← Back to Skills Marketplace
271
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install remote-console
Description
通过手机/浏览器远程访问主机上的 Claude Code 或其他 CLI 工具。使用此技能来启动、停止和管理远程开发环境。 **必须触发此技能的场景**: - 用户提到"远程控制台"、"远程终端"、"远程开发"、"ttyd"、"SSH 隧道" - 用户想用手机/平板访问电脑上的开发环境 - 用户提到"移动端编程"...
Usage Guidance
This skill implements a remote console by starting ttyd and an SSH reverse tunnel and is functionally coherent with that goal — but review and act on these points before installing:
- Inspect config.json and remove any dangerous pre-defined commands (e.g., 'claude-bypass' or any command with flags that disable safety checks).
- The Python scripts invoke shells (bash -c or pwsh -Command) and may execute command strings from the config or from user-supplied -c values. Only allow trusted commands in the config and avoid passing untrusted text into the --command/-c or --path arguments.
- The skill will create background processes and may kill existing 'ttyd' or 'ssh' processes; don't run on critical production machines unless you accept that behavior.
- Ensure SSH key-based auth is configured for the target and that the remote port exposure is controlled (firewall/GatewayPorts). Prefer using an SSH alias that you trust.
- Consider running these scripts inside an isolated environment (container or VM) and binding ttyd to localhost with secure tunnel endpoints or adding authentication, to reduce exposure.
Given the mismatch between the SKILL.md advice ("do not concatenate shell commands") and the scripts' use of shell invocation, treat the implementation as unpolished and audit the code and config before use. If you want me to, I can summarize exactly where arbitrary commands can be injected and propose concrete hardening changes (e.g., avoid shell -c and use argv lists, whitelist commands, or sandbox the console).
Capability Analysis
Type: OpenClaw Skill
Name: remote-console
Version: 1.0.0
The skill facilitates remote shell access by deploying a ttyd web terminal and establishing an SSH reverse tunnel to a remote server. It explicitly promotes the use of a 'claude-bypass' command which utilizes the '--dangerously-skip-permissions' flag to remove security guardrails. While the functionality is documented for remote development, the inherent nature of creating reverse tunnels and bypassing security permissions in scripts like start_console.py and config.json poses a significant security risk for unauthorized remote control.
Capability Assessment
Purpose & Capability
Name/description (remote console via ttyd + SSH) align with included scripts (start/stop/check/validate) and config.json. The commands list includes entries for running Claude/other CLIs which is expected. However config.json defines a 'claude-bypass' command containing '--dangerously-skip-permissions' (explicitly labeled high-risk) and scripts allow running arbitrary commands from config or CLI flags — which is consistent with a remote console but increases risk and should be explicitly acceptable to the user.
Instruction Scope
SKILL.md instructs all operations go through the provided Python scripts and forbids shell concatenation, but the scripts often invoke shells (bash -c / pwsh -Command) and construct command strings that will be interpreted by the shell. start_console can run commands coming from config.json or user-supplied --command/-c, which may lead to arbitrary command execution. Scripts read and modify local state: they read config.json, enumerate and kill processes, start background processes and SSH tunnels. They do not appear to exfiltrate data to external endpoints, but the scope includes altering processes and opening network-accessible consoles — appropriate for the purpose but sensitive in practice.
Install Mechanism
No install spec; this is an instruction+script skill. Only dependency is psutil (listed in requirements and SKILL.md recommends pip install psutil). No downloaded remote payloads or unusual installers were found.
Credentials
The skill requests no environment variables or credentials, and relies on user-supplied config.json for server, ssh_alias, and project paths. That is proportionate to the stated purpose. Users must provide SSH host/user/alias and ensure keys are configured; the skill will call system ssh and relies on system ttyd. Because commands can be arbitrary (including 'claude-bypass'), confirm the entries in config.json before use.
Persistence & Privilege
always:false (default) and no modifications to other skills or global agent settings were observed. The scripts create background processes (ttyd, ssh) which is expected behavior for a remote console but not platform-level persistence.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install remote-console - After installation, invoke the skill by name or use
/remote-console - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
remote-console 1.0.0 初始版本发布
- 实现通过手机/浏览器远程访问主机 Claude Code 或 CLI 工具,支持项目管理及命令自定义
- 强制所有操作通过 Python 脚本(禁止直接拼接 Shell 命令)以增强安全性
- 提供一键启动、停止、状态检查、配置验证等常用管理命令
- 详细说明配置文件内容及常见预定义命令,包含安全警告提示
- 增加常见问题与解决方案、首次使用检查清单
Metadata
Frequently Asked Questions
What is ResmoteConsole?
通过手机/浏览器远程访问主机上的 Claude Code 或其他 CLI 工具。使用此技能来启动、停止和管理远程开发环境。 **必须触发此技能的场景**: - 用户提到"远程控制台"、"远程终端"、"远程开发"、"ttyd"、"SSH 隧道" - 用户想用手机/平板访问电脑上的开发环境 - 用户提到"移动端编程"... It is an AI Agent Skill for Claude Code / OpenClaw, with 271 downloads so far.
How do I install ResmoteConsole?
Run "/install remote-console" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is ResmoteConsole free?
Yes, ResmoteConsole is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does ResmoteConsole support?
ResmoteConsole is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created ResmoteConsole?
It is built and maintained by HaibaraAi (@haibaraaiaptx); the current version is v1.0.0.
More Skills