← Back to Skills Marketplace
260
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install teleport-tbot-bootstrap
Description
Bootstrap a persistent Teleport Machine ID (tbot) setup on macOS using LaunchAgent and tbot configure identity. Trigger when asked to set up, automate, or va...
Usage Guidance
This skill appears to do what it says: it will create ~/.openclaw/workspace/tbot, write tbot config/state and identity files, place a LaunchAgent plist in ~/Library/LaunchAgents, and start the agent. Before installing: (1) verify tbot and tsh are official Teleport binaries and come from a trusted source, (2) be prepared to provide the bot onboarding token or registration secret and understand those values and the produced identity files are sensitive (do not commit them to source control), (3) review the included script and plist contents to confirm file paths and labels meet your policy, and (4) if you do not want a persistent background process, do not load the LaunchAgent or remove it after testing. If you need higher assurance, run the script in a controlled test account first and rotate the onboarding token after setup.
Capability Analysis
Type: OpenClaw Skill
Name: teleport-tbot-bootstrap
Version: 1.0.0
The skill bundle automates the setup of a Teleport Machine ID (tbot) on macOS to provide persistent infrastructure access for an agent. It uses a shell script (scripts/bootstrap_tbot_launchagent.sh) to configure tbot and install a standard macOS LaunchAgent for persistence within the user's session, which is consistent with the stated goal of maintaining a refreshed Teleport identity.
Capability Assessment
Purpose & Capability
Name/description, SKILL.md, and the included script all focus on bootstrapping a persistent Teleport Machine ID (tbot) on macOS via a user LaunchAgent. Required binaries (tbot, tsh) and inputs (proxy, token or registration secret) align with that purpose; there are no unrelated binaries, services, or credentials requested.
Instruction Scope
Instructions and the script perform the expected operations: create ~/.openclaw/workspace/tbot and state dirs, run 'tbot configure identity' with provided token/registration-secret, write a LaunchAgent plist to ~/Library/LaunchAgents, bootstrap it, and run a tsh smoke test. This stays within the stated scope. Important note: the workflow writes tbot config/state and identity files to disk (and may embed or use onboarding tokens) — these are sensitive artifacts and the SKILL.md correctly warns about treating them as secrets.
Install Mechanism
No install spec is present (instruction-only with a helper script). Nothing is downloaded from remote URLs or installed automatically; the script expects tbot and tsh to already be present. This is low-install-risk and consistent with the skill's goal.
Credentials
No environment variables or external credentials are declared by the registry metadata. The script requires a proxy address and either a token or registration secret provided at runtime — these are necessary for Teleport onboarding. Because the token/registration-secret are sensitive, the user should be aware they will be used during configuration and their values (or derived identity files) will be written to local files.
Persistence & Privilege
The skill intentionally creates and loads a user LaunchAgent under ~/Library/LaunchAgents to persist tbot. It does not request system/root (LaunchDaemon) installation, does not modify other skills or system-wide agent settings, and 'always' is not set. This persistence level is consistent with the stated purpose.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install teleport-tbot-bootstrap - After installation, invoke the skill by name or use
/teleport-tbot-bootstrap - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release of teleport-tbot-bootstrap
- Automates setup of persistent Teleport Machine ID (tbot) on macOS using LaunchAgent and `tbot configure identity`
- Guides collection of required inputs: proxy address, onboarding token, bot roles, and output directory
- Installs and manages user-level LaunchAgent for seamless tbot identity refresh at login
- Performs automatic config, first-run verification, and status reporting using tsh
- Emphasizes security best practices and provides known limitations for v1.0.0
- Complements the teleport-tsh-ssh skill for daily SSH and automation host access
- Supports bound keypair onboarding (with registration secret)
- Includes Teleport prereq YAML examples (Role/Bot/Token)
- Scopes node access via openclaw-allowed: "true" label pattern
- Includes host user auto-creation example (create_host_user_mode: insecure-drop)
Metadata
Frequently Asked Questions
What is Teleport Machine ID tbot Bootstrap (MacOS LaunchAgent)?
Bootstrap a persistent Teleport Machine ID (tbot) setup on macOS using LaunchAgent and tbot configure identity. Trigger when asked to set up, automate, or va... It is an AI Agent Skill for Claude Code / OpenClaw, with 260 downloads so far.
How do I install Teleport Machine ID tbot Bootstrap (MacOS LaunchAgent)?
Run "/install teleport-tbot-bootstrap" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Teleport Machine ID tbot Bootstrap (MacOS LaunchAgent) free?
Yes, Teleport Machine ID tbot Bootstrap (MacOS LaunchAgent) is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Teleport Machine ID tbot Bootstrap (MacOS LaunchAgent) support?
Teleport Machine ID tbot Bootstrap (MacOS LaunchAgent) is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Teleport Machine ID tbot Bootstrap (MacOS LaunchAgent)?
It is built and maintained by webvictim (@webvictim); the current version is v1.0.0.
More Skills