PigX Server 后端开发
v1.0.0PigX 企业级微服务平台后端开发指南 - Spring Cloud Alibaba + Java 17。当用户提到 PigX Server、PigX 后端、lhb-server 项目、Spring Cloud 微服务开发、PigX 微服务架构时使用此技能。
⭐ 0· 74·0 current·0 all-time
by子不语@zhibuyu
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
medium confidencePurpose & Capability
The name and description (PigX 后端开发 guide) match the SKILL.md content: project info, build/run commands, module layout, code examples, and AI/RAG notes. There are no unexpected requirements (no env vars, binaries, or install steps) that would be unrelated to a developer guide.
Instruction Scope
The SKILL.md is an instruction-only developer guide. It instructs typical development commands (mvn build/run, formatting) and provides code and config examples. It references a local Windows project path (D:\WorkSpace\my_workspace\lhb\lhb-server) and a references/ directory — these are examples, not explicit instructions to read arbitrary system files. Still, the hardcoded local path can mislead an agent or user into accessing a specific filesystem location if used verbatim.
Install Mechanism
No install spec or code files are provided; the skill is instruction-only, so nothing is written to disk by an installer. This is the lowest-risk install profile.
Credentials
Although the skill does not request environment variables or credentials at install time, the SKILL.md embeds example credentials/passwords in plaintext (Postgres: username/password both 'postgres', Redis host and DB, and a config encryption password 'pigx'). Embedding these sample secrets in the skill text can be dangerous if copied into production or relied on; it is disproportionate to simply being a documentation guide to include actual passwords.
Persistence & Privilege
The skill does not request persistent presence (always is false) and contains no install hooks or configuration changes. It does not attempt to modify other skills or system-wide settings. Autonomous invocation is enabled by platform default but is not combined here with other elevated privileges.
Assessment
This is a documentation-only skill that appears to match its stated purpose, so it is not inherently malicious. Before installing or acting on its instructions: 1) Verify the skill's source and prefer official PigX/pig4cloud repositories or upstream docs where possible. 2) Do not copy embedded credentials or the listed encryption password ('pigx') into any real environment — treat them as examples and rotate/change any real secrets. 3) Be cautious about the hardcoded local path (D:\WorkSpace\...): do not run file operations that assume your machine has that path. 4) When running commands (mvn, docker-compose, etc.), review them and run them in a safe, isolated environment (e.g., a disposable container or VM) if you are unsure. 5) If you need to use this for production, replace example DB/Redis credentials with secure values and confirm any referenced 'references/' files are safe and do not contain secrets.Like a lobster shell, security has layers — review code before you run it.
backendvk970vvax65w3gs03zkg6gqh04x83hy36javavk970vvax65w3gs03zkg6gqh04x83hy36latestvk970vvax65w3gs03zkg6gqh04x83hy36pigxvk970vvax65w3gs03zkg6gqh04x83hy36spring-cloudvk970vvax65w3gs03zkg6gqh04x83hy36
License
MIT-0
Free to use, modify, and redistribute. No attribution required.