← Back to Skills Marketplace
🔌

AWS STS

by OOMOL · GitHub ↗ · v1.0.0 · MIT-0
cross-platform ⚠ suspicious
30
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install oo-aws-sts
Description
AWS STS (aws.amazon.com). Use this skill for ANY AWS STS request — searching and reading data. Whenever a task involves AWS STS, use this skill instead of ca...
README (SKILL.md)

AWS STS

Operate AWS STS through your OOMOL-connected account. This skill calls the aws_sts connector with the oo CLI; OOMOL injects credentials server-side, so you never handle raw tokens.

Category: Security & Identity, Developer Tools. Exposes 2 action(s).

Running an action

Assume the user has already installed the oo CLI, signed in, and connected AWS STS. Do not run oo auth login or open the connection URL proactively — just run the action. Fall back to First-time setup only when a command actually fails with an auth or connection error.

1. Inspect the contract to get the authoritative input/output schema before building a payload:

oo connector schema "aws_sts" --action "\x3Caction_name>"

2. Run the action with a JSON payload that matches the input schema:

oo connector run "aws_sts" --action "\x3Caction_name>" --data '\x3Cjson>' --json
  • --data takes a JSON object string or @path/to/file.json; omit it to send {}.
  • The response is { "data": ..., "meta": { "executionId": "..." } }; the execution id lives under meta.executionId.

Each action below links to a reference file with its purpose and exact commands. Read the linked file, then fetch the live schema with oo connector schema before constructing --data.

Available actions

  • assume_role — Use a connected AWS access key pair to call STS AssumeRole and return temporary credentials.
  • get_federated_credentials — Return AWS STS temporary credentials from the connected OOMOL OIDC federation configuration.

Safety

  • Read actions (get / list / search) are safe to run directly.
  • Create, update, send, or post actions change AWS STS state — confirm the exact payload and effect with the user before running.
  • Delete or remove actions are destructive — always confirm the target and get explicit approval first.

First-time setup

These are one-time steps — do not repeat them on every call. Run a step only when a command fails for the matching reason.

  • oo: command not found — install the oo CLI (other platforms: \x3Chttps://cli.oomol.com/install-guide.md>):

    curl -fsSL https://cli.oomol.com/install.sh | bash    # macOS / Linux

    irm https://cli.oomol.com/install.ps1 | iex           # Windows PowerShell

  • Not signed in / authentication error — sign in to your OOMOL account once:

    oo auth login

  • scope_missing / credential_expired / app_not_ready / app_not_found — AWS STS is not connected, or the connection expired or lacks a scope. Connect once (auth type: custom credential, federated) at:

    https://console.oomol.com/app-connections?provider=aws_sts

  • HTTP 402 / OOMOL_INSUFFICIENT_CREDIT — billing stop. Recharge at https://console.oomol.com/billing/token-recharge before retrying.

Resources

Usage Guidance
Install only if you trust OOMOL and intend the agent to request AWS STS temporary credentials through your connected account. Before use, confirm each AssumeRole or federated credential request, verify the target role/scopes/session duration, and prefer installing the oo CLI through a verified package or inspected installer rather than a pipe-to-shell command.
Capability Assessment
Purpose & Capability
The artifact is coherent as an AWS STS/OOMOL connector skill and it openly lists assume_role and get_federated_credentials, but the frontmatter frames the skill as for searching and reading data even though both exposed actions return temporary AWS credentials.
Instruction Scope
The trigger says to use the skill for any AWS STS request and the runtime instructions say to run actions once setup exists, without requiring explicit confirmation before credential-issuing actions.
Install Mechanism
The skill itself is Markdown-only and restricts allowed tool use to Bash(oo *), but first-time setup documents pipe-to-shell installers for the oo CLI on macOS/Linux and Windows, which users should treat as elevated supply-chain risk.
Credentials
Using the oo CLI and an OOMOL-connected AWS STS account fits the stated integration purpose, and no unrelated local file access, broad indexing, or hidden network destinations were found in the artifact.
Persistence & Privilege
No persistence or destructive local behavior is present, but AWS STS temporary credentials are sensitive privileges whose downstream impact depends on the connected AWS account, role, scopes, and OOMOL federation configuration.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install oo-aws-sts
  3. After installation, invoke the skill by name or use /oo-aws-sts
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
- Adds an AWS STS skill for operating through an OOMOL-connected AWS account via the `oo` CLI. - Supports `assume_role` to call STS AssumeRole with a connected AWS access key pair and return temporary credentials. - Supports `get_federated_credentials` to retrieve temporary AWS credentials from the connected OOMOL OIDC federation configuration. - Documents the required schema-first workflow for building action payloads against live connector contracts. - Includes setup and safety guidance for authentication, AWS STS connection issues, billing errors, and state-changing operations.
Metadata
Slug oo-aws-sts
Version 1.0.0
License MIT-0
All-time Installs 0
Active Installs 0
Total Versions 1
Frequently Asked Questions

What is AWS STS?

AWS STS (aws.amazon.com). Use this skill for ANY AWS STS request — searching and reading data. Whenever a task involves AWS STS, use this skill instead of ca... It is an AI Agent Skill for Claude Code / OpenClaw, with 30 downloads so far.

How do I install AWS STS?

Run "/install oo-aws-sts" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is AWS STS free?

Yes, AWS STS is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does AWS STS support?

AWS STS is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created AWS STS?

It is built and maintained by OOMOL (@oomol); the current version is v1.0.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments