← Back to Skills Marketplace
404-unknow

Operator Skill

by 404-UNKNOW · GitHub ↗ · v0.1.0
cross-platform ⚠ suspicious
356
Downloads
0
Stars
2
Active Installs
1
Versions
Install in OpenClaw
/install operator-skill
Description
Orchestrates collaborative agent sessions with secure, fault-tolerant CRDT persistence and instant crash-proof state recovery.
Usage Guidance
Do not install this skill until the author clarifies and fixes several inconsistencies. Specifically ask for: (1) a corrected package.json that matches imports (either change import to the declared package or update dependencies to include 'loro-crdt'), (2) explanation of package-lock contents (why unrelated dependencies are present), (3) included build artifact (dist/index.js) or a clear build/install instruction, and (4) explicit declaration of the dependency on agent-comm-skill (or remove the relative import and verify signatures locally with a known Ed25519 library). Also review the source of the agent-comm-skill if signature verification remains delegated — it will have the ability to inspect/validate payloads and could expand the skill's effective privilege. If you proceed, run the skill in a sandboxed environment, limit file write permissions to an isolated folder, and avoid granting broad host access until the above issues are resolved.
Capability Analysis
Type: OpenClaw Skill Name: operator-skill Version: 0.1.0 The skill bundle exhibits several high-risk indicators, most notably a dependency mismatch and a critical Path Traversal vulnerability. The 'index.ts' file imports 'loro-crdt', but 'package.json' and 'package-lock.json' specify 'loro' (v1.0.6), a package that atypically depends on 'express' and 'body-parser', suggesting a potential typosquatting or supply chain attack. Furthermore, the 'team.sync' and 'team.load' actions in 'index.ts' use the 'sessionId' parameter directly in 'path.join' without sanitization, allowing an attacker to read or append data to arbitrary files on the system (e.g., via '../../' sequences). While these behaviors are highly risky, they are classified as suspicious rather than malicious because the provided code logic follows the stated purpose of CRDT persistence and the harmful intent of the external 'loro' dependency cannot be confirmed without its source code.
Capability Assessment
Purpose & Capability
The skill claims to provide Ed25519-verified CRDT persistence and crash-proof recovery — the TypeScript implementation does perform snapshot + append-only update handling as described. However, the code imports 'loro-crdt' while package.json declares dependency 'loro' (mismatch), and package-lock.json contains a large, unrelated dependency tree. These dependency/package inconsistencies are not proportionate to the described purpose and indicate the package metadata may be incorrect or copied from another project.
Instruction Scope
SKILL.md promises built-in Ed25519 verification, but the implementation delegates verification to agentComm('message.verify') imported from a relative path '../agent-comm-skill/index.ts'. That external dependency is not declared anywhere (plugin.json/metadata do not reference it). Relying on another skill via a relative import is unusual, undocumented in the SKILL.md, and could alter or expand runtime behavior (or simply fail at runtime if the referenced file isn't present).
Install Mechanism
There is no install spec (instruction-only / code included), which is lower risk in itself, but the repository contains TypeScript source with package.json pointing to an output 'dist/index.js' that is not included in the package files list. package-lock.json is large and contains many packages unrelated to package.json's declared dependency list. The missing build artifact (dist) plus an inconsistent lockfile suggests the published bundle is incomplete or mismatched with its metadata, which could cause broken installs or hide unreviewed dependencies.
Credentials
The skill does not request environment variables or external credentials and writes only to data/sessions in the current working directory. That file access is consistent with its purpose. However, because signature verification is delegated to another skill (agent-comm-skill) via an imported function, the effective environment/scope at runtime may include whatever that other skill does — this expands the trusted surface and should be verified.
Persistence & Privilege
The skill is not always-enabled and uses only file read/write operations under data/sessions per plugin.json. It does not request elevated platform privileges in the metadata. This is reasonable for a persistence/orchestration skill.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install operator-skill
  3. After installation, invoke the skill by name or use /operator-skill
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v0.1.0
operator-skill 0.1.0 - Initial release of the Skill Operator for collaborative agent orchestration. - Persistent session management using Loro-CRDT and append-only logs. - Includes actions to create, sync, and load collaborative sessions. - Supports secure incremental updates with Ed25519 signature verification. - Provides crash-proof state recovery with Snapshot + Write-Ahead Logging (WAL). - Delivers high performance and fault-tolerance for collaborative workflows.
Metadata
Slug operator-skill
Version 0.1.0
License
All-time Installs 2
Active Installs 2
Total Versions 1
Frequently Asked Questions

What is Operator Skill?

Orchestrates collaborative agent sessions with secure, fault-tolerant CRDT persistence and instant crash-proof state recovery. It is an AI Agent Skill for Claude Code / OpenClaw, with 356 downloads so far.

How do I install Operator Skill?

Run "/install operator-skill" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Operator Skill free?

Yes, Operator Skill is completely free (open-source). You can download, install and use it at no cost.

Which platforms does Operator Skill support?

Operator Skill is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Operator Skill?

It is built and maintained by 404-UNKNOW (@404-unknow); the current version is v0.1.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments