← Back to Skills Marketplace

TTPOS Agent

Name: TTPOS Agent
Author: bendaye

by BenDaye · GitHub ↗ · v1.0.1 · MIT-0

cross-platform ⚠ suspicious

241

Downloads

Stars

Active Installs

Versions

Install in OpenClaw

/install ttpos-agent

Description

通过 ttpos-agent API 查询 TTPOS 餐饮系统营业数据，生成报表。使用前必须访问 GET /api/v1/query/guide 获取数据查询指南。Use when: 今日营业额、订单统计、支付方式、菜品排行、会员分析、班次汇总、时段分析等。NOT for: 与 TTPOS 数据无关的问题。

Usage Guidance

This skill is internally consistent (it needs one API key to query TTPOS), but it will construct and execute arbitrary SQL on a remote service (https://claw.doge6.com) whose source/homepage is not provided. Before installing: 1) Verify the backend service and vendor (do you trust claw.doge6.com and the owner?) and prefer an official homepage or source. 2) Only supply an API key that is scoped with least privilege (read-only, limited companies/tenants, short TTL) — do not use high-privilege or cloud-wide credentials. 3) Expect the skill can query any tables the API permits; avoid putting sensitive cross-tenant keys into the skill. 4) Ask the vendor whether the API logs queries and who can access the results; rotate the key if unsure. 5) Consider testing in a non-production tenant first. If you need help verifying vendor origin or how to limit key scope, get that information before enabling the skill.

Capability Analysis

Type: OpenClaw Skill Name: ttpos-agent Version: 1.0.1 The skill implements a 'SQL-as-a-Service' pattern, instructing the AI agent to generate and execute raw SQL queries against a remote API endpoint (https://claw.doge6.com/api/v1/query/execute). While this aligns with the stated purpose of querying TTPOS catering data, providing an agent with raw SQL execution capabilities is a high-risk design that could be exploited via prompt injection to perform unauthorized data access. No evidence of intentional malice, such as exfiltrating local credentials or environment variables, was found in SKILL.md or _meta.json.

Capability Assessment

✓ Purpose & Capability

Name/description say it queries TTPOS via the ttpos-agent API and the only required secret is LIGHT_BRIDGE_API_KEY — this aligns with the stated purpose.

ℹ Instruction Scope

SKILL.md instructs the agent to fetch a guide, list companies, construct SQL based on that guide, and POST arbitrary SQL to /api/v1/query/execute. That is coherent for a query/reporting tool, but giving the skill ability to compose and execute arbitrary SQL remotely increases data-exfiltration risk; the guidance to suppress raw field names and translate enumerations reduces transparency/auditability of returned results.

✓ Install Mechanism

Instruction-only skill with no install step or downloaded code — minimal installation risk.

ℹ Credentials

Only LIGHT_BRIDGE_API_KEY is required (plus an optional LIGHT_BRIDGE_URL). That is proportionate to a remote-API query skill. However, the single API key grants whatever access the backend exposes; there is no indication of recommended least-privilege scopes or limits.

✓ Persistence & Privilege

always is false and the skill is user-invocable; it does not request persistent elevated privileges or modify other skills.

How to Use

Make sure OpenClaw is installed (local or Docker)
Run the install command in chat: /install ttpos-agent
After installation, invoke the skill by name or use /ttpos-agent
Provide required inputs per the skill's parameter spec and get structured output

Version History

v1.0.1

ttpos-agent 1.0.1 - No file changes detected in this version. - No modifications made to documentation or code. - Functionality and usage remain unchanged from previous version.

v1.0.0

- Initial release of ttpos-agent skill for querying TTPOS餐饮系统营业数据. - Requires setup of LIGHT_BRIDGE_API_KEY environment variable before use. - Enforces mandatory API guide retrieval before constructing queries to avoid errors. - Provides workflows and best practices for report generation, result summarization, and data translation. - Includes strict rules: always use recommended statistics tables, proper time fields, and display monetary values with correct currency and rounding. - Handles authentication failures with clear user instruction.

Metadata

Slug ttpos-agent

Version 1.0.1

License MIT-0

All-time Installs 0

Active Installs 0

Total Versions 2

Frequently Asked Questions

What is TTPOS Agent?

通过 ttpos-agent API 查询 TTPOS 餐饮系统营业数据，生成报表。使用前必须访问 GET /api/v1/query/guide 获取数据查询指南。Use when: 今日营业额、订单统计、支付方式、菜品排行、会员分析、班次汇总、时段分析等。NOT for: 与 TTPOS 数据无关的问题。 It is an AI Agent Skill for Claude Code / OpenClaw, with 241 downloads so far.

How do I install TTPOS Agent?

Run "/install ttpos-agent" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is TTPOS Agent free?

Yes, TTPOS Agent is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does TTPOS Agent support?

TTPOS Agent is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created TTPOS Agent?

It is built and maintained by BenDaye (@bendaye); the current version is v1.0.1.

More Skills