OpenClaw 技术服务
Security checks across static analysis, malware telemetry, and agentic risk
Overview
This is an instruction-only promotional service listing with no code, install steps, credentials, or local permissions, though users should verify the provider before paying or sharing business data.
This appears safe to install from an artifact-security perspective because it contains only descriptive service information and no executable code or permissions. Treat it like an advertisement: verify Simon’s identity and reputation, agree on scope and payment terms, and avoid sharing credentials or private company data unless you have a clear contract and security expectations.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A user could be encouraged to contact and pay an external provider; this is not inherently unsafe, but payment and sharing of business data should be verified independently.
The skill explicitly solicits off-platform contact and paid services. This is aligned with the stated service-offering purpose, but users should treat it as a commercial solicitation rather than a built-in technical capability.
**微信/Telegram**: 私信详谈 ... **备注**: 小项目可先付50%,验收通过后付尾款
Verify the provider, scope of work, payment terms, and data-handling expectations before engaging or sharing private credentials, documents, or infrastructure access.