← Back to Skills Marketplace
gongcong

hi-light Ear Skill

by valo · GitHub ↗ · v1.0.1 · MIT-0
cross-platform ✓ Security Clean
301
Downloads
0
Stars
0
Active Installs
2
Versions
Install in OpenClaw
/install hi-light-openclaw
Description
以用户可执行的工作流方式安装、配置和排查 HiLight OpenClaw 插件。用户想把 OpenClaw 连接到 HiLight、安装 `@art_style666/hi-light` 插件、把 `channels["hi-light"]` 写入 OpenClaw 配置、更新 HiLight API Key...
README (SKILL.md)

HiLight For OpenClaw

中文说明

把这个 skill 当成 HiLight 插件的用户入口。第一次使用时,它应该把“收集 API Key、安装插件、写入 channels["hi-light"]、重启网关、确认结果”串成一个完整流程。

首次使用

如果用户要配置 HiLight,但没有提供 API Key,先向用户索取,再执行命令。

如果用户没有提供 WebSocket 地址,直接使用官方默认地址。除非用户明确要连自定义服务,否则不要强制追问 wsUrl

把 API Key 当成敏感信息处理,不要在回复里回显真实 token。

配置流程

  1. 需要精确的用户交互和命令样例时,先读 user-flow.md
  2. 标准安装执行 bash scripts/setup_hi_light.sh --api-key '\x3Ctoken>'
  3. 只有用户给了自定义 WebSocket 地址时,才追加 --ws-url '\x3Curl>'
  4. 如果用户只是更新凭证或覆盖已有配置,追加 --skip-install
  5. 如果用户先想看会改什么,先用 --dry-run
  6. 脚本完成后,说明哪些配置已写入,以及 gateway restart 是否成功。

操作规则

优先使用默认 WebSocket 地址,只有用户明确覆盖时才改。

优先使用 OpenClaw 自带的 pluginsconfig 命令,不要直接手改 ~/.openclaw/openclaw.json

要明确告诉用户:安装 skill 本身不会自动填入 API Key;真正的插件安装和配置发生在第一次调用 skill 时。

如果用户问“怎么用这个 skill”,给出具体句式,例如:

用 $hi-light-openclaw 帮我安装 HiLight,我的 API Key 是 xxx。

用 $hi-light-openclaw 帮我更新 HiLight API Key,继续使用默认 ws 地址。

English

Use this skill as the user-facing wrapper around the HiLight plugin. On first use, it should turn “collect API key, install plugin, write channels["hi-light"], restart the gateway, and confirm the result” into one setup flow.

First Run

If the user wants to set up HiLight and does not provide an API key, ask for it before running commands.

If the user does not provide a websocket URL, use the official default endpoint. Do not force the user to provide wsUrl unless they want a custom server.

Treat the API key as secret input. Never repeat the real token in your response.

Workflow

  1. Read user-flow.md if you need exact prompt patterns or command examples.
  2. Run bash scripts/setup_hi_light.sh --api-key '\x3Ctoken>' for standard setup.
  3. Add --ws-url '\x3Curl>' only when the user provides a custom websocket endpoint.
  4. Add --skip-install when the user only wants to rotate credentials or refresh the existing configuration.
  5. Use --dry-run first if the user asks what will change before applying it.
  6. After the script finishes, summarize what changed and whether the gateway restart succeeded.

Rules

Prefer the default websocket URL unless the user explicitly overrides it.

Use OpenClaw's own plugins and config commands instead of editing ~/.openclaw/openclaw.json directly.

Mention that installing the skill alone does not automatically populate the API key. The actual plugin installation and configuration happen on first use of the skill.

If the user asks how to use the skill, give concrete examples such as:

Use $hi-light-openclaw to install HiLight with my API key xxx.

Use $hi-light-openclaw to update my HiLight API key and keep the default websocket URL.

Resources

中文:使用 scripts/setup_hi_light.sh 完成安装和配置,使用 user-flow.md 查看首次使用流程、更新流程和安全规则。

English: Use scripts/setup_hi_light.sh for installation and configuration, and use user-flow.md for first-run prompts, update flow, and safe handling rules.

Usage Guidance
Plain-language checklist before installing: 1) Confirm you trust the plugin author (@art_style666/hi-light) because the openclaw CLI will download and install that plugin. 2) Be aware the script will store your HiLight API key into your OpenClaw config (channels["hi-light"].authToken); verify where OpenClaw keeps that file and that its file permissions are appropriate. 3) The skill bundle did not declare required binaries, but the script requires the 'openclaw' and 'node' commands — ensure those are installed. 4) Use --dry-run first to preview changes and --skip-install if you only want to rotate credentials. 5) The default allowFrom value is ['*'] (potentially permissive); if you need tighter restrictions, provide a more restrictive --allow-from value. 6) If you want a non-default websocket endpoint, provide --ws-url; otherwise the script uses the default wss://open.guangfan.com/.... 7) If you have concerns about where the API key will be stored or who can read it, do not proceed until you inspect OpenClaw's config storage and permissions. 8) If anything looks unexpected in the plugin source or the openclaw install process, stop and audit the plugin before continuing.
Capability Analysis
Type: OpenClaw Skill Name: hi-light-openclaw Version: 1.0.1 The skill bundle is a legitimate installer and configuration tool for the HiLight OpenClaw plugin. It uses the official 'openclaw' CLI to manage plugins and settings, and the 'setup_hi_light.sh' script follows the stated purpose without any hidden malicious logic. Notably, the 'SKILL.md' and 'user-flow.md' files include defensive instructions for the AI agent to treat API keys as sensitive and avoid echoing them in responses.
Capability Assessment
Purpose & Capability
Name/description match the actual behavior: the skill collects an API key, installs @art_style666/hi-light via the openclaw CLI, writes channels["hi-light"] entries, validates config, and restarts the gateway. Small inconsistency: the registry metadata lists no required binaries, but the included script requires the 'openclaw' and 'node' commands (it checks for them at runtime). This is expected for the purpose but the manifest should declare those binaries.
Instruction Scope
SKILL.md and user-flow.md provide a narrowly scoped, user-facing workflow (ask for API key, optionally ask wsUrl, allow dry-run). The runtime script only uses OpenClaw CLI and node and updates OpenClaw config keys; it does not attempt to read arbitrary user files or external secrets. It does, however, persist the API key into OpenClaw configuration (channels["hi-light"].authToken), which is within the stated purpose but is sensitive and should be made explicit to the user (the docs do call it out).
Install Mechanism
No install spec in the skill bundle; the script uses the user's existing openclaw CLI to fetch and install the plugin. No external arbitrary downloads or archive extraction are included in the skill itself. The actual plugin install is delegated to openclaw plugins install (expected).
Credentials
The skill does not request environment variables or credentials in its manifest. The script requires the user to provide an API key as a CLI argument and then writes it into OpenClaw's config. That is proportionate to the stated purpose, but it means a secret will be stored in configuration; users should confirm where OpenClaw stores config and whether that file is protected. Also note the default 'allowFrom' is ['*'] which is permissive and may have security implications depending on what allowFrom controls.
Persistence & Privilege
The skill is not always-enabled and is user-invocable. It does not request system-wide persistent privileges beyond using the openclaw CLI to update the OpenClaw configuration and restarting the gateway, which are consistent with the advertised setup task.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install hi-light-openclaw
  3. After installation, invoke the skill by name or use /hi-light-openclaw
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.1
- Switched the setup workflow from `scripts/install_hi_light.sh` to a new unified script: `scripts/setup_hi_light.sh` - Added a dedicated user flow guide: `references/user-flow.md` - Removed older troubleshooting/config references and installation scripts - Skill documentation now emphasizes user-facing step-by-step configuration, secure API Key handling, default websocket usage, and provides sample usage prompts in both Chinese and English - Clarifies that actual plugin install/config happens only on first use, not upon skill installation
v1.0.0
Version 1.0.0 of hi-light-openclaw - Initial release of the skill for integrating the HiLight channel plugin with OpenClaw. - Supports installing the published HiLight plugin or a local checkout, editing configuration, and restarting the gateway. - Includes troubleshooting guidance for websocket, authentication, and configuration errors. - Provides operating rules for safe configuration handling and best practices. - Relies on helper scripts and documentation for installation and config management.
Metadata
Slug hi-light-openclaw
Version 1.0.1
License MIT-0
All-time Installs 0
Active Installs 0
Total Versions 2
Frequently Asked Questions

What is hi-light Ear Skill?

以用户可执行的工作流方式安装、配置和排查 HiLight OpenClaw 插件。用户想把 OpenClaw 连接到 HiLight、安装 `@art_style666/hi-light` 插件、把 `channels["hi-light"]` 写入 OpenClaw 配置、更新 HiLight API Key... It is an AI Agent Skill for Claude Code / OpenClaw, with 301 downloads so far.

How do I install hi-light Ear Skill?

Run "/install hi-light-openclaw" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is hi-light Ear Skill free?

Yes, hi-light Ear Skill is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does hi-light Ear Skill support?

hi-light Ear Skill is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created hi-light Ear Skill?

It is built and maintained by valo (@gongcong); the current version is v1.0.1.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463556 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259610 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200551 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191226 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190235 · by oswalpalash

💬 Comments