ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

🛡️ Credential Vault / 凭证保险箱

GPG AES-256 encrypted credential management. Requires: GPG (gnupg) installed, Python 3.8+, CRED_MASTER_PASS env var for non-interactive use. Use when the use...

MIT-0 · Free to use, modify, and redistribute. No attribution required.
0 · 88 · 0 current installs · 0 all-time installs
by@king6381
MIT-0
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description (GPG AES-256 credential manager) matches the code and runtime requirements: Python + gpg + optional CRED_MASTER_PASS. The included scripts implement the stated init/add/get/list/remove operations; no unrelated services, binaries, or credentials are requested.
Instruction Scope
SKILL.md and scripts instruct only to create/read/update a local encrypted file and to set or prompt for a master password. They reference only the skill directory and the CRED_MASTER_PASS env var. There is no instruction to read unrelated files, exfiltrate data, or call external endpoints.
Install Mechanism
No install spec (instruction-only) and shipped code is plain Python/bash. Nothing is downloaded or executed from a remote URL. This minimizes install-time risk.
Credentials
Only a single env var (CRED_MASTER_PASS) is required which aligns with the stated non-interactive usage. This is proportionate, but the skill explicitly warns that environment variables are readable by same-user processes via /proc on Linux and that temporary plaintext JSON is created briefly. Those are real, expected risks (not evidence of misbehavior) and should be considered before non-interactive use.
Persistence & Privilege
Skill is not always:true and does not request system-wide config changes or extra privileges. It is user-invocable and can be called autonomously (platform default), which is normal; there is no additional persistent system modification.
Assessment
This credential vault is internally coherent and implements a local GPG-encrypted file approach. Before installing or using it, consider the following: (1) Prefer interactive entry via gpg-agent/pinentry rather than exporting CRED_MASTER_PASS — environment variables can be read by other same-user processes on Linux (/proc/*/environ). (2) The tool creates a plaintext JSON temp file for a short time; on systems without encrypted tmpfs this can be recoverable — consider mounting /tmp as tmpfs or setting TMPDIR to a ram-backed location if you need stronger guarantees. (3) The helper prints secrets to stdout; avoid running it in contexts where other processes could capture stdout, and avoid exposing secrets in logs. (4) This is single-user, local storage (no key rotation, no tamper detection) — for enterprise or multi-tenant use consider an OS keyring, HashiCorp Vault, or cloud KMS. (5) Review the included scripts before use and keep the credential file and skill directory permissions restricted (600/owner-only). If you cannot accept the env-var and temp-file trade-offs, do not use the non-interactive mode and prefer interactive gpg-agent/pinentry flows.

Like a lobster shell, security has layers — review code before you run it.

Current versionv1.3.1
Download zip
latestvk97586z2ewfq66ybvk7a11gvj18349d2

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

Binsgpg, python3
EnvCRED_MASTER_PASS

SKILL.md

🛡️ Credential Vault / 凭证保险箱

GPG AES-256 encrypted credential manager — one file, all secrets.
GPG AES-256 对称加密凭证管理器 — 一个文件,管理所有密钥。

⚡🔨 Part of the Mjölnir / 雷神 toolchain
🛡️ Brand: 雷神之盾 (Shield of Thor)

Dependencies / 依赖

  • Python 3.8+
  • GPG (gnupg) — pre-installed on most Linux/macOS; Windows needs Gpg4win
  • Check / 检查: gpg --version (the init command verifies this automatically / init 命令会自动检查)

Required Environment Variables / 环境变量

Variable / 变量Purpose / 用途Required? / 是否必需
CRED_MASTER_PASSMaster password for encrypt/decrypt / 加解密主密码Required for non-interactive use; prompts if unset / 非交互使用时必需;未设置则交互输入

Quick Start / 快速开始

# Initialize (first time) / 首次初始化 — checks GPG availability / 检查 GPG 可用性
python3 SKILL_DIR/scripts/cred_manager.py init

# Add credentials (interactive) / 交互式添加凭证
python3 SKILL_DIR/scripts/cred_manager.py add myservice

# Non-interactive use / 非交互使用
export CRED_MASTER_PASS="your_password"

Replace SKILL_DIR with the actual skill directory path.
SKILL_DIR 替换为实际的技能目录路径。

Security Model / 安全模型

How it works / 工作原理

  1. All credentials stored as AES-256 encrypted .gpg file (permissions 600)
    所有凭证存储为 AES-256 加密的 .gpg 文件(权限 600)
  2. Master password passed to GPG via --passphrase-fd (stdin pipe) — never in command-line arguments
    主密码通过 --passphrase-fd(stdin 管道)传递给 GPG — 绝不出现在命令行参数中
  3. Shell helper also uses --passphrase-fd 0 (echo pipe) — not --passphrase
    Shell 辅助脚本同样使用 --passphrase-fd 0(echo 管道)— 不用 --passphrase

Temporary plaintext on disk / 临时明文落盘

During save/encrypt operations, plaintext JSON briefly exists as a temporary file:
在保存/加密操作期间,明文 JSON 会短暂存在于临时文件中:

  • Created with mkstemp + fchmod 600 (owner-only read/write) / 使用 mkstemp + fchmod 600 创建(仅所有者可读写)
  • Exists for milliseconds (only during GPG subprocess execution) / 仅存在毫秒级(GPG 子进程执行期间)
  • Securely deleted: zero-overwrite → fsync → unlink / 安全删除:零覆写 → fsync → unlink
  • Risk / 风险: on some systems, temp file contents may be recoverable from disk. For higher security, use a tmpfs/ramfs mount or a dedicated secrets manager.
    在某些系统上,临时文件内容可能可从磁盘恢复。如需更高安全性,请使用 tmpfs/ramfs 挂载或专用密钥管理器。

Master password storage / 主密码存储

The CRED_MASTER_PASS environment variable is readable by same-user processes via /proc/*/environ on Linux.
CRED_MASTER_PASS 环境变量在 Linux 上可被同用户进程通过 /proc/*/environ 读取。

Recommended approaches (most → least secure) / 推荐方式(安全性从高到低):

  1. gpg-agent / pinentry — enter password interactively each time (most secure) / 每次交互输入密码(最安全)
  2. Runtime injection / 运行时注入 — set via a secrets manager or session-scoped read -s prompt / 通过密钥管理器或会话级 read -s 提示设置
  3. Environment variable / 环境变量export CRED_MASTER_PASS="..." in current shell (convenient but less secure) / 在当前 shell 中设置(方便但安全性较低)

Avoid / 避免: persisting the master password in plaintext files (e.g., ~/.bashrc). If you must, ensure chmod 600 and understand the trade-off.
不要将主密码明文写入文件(如 ~/.bashrc)。如必须,请确保 chmod 600 并了解风险。

Core Operations / 核心操作

Initialize / 初始化

python3 scripts/cred_manager.py init

Verifies GPG is installed, creates encrypted credentials.json.gpg (permissions 600). Warns if password < 8 chars.
验证 GPG 已安装,创建加密的 credentials.json.gpg(权限 600)。密码少于 8 位会警告。

Add / Update Credentials / 添加/更新凭证

python3 scripts/cred_manager.py add <service_name>
# Interactive: enter key=value pairs, empty line to finish
# 交互式:输入 key=value 键值对,空行结束

Or programmatically / 或通过代码调用:

from cred_manager import add_credential
add_credential('github', {'user': 'octocat', 'token': 'ghp_xxx'})

Retrieve Credentials / 获取凭证

Python:

from cred_manager import get_credential, get_service

token = get_credential('github', 'token')    # single field / 单个字段
config = get_service('github')               # full dict / 完整字典

Shell / Bash:

export CRED_MASTER_PASS="your_password"
source scripts/cred_helper.sh
TOKEN=$(cred_get github token)

CLI / 命令行:

python3 scripts/cred_manager.py get github token
python3 scripts/cred_manager.py list

Remove / 删除

python3 scripts/cred_manager.py remove <service_name>

Integration Pattern / 集成模式

When a script has hardcoded passwords, refactor to:
当脚本中有硬编码密码时,重构为:

import sys, os
sys.path.insert(0, os.path.expanduser('path/to/credential-vault/scripts'))
from cred_manager import get_credential

password = get_credential('myservice', 'pass')

Known Limitations / 已知限制

  1. Temporary plaintext on disk / 临时明文落盘 — briefly exists during encrypt operations (mitigated but not zero-risk) / 加密操作时短暂存在(已缓解但非零风险)
  2. Environment variable visibility / 环境变量可见性CRED_MASTER_PASS readable by same-user processes on Linux / 在 Linux 上可被同用户进程读取
  3. No key rotation / 无密钥轮换 — manual re-encrypt required to change master password / 更换主密码需手动重新加密
  4. Single-user design / 单用户设计 — not for enterprise multi-tenant use / 不适用于企业多租户场景
  5. No tamper detection / 无篡改检测.gpg file integrity not independently verified / .gpg 文件完整性未独立验证

For higher security requirements, consider: OS keyring, pass, HashiCorp Vault, or cloud KMS.
如需更高安全性,请考虑:OS 密钥环、pass、HashiCorp Vault 或云 KMS。

Changelog / 更新日志

  • v1.3.1 — Fix registry metadata: declare gpg, python3 bins and CRED_MASTER_PASS env var / 修复注册表元数据:声明依赖二进制和环境变量
  • v1.3.0 — Bilingual documentation (EN/CN) / 中英双语文档;bilingual CLI output / 双语 CLI 输出
  • v1.2.0 — Security hardening: --passphrase-fd for both Python & Shell; honest temp-file disclosure; 3-tier password advice / 安全加固
  • v1.1.0 — Python --passphrase-fd stdin pipe / Python 端 stdin 管道传密码
  • v1.0.0 — Initial release / 首次发布

Files

3 total
Select a file
Select a file to preview.

Comments

Loading comments…