搜索结果
agent
找到 14 个相关结果 / 命令行工具
安全与治理 / 审核评估
okx-cex-bot
okx-cex-bot
Manage Grid bots (spot/contract/coin-margined) and DCA Martingale bots (Spot DCA 现货马丁 / Contract DCA 合约马丁) on OKX. Covers create, stop, amend, monitor P&L,…
安全与治理 / 审核评估
second-opinion
second-opinion
Runs external LLM code reviews (OpenAI Codex or Google Gemini CLI) on uncommitted changes, branch diffs, or specific commits. Use when the user asks for a…
安全与治理 / 审核评估
mcp-security-audit
mcp-security-audit
Audit MCP (Model Context Protocol) server configurations for security issues. Use this skill when: - Reviewing .mcp.json files for security risks - Checking MCP server args for hardcoded secrets or shell injection patterns - Validating that MCP servers use pinned versions (not @latest) - Detecting unpinned dependencies in MCP server configurations - Auditing which MCP servers a project registers and whether they're on an approved list - Checking for environment variable usage vs. hardcoded credentials in MCP configs - Any request like "is my MCP config secure?", "audit my MCP servers", or "check .mcp.json" keywords: [mcp, security, audit, secrets, shell-injection, supply-chain, governance]
安全与治理 / 审核评估
arize-trace
arize-trace
下载、导出并检查现有的 Arize traces 和 spans,以了解 LLM 应用的运行状态或调试运行时问题。涵盖按 ID 导出 traces、…
安全与治理 / 审核评估
prompt-guard
prompt-guard
Detect and neutralize prompt injection attacks in OpenClaw skill content, user inputs, and external data sources.
安全与治理 / 审核评估
arize-evaluator
arize-evaluator
在 Arize 上处理 LLM-as-judge 评估工作流,包括创建/更新评估器、在 span 或 experiment 上运行评估、管理任务等。
安全与治理 / 审核评估
output-sanitizer
output-sanitizer
Sanitize OpenClaw agent output before display. Strips leaked credentials, PII, internal paths, and sensitive
安全与治理 / 审核评估
config-hardener
config-hardener
Audit and harden your OpenClaw configuration. Checks AGENTS.md, gateway settings, sandbox config, and permission
安全与治理 / 审核评估
skill-security-auditor
skill-security-auditor
Security audit and vulnerability scanner for AI agent skills before installation. Use when: (1) evaluating a skill from an untrusted source, (2) auditing a skill directory or git repo URL for malicious code, (3) pre-install security gate for Claude Code plugins, OpenClaw skills, or Codex skills, (4) scanning Python scripts for dangerous patterns like os.system, eval, subprocess, network exfiltration, (5) detecting prompt injection in SKILL.md files, (6) checking dependency supply chain risks, (7) verifying file system access stays within skill boundaries. Triggers: "audit this skill", "is this skill safe", "scan skill for security", "check skill before install", "skill security check", "skill vulnerability scan".
安全与治理 / 审核评估
cobo-agentic-wallet
cobo-agentic-wallet
Create and manage agentic wallets with Cobo. Use for autonomous onchain operations via the caw CLI: token transfers, contract calls, pact creation and…
安全与治理 / 审核评估
senior-security
senior-security
Performs STRIDE threat modeling, DREAD risk scoring, secret detection, and secure architecture design. Use when conducting threat models, reviewing code for security vulnerabilities, designing defense-in-depth architectures, or scanning for hardcoded secrets and credentials.
安全与治理 / 审核评估
senior-secops
senior-secops
Comprehensive SecOps skill for application security, vulnerability management, compliance, and secure development practices. Includes security scanning, vulnerability assessment, compliance checking, and security automation. Use when implementing security controls, conducting security audits, responding to vulnerabilities, or ensuring compliance requirements.
安全与治理 / 审核评估
skill-security-auditor
skill-security-auditor
Security audit and vulnerability scanning for AI agent skills before installation. Detects prompt injection in SKILL.md files, dangerous code patterns (eval, exec, subprocess), network exfiltration, credential harvesting, dependency supply chain risks, file system boundary violations, and obfuscation. Produces PASS/WARN/FAIL verdicts with remediation guidance. Use when evaluating untrusted skills, pre-install security gates, or auditing skill repositories.
安全与治理 / 审核评估
implement-review-pr
implement-review-pr
GitHub PR の CI・品質・Conventional Commits 準拠をレビューする。