$ ~/registry/skill/openclaw-agents-skills-openclaw-ghsa-maintainer

SKILL

openclaw-ghsa-maintainer

帮助维护者检查、修复并验证 OpenClaw 的 GHSA 安全公告与私有分叉状态。

星标

★ 377,401

来源

GitHub

更新于

2026-06-07

// 安全评估低风险

仅提示词，不执行代码
开源可审计
社区验证· 377.4k

正在进行安全审计…

凭证密钥
网络外发
代码执行
数据访问
来源供应链

// 安装

复制安装指令，让 AI 自动完成配置 · 推荐新手

请帮我安装 askskill 上的 "openclaw-ghsa-maintainer" 技能：
1. 下载 https://raw.githubusercontent.com/openclaw/openclaw/main/.agents/skills/openclaw-ghsa-maintainer/SKILL.md
2. 保存为 ~/.claude/skills/openclaw-ghsa-maintainer/SKILL.md
3. 装好后重载技能，告诉我可以用了

// 下载

下载 SKILL.md机读安装清单 ↗

// 用法示例

检查安全公告状态

输入

请检查 OpenClaw 当前所有 GHSA 安全公告的状态，列出待修复、待验证、待发布的项目，并说明私有分叉是否配置正确。

预期产出

一份状态清单，包含各公告阶段、风险点和私有分叉配置检查结果。

验证修复是否生效

输入

针对这个 OpenClaw GHSA 公告，请验证补丁是否已正确应用，说明复现步骤、验证结果，以及是否可以进入发布流程。

预期产出

一份验证报告，说明漏洞是否已修复、测试结论及下一步建议。

准备发布公告

输入

请根据已确认的修复内容，为 OpenClaw 生成 GHSA 公告发布前检查清单，包括版本影响范围、修复说明、发布时间和私有分叉同步确认项。

预期产出

一份可执行的发布前清单，帮助维护者安全完成公告发布。

// 文档

OpenClaw GHSA Maintainer

Use this skill for repo security advisory workflow only. Keep general release work in release-openclaw-maintainer.

Respect advisory guardrails

Before reviewing or publishing a repo advisory, read SECURITY.md.
Ask permission before any publish action.
Treat this skill as GHSA-only. Do not use it for stable or beta release work.

Fetch and inspect advisory state

Fetch the current advisory and the latest published npm version:

gh api /repos/openclaw/openclaw/security-advisories/<GHSA>
npm view openclaw version --userconfig "$(mktemp)"

Use the fetch output to confirm the advisory state, linked private fork, and vulnerability payload shape before patching.

Verify private fork PRs are closed

Before publishing, verify that the advisory's private fork has no open PRs:

fork=$(gh api /repos/openclaw/openclaw/security-advisories/<GHSA> | jq -r .private_fork.full_name)
gh pr list -R "$fork" --state open

The PR list must be empty before publish.

Prepare advisory Markdown and JSON safely

Write advisory Markdown via heredoc to a temp file. Do not use escaped \n strings.
Build PATCH payload JSON with jq, not hand-escaped shell JSON.

Example pattern:

cat > /tmp/ghsa.desc.md <<'EOF'
<markdown description>
EOF

jq -n --rawfile desc /tmp/ghsa.desc.md \
  '{summary,severity,description:$desc,vulnerabilities:[...]}' \
  > /tmp/ghsa.patch.json

Apply PATCH calls in the correct sequence

Do not set severity and cvss_vector_string in the same PATCH call.
Use separate calls when the advisory requires both fields.
Publish by PATCHing the advisory and setting "state":"published". There is no separate /publish endpoint.

Example shape:

gh api -X PATCH /repos/openclaw/openclaw/security-advisories/<GHSA> \
  --input /tmp/ghsa.patch.json

Publish and verify success

After publish, re-fetch the advisory and confirm:

state=published
published_at is set
the description does not contain literal escaped \\n

Verification pattern:

gh api /repos/openclaw/openclaw/security-advisories/<GHSA>
jq -r .description < /tmp/ghsa.refetch.json | rg '\\\\n'

Common GHSA footguns

Publishing fails with HTTP 422 if required fields are missing or the private fork still has open PRs.
A payload that looks correct in shell can still be wrong if Markdown was assembled with escaped newline strings.
Advisory PATCH sequencing matters; separate field updates when GHSA API constraints require it.
Public hardening/no-publish comments and draft text should avoid raw commit hashes, PR titles/numbers, and fix-mechanism summaries. Prefer patched-version fields or release-only wording; keep SHAs, PRs, and implementation notes in internal evidence.