← Back to Skills Marketplace
djc00p

OpenClaw Docker Setup

by Deonte Cooper · GitHub ↗ · v1.0.4 · MIT-0
linux ⚠ suspicious
174
Downloads
0
Stars
0
Active Installs
5
Versions
Install in OpenClaw
/install openclaw-docker-linux
Description
Run OpenClaw inside Docker on Linux with Tailscale remote access. Complete setup guide covering installation, configuration, and critical gotchas. Trigger ph...
Usage Guidance
This skill appears to be a legitimate Docker + Tailscale setup for OpenClaw, but several issues warrant caution: - Metadata mismatch: the registry lists no required env vars, but the included files and SKILL.md clearly expect ANTHROPIC_API_KEY or OPENAI_API_KEY and an OPENCLAW_GATEWAY_TOKEN. Confirm which env vars you must supply before installing. - Inspect the included scripts before running. references/docker-setup.sh reads your .env and ~/.openclaw config and prints access URLs. The tailscale command path echoes the full gateway token (not masked) — that can leak the token to your terminal or logs. Consider editing the script to never print full tokens. - Be careful with optional volume mounts. The docker-compose template shows optional mounts for ~/.config/gh, /home/linuxbrew, and other host paths. Mounting those will expose host credentials and tokens to the container — only enable mounts you absolutely trust and understand. - Tailscale and package instructions: the skill targets Linux/Ubuntu but sometimes suggests 'brew install tailscale' — use apt on Ubuntu and verify commands before running. The tailscale package URLs used are the official pkgs.tailscale.com domain, which is expected, but double-check commands you copy/paste. - Image provenance: the compose references ghcr.io/openclaw/openclaw:latest. If you do not trust that image, build from source or pin a specific trusted digest instead of :latest. If you want this skill to be safer: ask the author (or check the homepage/repo) to fix metadata (declare required envs), avoid printing secrets in scripts, and provide a versioned/pinned image and clearer notes about which host mounts are strictly needed. If you proceed, don't expose port 18789 to the public internet, avoid mounting host credential directories, and rotate tokens if they are ever printed to shared logs.
Capability Analysis
Type: OpenClaw Skill Name: openclaw-docker-linux Version: 1.0.4 The skill bundle provides legitimate documentation and scripts for setting up OpenClaw in a Docker environment on Linux. It includes a management script (docker-setup.sh) and detailed configuration templates (docker-config.md) that follow standard practices for containerized applications. While the setup involves elevated privileges (sudo) and remote access (Tailscale), these are clearly documented with appropriate security warnings regarding credential mounting and network exposure. No evidence of malicious intent, data exfiltration, or obfuscation was found.
Capability Tags
crypto
Capability Assessment
Purpose & Capability
The skill's name/description (running OpenClaw in Docker with Tailscale) matches the content: docker-compose templates, management script, and Tailscale instructions. Required binaries (docker, docker-compose) are appropriate. The docker image is pulled from ghcr.io which fits the stated purpose.
Instruction Scope
Runtime instructions and the included management script read local config files (~/.openclaw/openclaw.json, .env), run privileged operations (docker-compose, tailscale up), and suggest optionally mounting host credential directories (e.g., ~/.config/gh, /home/linuxbrew). The script sometimes prints or outputs the full gateway token (unmasked in the tailscale path), which is sensitive. These actions are related to the stated purpose but involve sensitive host data and token exposure; that scope should be explicitly documented and minimized.
Install Mechanism
No install spec (instruction-only) — lowest filesystem risk. The only external downloads are standard package steps (apt install docker.io, apt install tailscale via pkgs.tailscale.com). This is reasonable. Minor inconsistency: the script/docs sometimes suggest 'brew install tailscale' even though the skill is Linux-targeted, which is sloppy but not malicious.
Credentials
There is an incoherence between registry metadata (which lists no required env vars) and the SKILL.md/compose templates which expect ANTHROPIC_API_KEY and OPENCLAW_GATEWAY_TOKEN (and hint at OPENAI_API_KEY). The docker-compose template exposes many optional provider tokens (GITHUB_TOKEN, TELEGRAM_BOT_TOKEN, GEMINI_API_KEY, etc.) — reasonable for a multi-provider app but increases the blast radius if you mount credential directories into the container. The script reads .env and will warn/mask some tokens but also prints the full token in certain outputs (tailscale access), which risks leaking secrets to local logs or terminal history.
Persistence & Privilege
The skill does not request always:true, does not persistently modify other skills or system-wide agent settings, and is user-invocable. It requires running Docker/Tailscale and may need sudo for package installation or group changes, but that is expected for the described function.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install openclaw-docker-linux
  3. After installation, invoke the skill by name or use /openclaw-docker-linux
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.4
Add security considerations section addressing elevated privilege, Tailscale access, and credential mount risks
v1.0.3
Fix: replace bare code blocks with ```text for consistent rendering
v1.0.2
Security: comment out sensitive host volume mounts by default (gh config, npm-global, linuxbrew) — users must explicitly uncomment only what they need
v1.0.1
Fix vetter findings: add env var declarations to metadata, add homepage, warn about optional host mounts exposing credentials, mask gateway token in show_info output
v1.0.0
Initial release — guide for running OpenClaw in Docker on Linux with Tailscale HTTPS access via MagicDNS
Metadata
Slug openclaw-docker-linux
Version 1.0.4
License MIT-0
All-time Installs 0
Active Installs 0
Total Versions 5
Frequently Asked Questions

What is OpenClaw Docker Setup?

Run OpenClaw inside Docker on Linux with Tailscale remote access. Complete setup guide covering installation, configuration, and critical gotchas. Trigger ph... It is an AI Agent Skill for Claude Code / OpenClaw, with 174 downloads so far.

How do I install OpenClaw Docker Setup?

Run "/install openclaw-docker-linux" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is OpenClaw Docker Setup free?

Yes, OpenClaw Docker Setup is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does OpenClaw Docker Setup support?

OpenClaw Docker Setup is cross-platform and runs anywhere OpenClaw / Claude Code is available (linux).

Who created OpenClaw Docker Setup?

It is built and maintained by Deonte Cooper (@djc00p); the current version is v1.0.4.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments