← Back to Skills Marketplace
162
Downloads
1
Stars
1
Active Installs
1
Versions
Install in OpenClaw
/install micropython-skills
Description
Program and interact with embedded development boards (ESP32, ESP32-S3, ESP32-C3, ESP8266, NodeMCU, Raspberry Pi Pico, RP2040, STM32) through real-time REPL....
Usage Guidance
This skill appears to be what it claims (tools for MicroPython boards) but has two important caution points: (1) wifi_setup.py writes Wi‑Fi credentials and a WebREPL password to files on the device and prints the password in a RESULT JSON — that can expose secrets in logs or agent output. (2) firmware_flash.py performs full flash/erase operations which can permanently erase device files and brick devices if used incorrectly. Before installing or using: review the wifi_setup.py and firmware_flash.py source yourself; do not supply Wi‑Fi passwords unless you accept they will be stored on the device and may appear in output; never allow the agent to run flashing (--yes) or erase operations without explicit, informed user confirmation; back up boot.py/main.py before any write/flash; and test on non-critical hardware first. If you want, I can point out the exact lines where passwords are printed/written and propose safe edits (e.g., stop printing passwords, avoid writing plaintext boot.py, remove passwords from RESULT output).
Capability Analysis
Type: OpenClaw Skill
Name: micropython-skills
Version: 1.0.0
The bundle provides a comprehensive framework for MicroPython development, including scripts for device discovery (device_probe.py), firmware flashing (firmware_flash.py), and remote code execution (webrepl_exec.py). These tools require high-risk capabilities, such as executing shell commands on the host machine and downloading/writing firmware binaries from micropython.org. While the behavior is clearly aligned with the stated purpose and includes extensive safety documentation (safety.md) and structured output protocols, the inherent risks of automated hardware manipulation and host-side script execution categorize the bundle as suspicious according to the provided criteria.
Capability Assessment
Purpose & Capability
Name and description align with the included scripts and SKILL.md. Required binaries (python3, mpremote, esptool) are appropriate for probing devices, flashing firmware, and executing code. The presence of device_probe, firmware_flash, webrepl_exec and wifi_setup scripts is coherent with the stated capabilities.
Instruction Scope
The SKILL.md instructs the agent to run bundled scripts that modify device state (write files, update boot.py, enable WebREPL, erase/flash firmware). The wifi_setup flow requests user Wi‑Fi credentials (expected) but the WiFi setup code writes plaintext credentials to device files (boot.py and webrepl_cfg.py) and prints the webrepl password inside a RESULT JSON — this contradicts the skill's own safety guidance that passwords should not be saved or echoed. Firmware flashing and erase_flash behaviors are labeled 'Dangerous' in the references, which is appropriate, but the scripts must strictly require explicit user confirmation; ensure the agent never auto-uses --yes without an explicit user consent.
Install Mechanism
No install spec (instruction-only) reduces install-time risk. Firmware downloads in firmware_flash.py come from micropython.org (trusted), and scripts use standard Python stdlib and expected third-party tools. No untrusted or short‑URL downloads or arbitrary remote code hosting were found.
Credentials
The skill requests no environment variables or external credentials (good). However, it explicitly asks users for Wi‑Fi SSID/password and a WebREPL password and then persists and prints those secrets in device files and script output — this is disproportionate from a secrecy standpoint and risks accidental exfiltration via logs or agent output parsing.
Persistence & Privilege
The skill does not set always:true and does not require system-level credentials. It does modify device‑local persistent storage (writes boot.py, webrepl_cfg.py, backs up files, erases/flashes device). Those device-level persistent actions are expected for this domain but are high‑impact operations; they should always require explicit, unambiguous user confirmation before execution.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install micropython-skills - After installation, invoke the skill by name or use
/micropython-skills - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release of micropython-skills v1.0.0:
- Enables AI-driven MicroPython code generation and execution for a wide range of embedded boards (ESP32 series, ESP8266, RP2040, STM32, etc.).
- Includes scripts for device probing, firmware flashing, WiFi/WebREPL setup, code deployment, and board diagnostics.
- Structured system for safe hardware interaction: clearly defined “Safe”, “Cautious”, and “Dangerous” operation tiers with strong safety and confirmation rules.
- Modular sub-skill routing for sensors, actuators, networking, algorithms, and diagnostics.
- Requires Python 3, mpremote, and esptool; supports Linux, macOS, and Windows.
- Implements a standardized tagged output protocol for reliable parsing and automation.
Metadata
Frequently Asked Questions
What is MicroPython Skills?
Program and interact with embedded development boards (ESP32, ESP32-S3, ESP32-C3, ESP8266, NodeMCU, Raspberry Pi Pico, RP2040, STM32) through real-time REPL.... It is an AI Agent Skill for Claude Code / OpenClaw, with 162 downloads so far.
How do I install MicroPython Skills?
Run "/install micropython-skills" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is MicroPython Skills free?
Yes, MicroPython Skills is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does MicroPython Skills support?
MicroPython Skills is cross-platform and runs anywhere OpenClaw / Claude Code is available (linux, darwin, win32).
Who created MicroPython Skills?
It is built and maintained by 0x1abin (@0x1abin); the current version is v1.0.0.
More Skills