← Back to Skills Marketplace

Remotego

Name: Remotego
Author: topcheer

by topcheer · GitHub ↗ · v1.1.0 · MIT-0

macoslinux ⚠ suspicious

Downloads

Stars

Active Installs

Versions

Install in OpenClaw

/install remotego

Description

Expose any CLI tool as a public web terminal via tunnel. Mirror bash, vim, python, node, or any command in a browser for remote access and collaboration.

Usage Guidance

This tool will publish whatever command you run (including shells and editors) to a public URL — treat it like handing your machine keyboard to a stranger. Before installing/running: - Verify the npm package and GitHub repository (owner, stars, recent commits) and inspect the source if possible. - Prefer installing and running inside an isolated environment (container, VM) — do not run as root or on production machines. - Do not run commands that access secrets, private keys, or sensitive files while the tunnel is active. - Confirm how authentication works (the SKILL.md's "5 second" requirement is vague); ensure strong access controls and short-lived sessions. - Be aware the tool likely uses SSH/localhost.run and needs outbound SSH (port 22) — confirm your network/firewall policy. - Avoid using 'npx' to run uninspected packages on high-privilege hosts; if you must, inspect the package contents first. If these concerns are acceptable and you understand the risks, proceed cautiously; otherwise treat this skill as potentially unsafe for sensitive systems.

Capability Analysis

Type: OpenClaw Skill Name: remotego Version: 1.1.0 The remotego skill provides a mechanism to expose local CLI tools, including shells like bash or python, to the public internet via a tunnel (localhost.run) and a web-based terminal. While documented as a collaboration tool, this functionality is functionally equivalent to a reverse shell, providing a high-risk path for remote system access and execution if the AI agent is manipulated. It is classified as suspicious rather than malicious because the behavior is transparently documented as a utility rather than being hidden or intentionally deceptive. (Files: SKILL.md, @remotego/remotego)

Capability Assessment

ℹ Purpose & Capability

The skill claims to expose any CLI via a public tunnel and requires Node (reasonable). However the README explicitly references creating a tunnel via localhost.run and mentions SSH port 22; yet the metadata only lists 'node' as a required binary and does not declare 'ssh' or network access as a dependency. This omission is a mismatch (likely the tool uses SSH for the tunnel).

⚠ Instruction Scope

SKILL.md directs running arbitrary commands (bash, vim, python, node, etc.) and publishing them to a public URL. That is exactly the stated purpose but intrinsically dangerous: any sensitive files or credentials visible via the terminal can be exposed. The security model described is vague (a session UUID in the URL and 'clients must authenticate within 5 seconds') with no detail on authentication, authorization, or session lifetime. The instructions do not require or describe verifying the remote client or restricting input; this lack of access-control detail is concerning.

ℹ Install Mechanism

There is no install spec in the skill bundle (instruction-only). SKILL.md recommends 'npm install -g @remotego/remotego' or using 'npx', which will download and run code from the npm registry at runtime. That is a normal distribution method but does carry typical risks (you pull third-party code on demand). There is no guidance to verify the package origin/signature or to inspect code before running.

✓ Credentials

The skill declares no required environment variables or credentials, which is proportionate to a tunneling/terminal mirroring tool. However, it implicitly needs outbound network connectivity (and likely the ssh client) which is not called out. No unrelated credentials are requested.

✓ Persistence & Privilege

always:false and user-invocable:true — no persistent or forced presence. The skill does not request elevated platform privileges in its metadata.

How to Use

Make sure OpenClaw is installed (local or Docker)
Run the install command in chat: /install remotego
After installation, invoke the skill by name or use /remotego
Provide required inputs per the skill's parameter spec and get structured output

Version History

v1.1.0

Expose any CLI tool as a public web terminal via localhost.run tunnel

Metadata

Slug remotego

Version 1.1.0

License MIT-0

All-time Installs 0

Active Installs 0

Total Versions 1

Frequently Asked Questions

What is Remotego?

Expose any CLI tool as a public web terminal via tunnel. Mirror bash, vim, python, node, or any command in a browser for remote access and collaboration. It is an AI Agent Skill for Claude Code / OpenClaw, with 95 downloads so far.

How do I install Remotego?

Run "/install remotego" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Remotego free?

Yes, Remotego is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does Remotego support?

Remotego is cross-platform and runs anywhere OpenClaw / Claude Code is available (macos, linux).

Who created Remotego?

It is built and maintained by topcheer (@topcheer); the current version is v1.1.0.

More Skills