暂无可比对内容
需要至少一个上一版本,才能生成差异对比。
Security Scan
状态
suspicious
OpenClaw
gpt-5-mini
OpenClaw 分析
The skill's instructions match its stated purpose (calling the Trello REST API), but registry metadata omits required credentials and a required binary (jq) found in SKILL.md — an incoherence that should be corrected before use.
置信度: high
VirusTotal
Type: OpenClaw Skill Name: trello Version: 1.0.0 The skill bundle is benign. It provides clear documentation and examples for managing Trello boards, lists, and cards using the official Trello REST API via `curl` commands. It explicitly requires `TRELLO_API_KEY` and `TRELLO_TOKEN` environment variables, which are used solely for authenticating with `api.trello.com`. There is no evidence of data exfiltration, malicious execution, persistence mechanisms, obfuscation, or prompt injection attempts against the agent beyond its stated purpose of interacting with Trello.