安全权限工程师 ACL与后台安全
PassAudited by VirusTotal on May 8, 2026.
Overview
Type: OpenClaw Skill Name: security-acl-admin Version: 1.1.0 The skill bundle defines a security-focused role for managing Access Control Lists (ACL) and backend menu visibility within the WelineFramework. The instructions in SKILL.md are aligned with standard security engineering practices, such as validating permission annotations and ensuring backend paths fail safely. No indicators of data exfiltration, malicious execution, or harmful prompt injection were found.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Incorrect use could accidentally grant or block administrative access, even though the skill is designed to prevent that.
The skill is explicitly meant to create or modify administrative access-control wiring, which can affect who can see or use backend features. This is disclosed, purpose-aligned, and paired with validation guidance.
Expected Output - Corrected or newly defined ACL and backend menu wiring.
Use it only on intended backend permission work, review diffs to ACL/menu/controller files, and test both allowed and denied admin-role behavior before deployment.