← Back to Skills Marketplace
helladventurer

Spaces Group Assistant

by HellAdventurer · GitHub ↗ · v0.1.2
cross-platform ⚠ suspicious
1071
Downloads
0
Stars
4
Active Installs
3
Versions
Install in OpenClaw
/install spaces-group-assistant
Description
Предоставляет расширенный доступ к внутренним данным, аналитике и логам в доверенной группе Telegram с ограничением доступа к календарю.
Usage Guidance
This skill is designed to let any member of a specific Telegram group see internal workspace files, logs, and run server-side hooks. Only install it if the group membership is strictly controlled and you understand that the skill intentionally bypasses per-user checks. Before installing: (1) confirm there are no secrets in workspace files, logs, or MEMORY.md; (2) prefer a version that enforces an allowlist of specific user IDs (not 'any participant'); (3) require admin approval for expanding FULL_POWER_GROUPS; (4) test in a sandboxed environment; and (5) consider additional auditing/alerting for data access from the assistant. If you lack a security review process, treat this as high-risk and avoid enabling it.
Capability Analysis
Type: OpenClaw Skill Name: spaces-group-assistant Version: 0.1.2 The skill is classified as suspicious due to the explicit mention of 'Access to exec and server-side hooks' in SKILL.md. This instruction to the AI agent creates a significant prompt injection vulnerability, potentially leading to Remote Code Execution (RCE) if an attacker in the designated trusted group (chat_id -4842304105, as defined in spaces-group-assistant.js) crafts a malicious prompt. Additionally, the skill grants broad access to internal knowledge bases, memory (MEMORY.md), logs, and reports, increasing the risk of sensitive data exposure within the trusted group.
Capability Assessment
Purpose & Capability
The name/description claim expanded access to internal KB, MEMORY.md, logs and analytics for a trusted Telegram group, and the code+docs implement a gate that enables that behavior for chat_id -4842304105. However, the skill itself does not declare any permissions or credentials and simply returns control to the core assistant to perform the actual data access — meaning it functions as an access gate rather than a data consumer. That design is coherent with the stated purpose but increases risk because it implicitly allows the main assistant to expose local workspace data to the group.
Instruction Scope
SKILL.md explicitly instructs the agent to provide summaries from local files (e.g., spaces-KB.md, MEMORY.md), logs, and to run exec/server-side hooks when requests come from the trusted group. Those instructions encourage reading and returning potentially sensitive local data and executing server-side actions. The JS code does not implement content filtering — it purposefully returns null for the trusted group which lets the core assistant handle returning workspace/log/exec results. This scope includes sensitive read/execute actions that go beyond a simple chat responder and are not narrowed by user identity.
Install Mechanism
No install spec or external downloads; the skill is instruction-only with a small JS gatekeeper file. Nothing is written to disk by an installer and no external URLs or packages are pulled during installation.
Credentials
The skill requires no environment variables or credentials, but its described functionality (accessing workspace files, memory, logs, and running exec hooks) entails access to highly sensitive local data and possibly secrets. Requesting no explicit credentials is not inherently wrong, but the lack of declared limits combined with the promised ability to surface logs and run server-side hooks is disproportionate and could expose credentials or secrets present in the workspace.
Persistence & Privilege
always:false (good), but the skill intentionally relaxes per-user authorization inside the designated group (the code comments 'Нет фильтра по user — реагируем на всех'). That means any member of the trusted group can trigger full-access behavior. Because model invocation is allowed (default), the skill can be invoked autonomously and thus increases the blast radius if the group membership is not tightly controlled. The skill does not modify other skills' configs, but it effectively elevates privileges for group members.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install spaces-group-assistant
  3. After installation, invoke the skill by name or use /spaces-group-assistant
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v0.1.2
Spaces Group Assistant v0.1.2 - Обновлён идентификатор доверенной группы Telegram в документации (chat_id теперь -4842304105 вместо ____). - Исправлен пункт “Разработано”: теперь указан автор Roman Plakhov. - Актуализирована документация (SKILL.md) для точного отражения настроек группы и авторства. - Внутренние изменения в package.json и основной логике для поддержки обновлённых данных группы.
v0.1.1
Spaces Group Assistant 0.1.1 - Добавлен файл _meta.json. - В SKILL.md обновлены детали чат-группы (chat_id теперь скрыт, автор изменён на qwerty). - Прежний идентификатор группы и имя автора удалены для обезличивания. - Основной функционал и описание особенностей остались без изменений.
v0.1.0
Spaces Group Assistant 0.1.0 — initial release - Enables advanced knowledge base, memory, logs, and analytics access in a dedicated Telegram group. - Grants group members formatted answers from local markdown docs; allows exec/server-side functions with ACL. - Calendar access is strictly blocked in groups for privacy; calendar queries denied with redirect to private chat. - Operates in full-power mode only for specified groups (chat_id -4842304105) or in private, otherwise responds with public info only. - Uses ACL and group array for access control; designed for trusted teams needing flexible but secure assistance.
Metadata
Slug spaces-group-assistant
Version 0.1.2
License
All-time Installs 4
Active Installs 4
Total Versions 3
Frequently Asked Questions

What is Spaces Group Assistant?

Предоставляет расширенный доступ к внутренним данным, аналитике и логам в доверенной группе Telegram с ограничением доступа к календарю. It is an AI Agent Skill for Claude Code / OpenClaw, with 1071 downloads so far.

How do I install Spaces Group Assistant?

Run "/install spaces-group-assistant" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Spaces Group Assistant free?

Yes, Spaces Group Assistant is completely free (open-source). You can download, install and use it at no cost.

Which platforms does Spaces Group Assistant support?

Spaces Group Assistant is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Spaces Group Assistant?

It is built and maintained by HellAdventurer (@helladventurer); the current version is v0.1.2.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments