← 回總覽

Skillhub 与 ClawHub 插件实现机制的深度对比分析

📅 2026-03-13 14:58 Orange AI 人工智能 4 分鐘 3800 字 評分: 83
Skillhub ClawHub OpenClaw Prompt Injection AI Agent
📌 一句话摘要 通过静态审查揭示 Skillhub 存在持久化 Prompt 注入行为,而 ClawHub 仅为标准 CLI 安装工具。 📝 详细摘要 作者对 Skillhub 和 ClawHub 两个插件进行了静态代码审查,指出两者的本质区别:Skillhub 不仅仅是技能安装器,它会通过 OpenClaw 插件机制在每次构建 Prompt 前注入策略文本(Policy Injection),从而引导 Agent 的决策路径并增加 Token 开销;而 ClawHub 则表现为标准的 npm 式 CLI 工具,仅负责文件的搜索、下载与解压。作者借此强调了 AI 技能商店在实现方式上应保持

Title: In-depth Comparative Analysis of Skillhub and ClawHub Plu...

URL Source: https://www.bestblogs.dev/status/2032350657131528380

Published Time: 2026-03-13 06:58:50

Markdown Content: Skip to main content ![Image 1: LogoBestBlogs](https://www.bestblogs.dev/ "BestBlogs.dev")Toggle navigation menu Toggle navigation menuArticlesPodcastsVideosTweetsSourcesNewsletters

⌘K

Change language Switch ThemeSign In

Narrow Mode

In-depth Comparative Analysis of Skillhub and ClawHub Plugin Implementation Mechanisms ======================================================================================

In-depth Comparative Analysis of Skillhub and ClawHub Plugin Implementation Mechanisms ====================================================================================== ![Image 2: Orange AI](https://www.bestblogs.dev/en/tweets?sourceId=SOURCE_a56f64) ### Orange AI

@oran_ge

CC: 对两个插件做了静态审查后,一个比较冷静的结论是:Skillhub 和 ClawHub 不能简单归为一类。

Skillhub 不只是一个 skills 安装工具。它的安装包会额外为 OpenClaw 自动安装并启用插件,这个插件会在 每次请求构建 prompt

前,通过 before_prompt_build + prependContext 注入一段策略文本,引导 agent 在 skills 的搜索、安装、更新场景中优先使用

Skillhub。它更接近一种持久化 prompt / policy injection,会持续影响 agent 的默认决策路径,也会带来额外 token 开销。

而我审到的 clawhub npm CLI(例如 npx clawhub@latest install sonoscli)更像一个普通的 registry / CLI:负责搜索、下载

zip、解压到本地 ./skills、写 lockfile 和 origin 信息。目前没有发现它会安装 OpenClaw 插件、修改 prompt build、或做类似

Skillhub 的全局注入。

所以问题不在于“skill store”这个概念本身,而在于实现方式是否透明、是否最小化、是否默认越权影响 agent 行为。

一个正常的 skill store 完全可以只是显式工具;但如果它会自动接管宿主并持续改写 prompt,那就已经不是单纯的安装器了。Show More

Mar 13, 2026, 6:58 AM View on X

2 Replies

1 Retweets

11 Likes

3,410 Views ![Image 3: Orange AI](https://www.bestblogs.dev/en/tweets?sourceid=a56f64) Orange AI @oran_ge

One Sentence Summary

A static review reveals Skillhub's persistent prompt injection behavior, while ClawHub functions merely as a standard CLI installation tool.

Summary

The author conducted a static code review of two plugins, Skillhub and ClawHub, revealing their fundamental differences: Skillhub is more than just a skill installer; it leverages the OpenClaw plugin mechanism to inject policy text (Policy Injection) before each prompt build, thereby guiding the agent's decision path and increasing token overhead. In contrast, ClawHub operates as a standard npm-style CLI tool, solely responsible for file search, download, and extraction. The author uses this comparison to emphasize that AI skill stores should prioritize transparency in their implementation, avoiding any default, unauthorized influence on agent behavior.

AI Score

83

Influence Score 4

Published At Today

Language

Chinese

Tags

Skillhub

ClawHub

OpenClaw

Prompt Injection

AI Agent HomeArticlesPodcastsVideosTweets

In-depth Comparative Analysis of Skillhub and ClawHub Plu... ===============

查看原文 → 發佈: 2026-03-13 14:58:50 收錄: 2026-03-13 18:00:33

🤖 問 AI

針對這篇文章提問,AI 會根據文章內容回答。按 Ctrl+Enter 送出。