openclaw-upgrade
https://clawhub.ai/api/v1/skills/oc-upgrade/file?path=SKILL.md&version=1.5.0
github.com/clawhub.ai/oc-upgrade
Scanned Thu, 28 May 2026 16:54:41 GMT
Scan ID crawl-z18glpg1pnfnw0ht4l14kq6v · 2ms
F
SCORE 0 / 100
Verdict: Do not install

2 critical findings.

This skill exfiltrates environment secrets ($GITHUB_TOKEN) plus 2 other issues listed below.

2 critical0 high1 medium9 rules passed

Why grade F?

score · 0 / 100

The current grade reflects 2 critical findings (any 2+ CRITs → F).

2 CRIT0 HIGH1 MED0 LOW
To reach a higher grade
  • D
    Reach Dtarget score 30

    Resolve 1 of your 2 CRIT findings — any single CRIT still keeps you at D.

  • C
    Reach Ctarget score 55

    Resolve all 2 CRIT findings.

  • B
    Reach Btarget score 75

    Resolve all 2 CRIT.

  • A
    Reach Atarget score 95

    Resolve all 2 CRIT.

Thresholds are documented at /docs/grading. Source-of-truth is the grade() function in @skillox/scanner.

Findings · ordered by severity

crit
Skill references secret env var $GITHUB_TOKEN
The skill instructions reference `$GITHUB_TOKEN`, which contains a credential. If an attacker can lure the agent into including this in an outbound URL or message, the credential leaks.
rule: env-var-harvestingline: 81CWE-200
79GITHUB_TOKEN=$(grep GITHUB_TOKEN ~/.openclaw/.env | cut -d= -f2)
80TARGET_VER=<目标版本,如 2026.5.12>
81curl -s -H "Authorization: token $GITHUB_TOKEN" \references $GITHUB_TOKEN — potential credential leak
82 "https://api.github.com/repos/openclaw/openclaw/releases/tags/v${TARGET_VER}" | \
83 python3 -c "import json,sys; d=json.load(sys.stdin); print(d.get('body','')[:3000])"
crit
Skill references secret env var $GITHUB_TOKEN
The skill instructions reference `$GITHUB_TOKEN`, which contains a credential. If an attacker can lure the agent into including this in an outbound URL or message, the credential leaks.
rule: env-var-harvestingline: 101CWE-200
99```bash
100GITHUB_TOKEN=$(grep GITHUB_TOKEN ~/.openclaw/.env | cut -d= -f2)
101curl -s -H "Authorization: token $GITHUB_TOKEN" \references $GITHUB_TOKEN — potential credential leak
102 "https://api.github.com/repos/openclaw/openclaw/releases/tags/v${TARGET_VER}" | \
103 python3 -c "
med
No capability manifest declared
The skill ships without a `manifest.yaml` or `capabilities` block in its frontmatter. Without a manifest, the runtime cannot enforce what this skill is permitted to do.
rule: no-manifest
Scan another →Share
skillox.io/r/crawl-z18glpg1pnfnw0ht4l14kq6v