Devops Platform Skill
ReviewAudited by ClawScan on May 10, 2026.
Overview
The skill is broadly aligned with DevOps API access, but it handles a powerful user token with weaker and less-declared protections than its documentation implies.
Install only if you trust the publisher and the DevOps API URL. Use a limited-scope token, prefer HTTPS, assume the token may be stored in ~/.devops-platform-config.json as plain JSON, and explicitly approve any favorite/unfavorite actions.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A local process or user with access to the config file could recover the DevOps token and use it to access the user's platform data; a misconfigured base URL could also send the token to the wrong server.
The CLI collects a user DevOps token, stores the configuration as plain JSON in the user's home directory, and reuses that token as a Bearer credential for API requests.
{ type: 'input', name: 'token', message: '请输入用户Open Token:' } ... fs.writeFileSync(CONFIG_FILE, JSON.stringify(this.config, null, 2)); ... 'authorization': `Bearer ${token}`Declare the credential and config path in metadata, mask token entry, store tokens in an OS keychain or restrict file permissions, require HTTPS or approved hosts, and recommend least-privilege tokens.
Users may trust the skill more than warranted and provide sensitive DevOps credentials assuming protections that are not actually evident in the implementation.
The documentation claims encrypted token storage, forced HTTPS, and confirmation for writes, but the included code shows plaintext JSON config storage and does not show HTTPS validation or extra confirmation for POST actions.
Token 存储 本地加密存储 ... 传输安全 强制 HTTPS ... 写入需二次确认
Update the documentation to match the implementation or implement the promised controls before asking users to store DevOps tokens.
If invoked unintentionally, the agent could modify the user's saved iteration list, though this is a limited and disclosed mutation.
The skill exposes POST endpoints that change the user's DevOps account state by favoriting or unfavoriting iterations.
devops-platform favorite-iteration --plan-id <迭代ID> ... POST /publish/publishplan/favorite - 收藏迭代
Treat favorite/unfavorite as write actions and require explicit user approval before invoking them.
Installing globally or into OpenClaw's skills directory gives the package local execution presence, so users need to trust the code and publisher.
The install guidance asks users to copy or globally install executable code, while the registry entry has no install spec and the source is listed as unknown.
sudo cp -r devops-platform-skill /opt/homebrew/lib/node_modules/openclaw/skills/ ... npm install -g .
Review the package contents before installing, prefer non-sudo installation where possible, and publish complete provenance and install metadata.