← Back to Skills Marketplace
OpenClaw Config Ops
by
AstralWave
· GitHub ↗
· v1.0.0
· MIT-0
95
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install openclaw-config-ops
Description
Safe OpenClaw gateway configuration operations. Use when reading, analyzing, or modifying openclaw.json. Enforces schema validation + official documentation...
Usage Guidance
This skill appears to implement a reasonable, conservative process for editing OpenClaw gateway config, but there are a few red flags to consider before installing or running it:
- Mismatch in declared vs actual requirements: the registry metadata claims no required config paths, yet the instructions read/write ~/.openclaw/openclaw.json and create backups/logs under ~/.openclaw. Confirm you are comfortable giving an agent filesystem and CLI access to that path.
- Unknown provenance: no homepage and an opaque owner ID. Prefer skills from known authors or with source links; ask the publisher for a repo or documentation before granting access.
- Sensitive data risk: gateway config files often include tokens, keys, or provider settings. Treat backups and logs produced by the skill as sensitive and verify their storage/retention policy.
- Exec usage: the skill may call the local openclaw CLI and fall back to executing Python for JSON edits; ensure the openclaw binary on your system is trusted and that executing commands is acceptable in your environment.
Recommended actions:
- Request the skill author to update registry metadata to declare required config paths (e.g., ~/.openclaw/openclaw.json) and any CLI dependencies.
- Inspect a copy of openclaw.json yourself and remove or redact secrets before allowing automated changes, or run the skill in a sandboxed environment with limited file access.
- Require user-invocation (do not grant broad autonomous invocation) until you verify the skill's source and behavior.
If the author provides a public repository or the registry metadata is corrected to declare the config paths and CLI dependency, my confidence that the skill is coherent would increase and the rating could move to benign.
Capability Analysis
Type: OpenClaw Skill
Name: openclaw-config-ops
Version: 1.0.0
The skill bundle provides a structured and safety-oriented framework for managing OpenClaw gateway configurations (openclaw.json). It mandates schema validation, documentation verification, user confirmation, and automated backups (via 'cp' in SKILL.md) before any changes are applied. No indicators of data exfiltration, unauthorized execution, or malicious prompt injection were found; the use of shell commands is limited to standard administrative tasks like backups and config validation.
Capability Assessment
Purpose & Capability
The SKILL.md describes tools and steps you'd expect for safe editing of openclaw.json (schema lookups, doc verification, backups, config.patch/apply, validation). However the package metadata declares no required config paths even though the instructions explicitly read/write ~/.openclaw/openclaw.json and write backups/logs. This is an inconsistency between claimed requirements and actual behavior.
Instruction Scope
Instructions stay on-topic: schema lookup, doc verification (qmd__query, web_fetch, fallback to exec help), explicit Mode A/Mode B flows, mandatory confirmation, backup-before-change, apply/verify/log. The skill instructs executing local commands (cp, openclaw CLI, Python JSON edit when needed) and performing web fetches for docs — all expected for a config-management skill. Note: these operations access and persist local config and logs which may contain secrets.
Install Mechanism
Instruction-only skill with no install spec and no code files. This minimizes install-time risk because nothing is downloaded or written by an installer step.
Credentials
Metadata lists no required environment variables or config paths, but SKILL.md prescribes reading and writing files under ~/.openclaw (openclaw.json, backups, logs) and invoking the openclaw CLI. The skill therefore requires filesystem and CLI access not declared in the registry metadata; that discrepancy is a proportionality and transparency issue. Also, openclaw.json may contain secrets/configuration that you should treat as sensitive.
Persistence & Privilege
always:false and user-invocable:true (normal). The skill will create backups and append to a local log file in the user's home directory, which is appropriate for config tools. It does not request permanent platform-wide privileges in the metadata.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install openclaw-config-ops - After installation, invoke the skill by name or use
/openclaw-config-ops - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release: safe gateway config operations with schema validation, doc verification, backup, change logging, and two-mode workflow (analysis + modification)
Metadata
Frequently Asked Questions
What is OpenClaw Config Ops?
Safe OpenClaw gateway configuration operations. Use when reading, analyzing, or modifying openclaw.json. Enforces schema validation + official documentation... It is an AI Agent Skill for Claude Code / OpenClaw, with 95 downloads so far.
How do I install OpenClaw Config Ops?
Run "/install openclaw-config-ops" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is OpenClaw Config Ops free?
Yes, OpenClaw Config Ops is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does OpenClaw Config Ops support?
OpenClaw Config Ops is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created OpenClaw Config Ops?
It is built and maintained by AstralWave (@astralwaveorg); the current version is v1.0.0.
More Skills