Skill Router BZai
v1.0.0Cost-effective skill selector for maximizing ROI on AI operations (增收降本版 v1.0.0). Use when the user needs to accomplish a task and wants the optimal skill ch...
⭐ 0· 118·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
medium confidencePurpose & Capability
The skill claims to discover local skills and search clawhub, evaluate them on quality/token/security/speed, present top-3 options, and execute a chosen skill. The included scripts call the expected CLIs (openclaw, clawhub), estimate costs, and implement evaluation logic. No unrelated binaries, env vars, or external credentials are requested.
Instruction Scope
SKILL.md instructs the agent to list local skills, search clawhub, run a security review, present recommendations, and—after user confirmation—install and execute a selected skill. That behavior is consistent with the router's purpose, but it involves installing and running third-party skills (potentially untrusted). The scripts perform downloads (clawhub download --dry-run) and run external CLIs; the skill defers final execution to user confirmation, which reduces risk. Also note the code contains placeholder/partial implementations for security checks and parsing, so the actual runtime checks may be weaker than the doc implies.
Install Mechanism
No install spec is provided (instruction-only skill plus bundled scripts). There are no network-download install steps embedded in the skill package itself. The only external interactions are via existing CLIs (openclaw, clawhub), which is appropriate for a router helper.
Credentials
The skill declares no required environment variables or credentials. It does read/write a history file under the user's home (~/.openclaw/workspace/skill-router-history.json) for cost/history tracking — this is reasonable for a router but is persisted to the user's filesystem. The scripts rely on external CLIs which may themselves use credentials; that is expected for a tool that searches/installs skills.
Persistence & Privilege
always:false (default) — no forced global presence. The skill writes a history file in ~/.openclaw/workspace, which is limited per-user but persistent. It may install and execute other skills (with user confirmation). This is expected functionality for a skill manager but expands its effective privileges by invoking third-party code; consider sandboxing or stricter verification before letting it run autonomously.
Assessment
This skill appears to do what it says: discover, score, and recommend skills from local installs and clawhub. Before installing or enabling it, consider the following: 1) It will call your local openclaw and clawhub CLIs and may install/run third‑party skills after you approve — only approve skills you trust or have inspected. 2) It persists history at ~/.openclaw/workspace/skill-router-history.json; if you prefer no local traces, remove/redirect that path. 3) The bundled security checks are partially placeholder-ish (e.g., evaluate_clawhub/check_security has minimal implementation and evaluate_local_skill assumes local skills are vetted). Don’t rely solely on this router’s automatic security score—manually review any skill flagged as high risk. 4) Run the router in a sandbox or test environment first if you expect strict security controls. If you want stronger guarantees, request that its security-check implementations perform concrete static scans, parse downloaded code, and refuse installs that fail those checks.Like a lobster shell, security has layers — review code before you run it.
latestvk978bs6vrvdec6491cw3h09m7n832gcy
License
MIT-0
Free to use, modify, and redistribute. No attribution required.