ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

SSL证书查询

v1.2.5

查询域名 SSL 证书过期时间。用法:说「查 xxx.cn 证书」或「SSL 证书 xxx.com」即可。

1· 85·0 current·0 all-time
by@sunny-lobster-api

Install

OpenClaw Prompt Flow

Install with OpenClaw

Best for remote or guided setup. Copy the exact prompt, then paste it into OpenClaw for sunny-lobster-api/ssl-monitor.

Previewing Install & Setup.
Prompt PreviewInstall & Setup
Install the skill "SSL证书查询" (sunny-lobster-api/ssl-monitor) from ClawHub.
Skill page: https://clawhub.ai/sunny-lobster-api/ssl-monitor
Keep the work scoped to this skill only.
After install, inspect the skill metadata and help me finish setup.
Required binaries: openssl
Use only the metadata you can verify from ClawHub; do not invent missing requirements.
Ask before making any broader environment changes.

Command Line

CLI Commands

Use the direct CLI path if you want to install manually and keep every step visible.

OpenClaw CLI

Canonical install target

openclaw skills install sunny-lobster-api/ssl-monitor

ClawHub CLI

Package manager switcher

npx clawhub@latest install ssl-monitor
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description say 'check domain SSL certificate expiry' and the skill only requires openssl and performs TLS connections to the queried domains to read certificate end dates. The requirement (openssl) is appropriate and proportional.
Instruction Scope
SKILL.md and the included check-ssl.sh only read a domain list (default ~/.openclaw/workspace/ssl-domains.txt) or a provided domain, call openssl against the target host:443, parse dates, and output results. There are no instructions to read unrelated system files, secrets, or to send data to third-party endpoints beyond connecting to the target domains.
Install Mechanism
There is no install spec; this is instruction- and script-only. No downloads from external URLs or archive extraction are performed.
Credentials
The skill declares no required environment variables or credentials. The script writes/reads a domain file under the user's home workspace (~/.openclaw/workspace), which is reasonable for a domain-monitoring tool and does not require sensitive credentials.
Persistence & Privilege
The skill is user-invocable and not always-on. It does not request persistent elevated privileges or modify other skills' configuration. Its default behavior (creating a template domain file under the user's workspace) is limited in scope.
Assessment
This skill appears to do exactly what it claims: it uses openssl to connect to the domains you ask about and reports certificate expiry. Before installing, note that: (1) it will open outbound TCP connections to whatever domains you query (port 443) — avoid querying sensitive internal hosts if you don't want probes recorded in logs; (2) it creates/uses a domain list at ~/.openclaw/workspace/ssl-domains.txt (inspect or change that path if desired); (3) review the included check-ssl.sh yourself (it is small and readable) if you have strict security controls; and (4) ensure openssl is available on your system. There are no requested credentials or hidden network endpoints.

Like a lobster shell, security has layers — review code before you run it.

Runtime requirements

Binsopenssl
latestvk971014hr8343sedbnfpx9f4px840gh3
85downloads
1stars
1versions
Updated 3w ago
v1.2.5
MIT-0
@sunny-lobster-api
latest
Download

SSL 证书查询

一句话查询域名 SSL 证书状态。

用法

直接说:

  • 「查 baidu.com 证书」
  • 「SSL 证书 example.com」
  • 「xxx.cn 还有多久过期」

核心命令

domain="xxx.cn"
expiry=$(echo | openssl s_client -servername $domain -connect $domain:443 2>/dev/null | openssl x509 -noout -enddate 2>/dev/null | cut -d= -f2)
expiry_epoch=$(date -d "$expiry" +%s 2>/dev/null)
now_epoch=$(date +%s)
days_left=$(( ($expiry_epoch - $now_epoch) / 86400 ))
echo "域名:$domain"
echo "   过期时间:$expiry"
echo "   剩余天数:$days_left 天"
[ $days_left -lt 7 ] && echo "   状态:紧急" || ([ $days_left -lt 30 ] && echo "   状态:注意" || echo "   状态:正常")

响应示例

查 baidu.com 证书

域名:baidu.com
   过期时间:Dec 15 23:59:59 2026 GMT
   剩余天数:259 天
   状态:正常

快过期的域名

域名:expiring.com
   过期时间:Apr 5 23:59:59 2026 GMT
   剩余天数:5 天
   状态:紧急

Comments

Loading comments...