WSL Proxy
PassAudited by ClawScan on May 4, 2026.
Overview
This skill appears purpose-aligned for configuring a WSL2 proxy, but it asks users to run shell scripts that probe proxy ports and can route shell traffic through the detected Windows proxy.
This skill is reasonable for WSL2 proxy setup. Review the shell output before using the eval command, remember that enabling http_proxy and https_proxy can route later command-line traffic through the Windows proxy, and only make the bashrc/zshrc change if you want the proxy to persist across sessions.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Running the setup command changes proxy-related environment variables in the current shell, which can affect later network requests from that shell.
The documented setup uses eval to execute shell commands emitted by the helper script in the user's current shell. The included script emits proxy-related export and echo commands, so this is purpose-aligned, but eval should be treated carefully.
eval "$(bash skills/wsl-proxy/scripts/setup_proxy.sh)"
Before using eval, run `bash skills/wsl-proxy/scripts/setup_proxy.sh` once to inspect the output, and only run the skill from a trusted local copy.
The script may contact ports on the Windows host and can identify a reachable proxy service.
The detection script probes common proxy ports on the WSL gateway and validates HTTP proxy behavior. This is expected for automatic proxy discovery, but it is still local network probing.
COMMON_PORTS=(7890 7897 1080 10808 10809 1081 8888 8080 9090 6152 7891)
Use it only when you intend to discover and use the Windows host proxy; review or edit the port list if your environment has special network constraints.
Running detection may make an outbound test request visible to the proxy provider and httpbin.org.
The proxy validation sends a test HTTP request to httpbin.org through the candidate proxy. This is consistent with checking whether a port behaves as an HTTP proxy, but it is an external network contact.
GET http://httpbin.org/get HTTP/1.0
If external test requests are not acceptable, replace the test URL with an approved internal endpoint before running the script.
If you add the snippet to a shell startup file, future shells may continue routing HTTP and HTTPS traffic through the detected proxy until you remove it.
The documentation describes an optional way to make proxy environment variables permanent in shell startup files. This is disclosed and user-directed, not automatic persistence.
追加到 `~/.bashrc` 或 `~/.zshrc`
Only add persistent proxy settings if you want that behavior across sessions, and keep a note of the lines to remove if you later want to disable it.