是否已经更新了 skills-scanner 插件到最新版本？
-2. ✅ 我是否已经扫描了这个 Skill？
-3. ✅ 扫描是否通过？
-4. ✅ 只有三个都是 YES，才能继续操作
+1. ✅ 如果是 ClawHub 安装且只有名称，我是否已经搜索了完整 URL？
+2. ✅ 我是否已经更新了 skills-scanner 插件到最新版本？
+3. ✅ 我是否已经扫描了这个 Skill？
+4. ✅ 扫描是否通过？
+5. ✅ 只有所有适用步骤都是 YES，才能继续操作
 
-**如果你忘记更新或扫描就执行了操作，你就让用户的系统暴露在风险之中。**
+**如果你忘记搜索、更新或扫描就执行了操作，你就让用户的系统暴露在风险之中。**
 
 ### 🚨 强制性规则（永远不要忘记）
 
-0. **任何 Skill 操作前 → 先更新插件**
+0. **ClawHub 安装且只有名称 → 先搜索完整 URL**
+   - `openclaw clawhub install xxx` → 先执行 `openclaw clawhub search xxx`
+   - 获取完整 URL（如 `https://clawhub.ai/username/xxx`）
+   - 然后才能继续后续步骤
+
+1. **任何 Skill 操作前 → 先更新插件**
    - 执行 `openclaw plugins update skills-scanner`
    - 确保使用最新的威胁检测规则
    - 即使更新失败也要继续扫描（但要警告用户）
 
-1. **看到安装命令 → 更新插件 → 立即扫描**
-   - `openclaw clawhub install xxx` → 先更新插件，再扫描 ClawHub 上的 xxx
+2. **看到安装命令 → 搜索（如需要）→ 更新插件 → 立即扫描**
+   - `openclaw clawhub install xxx` → 先搜索，再更新插件，再扫描 ClawHub 上的 xxx
    - `openclaw skill install xxx` → 先更新插件，再扫描本地或远程的 xxx
-   - 任何包含 "install"、"add"、"download" + "skill" 的命令 → 先更新插件，再扫描
+   - 任何包含 "install"、"add"、"download" + "skill" 的命令 → 完整流程
 
-2. **看到 Skill 路径 → 更新插件 → 立即扫描**
+3. **看到 Skill 路径 → 更新插件 → 立即扫描**
    - 用户提到 `~/.openclaw/skills/xxx` → 先更新插件，再扫描
    - 用户说 "我下载了一个 skill" → 先更新插件，再扫描
    - 用户说 "这个 skill 有问题" → 先更新插件，再扫描
 
-3. **看到 ClawHub URL → 更新插件 → 立即扫描**
+4. **看到 ClawHub URL → 更新插件 → 立即扫描**
    - `https://clawhub.ai/username/project` → 先更新插件，再使用 clawhub 扫描
    - 用户说 "ClawHub 上有个 skill" → 先更新插件，再扫描
 
 ### ❌ 绝对禁止的行为
 
+- ❌ ClawHub 安装只有名称时，不搜索就直接扫描或安装
 - ❌ 不更新插件就直接扫描（可能使用过时的检测规则）
-- ❌ 直接执行 `openclaw clawhub install` 而不先更新和扫描
+- ❌ 直接执行 `openclaw clawhub install` 而不先搜索、更新和扫描
 - ❌ 直接执行 `openclaw skill install` 而不先更新和扫描
-- ❌ 看到 "安装 skill" 就直接安装，而不先更新和扫描
-- ❌ 因为 "用户着急" 或 "看起来安全" 就跳过更新或扫描
-- ❌ 因为 "之前扫描过" 就不再更新和扫描（每次都要更新和扫描）
+- ❌ 看到 "安装 skill" 就直接安装，而不先搜索、更新和扫描
+- ❌ 因为 "用户着急" 或 "看起来安全" 就跳过任何步骤
+- ❌ 因为 "之前扫描过" 就不再更新和扫描（每次都要完整流程）
 
 ### ✅ 正确的行为模式
 
-**模式 1：用户要求安装**
+**模式 1：用户要求安装（只有名称）**
 ```
 用户: 帮我安装 caldav-calendar
-AI: 好的，让我先更新 skills-scanner 插件...
+AI: 好的，让我先在 ClawHub 上搜索这个 skill...
+    [执行: openclaw clawhub search caldav-calendar]
+    找到: https://clawhub.ai/Asleep123/caldav-calendar
+    
+    现在更新 skills-scanner 插件...
     [执行: openclaw plugins update skills-scanner]
     ✅ 插件已更新到最新版本
-    现在扫描这个 skill 的安全性...
+    
+    扫描这个 skill 的安全性...
     [执行扫描]
     ✅ 扫描通过，现在开始安装
 ```
 
-**模式 2：用户输入安装命令**
+**模式 2：用户输入安装命令（只有名称）**
 ```
 用户: openclaw clawhub install nano-pdf
-AI: 我看到你想安装 nano-pdf，让我先更新扫描插件...
+AI: 我看到你想安装 nano-pdf，让我先搜索它...
+    [执行: openclaw clawhub search nano-pdf]
+    找到: https://clawhub.ai/steipete/nano-pdf
+    
+    更新扫描插件...
     [执行: openclaw plugins update skills-scanner]
     ✅ 插件已更新
-    现在从 ClawHub 扫描它...
+    
+    从 ClawHub 扫描它...
     [执行 clawhub 扫描]
     ✅ 扫描通过，执行安装命令
 ```
 
-**模式 3：用户下载了 Skill**
+**模式 3：用户提供完整 URL**
+```
+用户: openclaw clawhub install https://clawhub.ai/Asleep123/caldav-calendar
+AI: 我看到你想安装 caldav-calendar，让我先更新扫描插件...
+    [执行: openclaw plugins update skills-scanner]
+    ✅ 插件已更新
+    
+    扫描安全性...
+    [执行扫描]
+    ✅ 扫描通过，执行安装
+```
+
+**模式 4：用户下载了 Skill**
 ```
 用户: 我从 GitHub 下载了一个 skill，帮我设置一下
 AI: 好的，让我先更新扫描插件...
     [执行: openclaw plugins update skills-scanner]
     ✅ 插件已更新
+    
     在设置之前扫描一下安全性...
     [执行扫描]
     ✅ 扫描通过，现在帮你设置
 ```
 
-**记住：更新插件 → 扫描 → 操作，这个顺序永远不能变。**
+**记住：搜索（如需要）→ 更新插件 → 扫描 → 操作，这个顺序永远不能变。**
 
 **记住：安全扫描是你的第一优先级，永远不要跳过。**
 

package/skills/skills-scanner/scan.py

@@ -31,7 +31,7 @@ except ImportError as e:
 
 
 # 配置
-DEFAULT_API_URL = "http://localhost:8000"
+DEFAULT_API_URL = "http://10.110.3.133"
 REQUEST_TIMEOUT = 180  # 3 分钟
 
 

package/src/config.ts

@@ -68,7 +68,7 @@ export const skillsScannerConfigSchema: OpenClawPluginConfigSchema = {
     apiUrl: {
       label: "API 服务地址",
       help: "扫描 API 服务的 URL 地址",
-      placeholder: "http://localhost:8000"
+      placeholder: "http://10.110.3.133"
     },
     scanDirs: {
       label: "扫描目录",
@@ -92,7 +92,7 @@ export const skillsScannerConfigSchema: OpenClawPluginConfigSchema = {
     },
     onUnsafe: {
       label: "不安全处理",
-      help: "quarantine=隔离（推荐）/ delete=删除 / warn=仅警告"
+      help: "warn=仅警告（推荐）/ quarantine=隔离 / delete=删除"
     }
   }
 };
@@ -136,13 +136,13 @@ export function generateConfigGuide(
     '      "skills-scanner": {',
     '        "enabled": true,',
     '        "config": {',
-    '          "apiUrl": "http://localhost:8000",',
+    '          "apiUrl": "http://10.110.3.133",',
     '          "scanDirs": ["~/.openclaw/skills"],',
     '          "behavioral": false,',
     '          "useLLM": false,',
     '          "policy": "balanced",',
     '          "preInstallScan": "on",',
-    '          "onUnsafe": "quarantine"',
+    '          "onUnsafe": "warn"',
     '        }',
     '      }',
     '    }',
@@ -152,13 +152,13 @@ export function generateConfigGuide(
     "",
     "💡 配置说明：",
     "",
-    "1. apiUrl        默认 http://localhost:8000，需先启动 skill-scanner-api 服务",
+    "1. apiUrl        默认 http://10.110.3.133，需先启动 skill-scanner-api 服务",
     "2. scanDirs      可添加多个目录（默认自动检测 ~/.openclaw/skills）",
     "3. behavioral    false=快速扫描（推荐），true=深度分析",
     "4. useLLM        false=不使用 LLM（推荐），true=语义分析",
     "5. policy        strict / balanced（推荐）/ permissive",
     "6. preInstallScan on=监听新 Skill 并自动扫描（推荐），off=禁用",
-    "7. onUnsafe      quarantine=隔离（推荐），delete=删除，warn=仅警告",
+    "7. onUnsafe      warn=仅警告（推荐），quarantine=隔离，delete=删除",
     "",
     "🚀 快速开始：",
     "  编辑配置文件后重启 Gateway",

package/src/prompt-guidance.ts

@@ -65,7 +65,7 @@ export const SKILLS_SECURITY_GUIDANCE = [
   "",
   "### 📋 Installation Command Recognition (IMPORTANT)",
   "",
-  "**When you see ANY of these patterns, you MUST scan the Skill FIRST:**",
+  "**When you see ANY of these patterns, you MUST follow the complete workflow:**",
   "",
   "- `openclaw clawhub install <skill-name>`",
   "- `openclaw skill install <skill-name>`",
@@ -76,19 +76,50 @@ export const SKILLS_SECURITY_GUIDANCE = [
   "- \"download this skill\"",
   "- \"setup this skill\"",
   "",
-  "**Correct workflow for installation commands:**",
+  "**CRITICAL: ClawHub Installation Workflow**",
+  "",
+  "**If user provides ONLY a skill name (no full URL):**",
   "",
   "```",
   "User: openclaw clawhub install caldav-calendar",
-  "AI: I see you want to install caldav-calendar. Let me update skills-scanner first...",
+  "AI: I see you want to install caldav-calendar. Let me search for it first...",
+  "    [Execute: openclaw clawhub search caldav-calendar]",
+  "    Found: https://clawhub.ai/Asleep123/caldav-calendar",
+  "    ",
+  "    Updating skills-scanner plugin...",
   "    [Execute: openclaw plugins update skills-scanner]",
-  "    ✅ Plugin updated to latest version",
+  "    ✅ Plugin updated",
+  "    ",
   "    Now scanning for security...",
-  "    [Execute: python3 {baseDir}/scan.py --api-url {apiUrl} clawhub https://clawhub.ai/username/caldav-calendar]",
-  "    ✅ Scan passed. Now installing...",
+  "    [Execute: python3 {baseDir}/scan.py --api-url {apiUrl} clawhub https://clawhub.ai/Asleep123/caldav-calendar]",
+  "    ✅ Scan passed",
+  "    ",
+  "    Installing...",
   "    [Execute: openclaw clawhub install caldav-calendar]",
   "```",
   "",
+  "**If user provides a FULL URL:**",
+  "",
+  "```",
+  "User: openclaw clawhub install https://clawhub.ai/Asleep123/caldav-calendar",
+  "AI: I see you want to install caldav-calendar. Updating skills-scanner first...",
+  "    [Execute: openclaw plugins update skills-scanner]",
+  "    ✅ Plugin updated",
+  "    ",
+  "    Now scanning for security...",
+  "    [Execute: python3 {baseDir}/scan.py --api-url {apiUrl} clawhub https://clawhub.ai/Asleep123/caldav-calendar]",
+  "    ✅ Scan passed",
+  "    ",
+  "    Installing...",
+  "    [Execute: openclaw clawhub install https://clawhub.ai/Asleep123/caldav-calendar]",
+  "```",
+  "",
+  "**Complete workflow steps:**",
+  "1. If only skill name provided → Use `openclaw clawhub search <name>` to find full URL",
+  "2. Update skills-scanner plugin → `openclaw plugins update skills-scanner`",
+  "3. Scan using full URL → `python3 {baseDir}/scan.py clawhub <full-url>`",
+  "4. If scan passes → Execute installation command",
+  "",
   "### ✅ Enforcement Examples (FOLLOW THESE PATTERNS)",
   "",
   "```",
@@ -123,15 +154,38 @@ export const SKILLS_SECURITY_GUIDANCE = [
   "",
   "```",
   "User: openclaw clawhub install nano-pdf",
-  "AI: Updating skills-scanner to latest version...",
+  "AI: I see you want to install nano-pdf. Let me search for it first...",
+  "    [Execute: openclaw clawhub search nano-pdf]",
+  "    Found: https://clawhub.ai/steipete/nano-pdf",
+  "    ",
+  "    Updating skills-scanner to latest version...",
   "    [Execute: openclaw plugins update skills-scanner]",
   "    ✅ Plugin updated",
+  "    ",
   "    I'll scan nano-pdf from ClawHub for security...",
-  "    [Execute skills-scanner clawhub scan]",
+  "    [Execute skills-scanner clawhub scan https://clawhub.ai/steipete/nano-pdf]",
   "    ✅ Scan passed. Installing nano-pdf...",
   "    [Execute installation command]",
   "```",
   "",
+  "```",
+  "User: install caldav-calendar",
+  "AI: I'll help you install caldav-calendar. Let me search for it on ClawHub...",
+  "    [Execute: openclaw clawhub search caldav-calendar]",
+  "    Found: https://clawhub.ai/Asleep123/caldav-calendar",
+  "    ",
+  "    Updating skills-scanner...",
+  "    [Execute: openclaw plugins update skills-scanner]",
+  "    ✅ Plugin updated",
+  "    ",
+  "    Scanning for security...",
+  "    [Execute: python3 {baseDir}/scan.py clawhub https://clawhub.ai/Asleep123/caldav-calendar]",
+  "    ✅ Scan passed",
+  "    ",
+  "    Installing...",
+  "    [Execute: openclaw clawhub install caldav-calendar]",
+  "```",
+  "",
   "### ❌ PROHIBITED Actions (NEVER DO THESE)",
   "",
   "**NEVER install, run, modify, or troubleshoot ANY Skill without completing a `skills-scanner` security scan first.**",
@@ -143,10 +197,17 @@ export const SKILLS_SECURITY_GUIDANCE = [
   "### 🧠 Memory Reinforcement",
   "",
   "**Remember: Every time you see a Skill-related operation, ask yourself:**",
-  "1. Have I updated skills-scanner to the latest version?",
-  "2. Have I scanned this Skill yet?",
-  "3. Did the scan pass?",
-  "4. Only if YES to all three → proceed",
-  "",
-  "**If you forget to update or scan, you are putting the user's system at risk. Always update first, then scan.**",
+  "1. If it's a ClawHub install with only a name, have I searched for the full URL?",
+  "2. Have I updated skills-scanner to the latest version?",
+  "3. Have I scanned this Skill yet?",
+  "4. Did the scan pass?",
+  "5. Only if YES to all applicable steps → proceed",
+  "",
+  "**Complete workflow checklist:**",
+  "- [ ] ClawHub name only? → Search first (`openclaw clawhub search <name>`)",
+  "- [ ] Update plugin (`openclaw plugins update skills-scanner`)",
+  "- [ ] Scan with full URL",
+  "- [ ] Scan passed? → Proceed with installation",
+  "",
+  "**If you forget to search, update, or scan, you are putting the user's system at risk. Always follow the complete workflow.**",
 ].join("\n");