ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

E2b Sandbox Runtime

v0.1.0

E2B:在隔离 micro-VM 里执行 AI 生成代码的云端 runtime。Python / TS SDK 通过 Connect-RPC 调用 envd 守护进程(Rust + protobuf)。 E2B: cloud-side runtime for executing AI-generated code...

0· 17·0 current·0 all-time
byTang Weigang@tangweigang-jpg

Install

OpenClaw Prompt Flow

Install with OpenClaw

Best for remote or guided setup. Copy the exact prompt, then paste it into OpenClaw for tangweigang-jpg/e2b-sandbox-runtime.

Previewing Install & Setup.
Prompt PreviewInstall & Setup
Install the skill "E2b Sandbox Runtime" (tangweigang-jpg/e2b-sandbox-runtime) from ClawHub.
Skill page: https://clawhub.ai/tangweigang-jpg/e2b-sandbox-runtime
Keep the work scoped to this skill only.
After install, inspect the skill metadata and help me finish setup.
Use only the metadata you can verify from ClawHub; do not invent missing requirements.
Ask before making any broader environment changes.

Command Line

CLI Commands

Use the direct CLI path if you want to install manually and keep every step visible.

OpenClaw CLI

Canonical install target

openclaw skills install tangweigang-jpg/e2b-sandbox-runtime

ClawHub CLI

Package manager switcher

npx clawhub@latest install e2b-sandbox-runtime
Security Scan
Capability signals
CryptoCan make purchasesRequires OAuth tokenRequires sensitive credentials
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
!
Purpose & Capability
The skill is presented as a cloud-side sandbox runtime knowledge artifact, which can plausibly require control-plane credentials (E2B_API_KEY) and domain access. However the registry metadata lists no required environment variables or config paths while SKILL.md and seed.yaml explicitly reference E2B_API_KEY, E2B_ACCESS_TOKEN, optional E2B_DOMAIN, and outbound HTTPS to *.e2b.app. That discrepancy (declaring none but documenting secrets) is incoherent and unexplained.
!
Instruction Scope
SKILL.md and the included seed.yaml instruct the host AI to re-read seed.yaml on every behavioral decision, run precondition shell/python checks (e.g., import zvt, check ZVT_HOME and file-system write permissions), and follow an execution protocol that writes/uses host_workspace scripts/skills/trace paths. The instructions therefore direct the agent to run local commands, inspect environment and filesystem, and (per human_summary) handle long-running servers and port exposure — actions broader than a passive 'knowledge' skill and not declared in metadata.
Install Mechanism
No install spec or code files are present; this is instruction-only. That lowers installation risk because nothing is downloaded or written by the skill package itself.
!
Credentials
Metadata shows no required env vars and sets primaryEnv to the nonstandard 'knowledge', yet SKILL.md documents E2B_API_KEY and E2B_ACCESS_TOKEN (and optional E2B_DOMAIN) and warns about passing API keys into sandboxes. Requiring API keys and telling the agent to run local checks and potentially expose ports is a materially higher privilege request than what the registry declares.
Persistence & Privilege
The skill does not request 'always: true' and leaves autonomous invocation enabled (platform default). It expects the host to use workspace paths (scripts_path, skills_path, .trace/), which implies the agent will create/read workspace files during execution. That behavior is plausible for this blueprint but should have been declared up-front; combined with missing credential declarations this increases risk.
What to consider before installing
This skill appears to be a knowledge/blueprint for an E2B sandbox runtime but its metadata omits credentials and filesystem/egress expectations that the SKILL.md/seed.yaml explicitly describe. Before installing or enabling it: (1) ask the publisher for the homepage/repository and for a clear list of required environment variables (E2B_API_KEY, E2B_ACCESS_TOKEN, E2B_DOMAIN) to be declared in registry metadata; (2) do not provide real production API keys until you confirm the author and trust the runtime — use a limited or test key instead; (3) be aware the instructions tell the agent to run local commands, inspect ZVT_HOME and other paths, and may start long-running servers/ports — run first in an isolated/test environment; (4) ask the publisher to update the skill metadata to declare required env vars and any workspace write operations, and to justify why the agent must re-read seed.yaml and run the listed preconditions; (5) if you are uncomfortable with autonomous actions, disable autonomous invocation or restrict the skill until provenance and required privileges are clarified.

Like a lobster shell, security has layers — review code before you run it.

Runtime requirements

Primary envknowledge
aivk973cz4xgh23padrhfvc1kmjax85hewrapivk973cz4xgh23padrhfvc1kmjax85hewrdockervk973cz4xgh23padrhfvc1kmjax85hewrlatestvk973cz4xgh23padrhfvc1kmjax85hewr
17downloads
0stars
1versions
Updated 3h ago
v0.1.0
MIT-0
Tang Weigang@tangweigang-jpg
aiapidockerlatest
Download

这个 skill 适合什么用户?能做哪些任务?

概览

E2B 是在隔离 micro-VM 里执行 AI 生成代码的云端 runtime(github.com/e2b-dev/E2B)。Python / TypeScript SDK 是纯 RPC 客户端,通过 Connect-RPC 对接 envd 守护进程(Rust + protobuf,托管在独立的 e2b-dev/infra repo)。

SDK 接口为 2x2:{Sandbox, AsyncSandbox} × {Template, AsyncTemplate}。Sandbox / AsyncSandbox 各带四个子模块作为实例属性:files: Filesystem / comman...

Doramagic 晶体页: https://doramagic.ai/zh/crystal/e2b-sandbox-runtime

知识规模

  • 42 条约束 (3 fatal + 39 non-fatal)
  • 上游源码: e2b-dev/E2B @ commit 557b723c
  • 蓝图 ID: finance-bp-141

用法

Host AI(Claude Code / Cursor / OpenClaw)读 references/seed.yaml,按其中的:

  • intent_router 匹配用户意图
  • architecture 理解项目架构
  • constraints 应用 anti-pattern 约束
  • business_decisions 参考核心设计决策

FAQ 摘要

这个 skill 适合什么用户?能做哪些任务?

适合需要让 LLM 安全执行任意代码的工程师:AI 助手跑 Python / shell、数据分析 sandbox、教学环境。每个 sandbox 是隔离 micro-VM,泄露面限制在单个 sandbox 内。Jupyter 内核 / 富输出场景应改用 e2b-code-interpreter。访问 doramagic.ai/r/e2b 查看完整用例。

需要准备什么环境?依赖什么?

Python 3.9+ 或 Node 18+。E2B_API_KEY 给 SDK runtime(创建 / 控制 sandbox);E2B_ACCESS_TOKEN 给 CLI 鉴权(template build / dashboard)。可选 E2B_DOMAIN(默认 e2b.app)。出站 HTTPS 到 *.e2b.app。

会踩哪些坑?这个 skill 怎么防护?

本 skill 内置 42 条约束(3 条 fatal)。典型踩坑:(1) TS 用户忘 kill()——TS Sandbox 没有 Symbol.dispose 也没自动清理,sandbox 持续计费到超时;(2) 通过 envs={...} 传 API key 会被 commands.list() 泄露给持有 sandbox 句柄的人;

完整文档: 见 references/seed.yaml (v6.1 schema). 浏览页: https://doramagic.ai/zh/crystal/e2b-sandbox-runtime

Comments

Loading comments...