← Back to Skills Marketplace
224
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install workflow-cache
Description
Save up to 90% on Token costs. One agent explores, all agents benefit. Cloud-cached workflows with zero inference cost.
Usage Guidance
This skill largely does what it claims, but beware two risks: (1) it uploads intent text and the current URL to a remote endpoint (default https://api.workflowcache.dev). URLs can include sensitive tokens/parameters and intent text may contain secrets — those are NOT sanitized by the provided sanitizer. (2) it executes Lobster workflows returned by the cloud; although lobster.validate is called, a remote workflow can still cause unwanted browser actions or data exposure. Before installing: review and trust the cloud endpoint/operator; consider changing cloud_endpoint to a self-hosted server; disable auto_contribute if you don't want traces uploaded; set enabled=false to prevent automatic interception; audit lobster.validate behavior or test in a sandboxed environment; and inspect logs to confirm no secrets are being sent. If you lack the operational trust in the remote service or cannot review its server-side policies, treat this as high-risk for privacy-sensitive environments.
Capability Analysis
Type: OpenClaw Skill
Name: workflow-cache
Version: 1.0.3
The skill implements a crowdsourced automation registry that uploads user interaction traces and executes remote workflows from api.workflowcache.dev. While it includes a local PII sanitizer (dist/sanitizer.js) to strip sensitive data, the reliance on a blacklist-based regex approach is inherently fragile and prone to data leakage. Furthermore, the skill is configured to 'auto-contribute' successful session traces by default (skill.json), and the core mechanism of executing remotely-fetched logic (dist/interceptor.js) creates a significant attack surface for remote code execution if the central registry is compromised or manipulated, even though no explicit evidence of intentional malice was found in the current implementation.
Capability Assessment
Purpose & Capability
Name/description (cache and replay workflows) align with the code and skill.json: it intercepts intents, queries a cloud cache, replays Lobster workflows, and contributes traces back. The requested permissions (browser, lobster, sessions_history, network) are consistent with that purpose.
Instruction Scope
SKILL.md and interceptor.js direct the agent to send intent text, current URL, DOM skeleton hash, node_id and session_id to the cloud and to execute workflows returned by the cloud. The PII sanitizer is applied to action arguments but NOT to the intent text or the URL before sending a match/contribute request, so sensitive data (query params, tokens embedded in URLs, or intent content) can be uploaded. Also, replaying remote workflows means executing externally-supplied commands locally (trusted only to lobster.validate).
Install Mechanism
No install spec (instruction-only) and provided code is plain JS/TS with a single npm dependency (undici). Nothing is downloaded from an arbitrary URL. Build/install instructions are standard (npm install / tsc).
Credentials
The skill requests no environment variables or secrets, which is appropriate, but it does request access to session history, browser state, and network. Those permissions are proportionate to a workflow-cache concept, but the data sent to the cloud includes intent text and full URLs (not sanitized), which can contain sensitive information. The sanitizer covers action args and common PII patterns but may miss many secret forms (API tokens in URL query strings, non-standard field names, or structured sensitive content).
Persistence & Privilege
always is false and the skill registers normal hooks (on_intent_received, on_session_complete). Autonomous invocation and interception of every intent is expected for this functionality, but that increases blast radius because the skill runs on each intent and can call the network and lobster APIs.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install workflow-cache - After installation, invoke the skill by name or use
/workflow-cache - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.3
- Clarified the value proposition and core features in the documentation.
- Added detailed usage examples, token savings comparison, and workflow caching explanation.
- Provided configuration, installation, and security details for easier adoption.
- Emphasized privacy: All PII stays local; only generic workflow patterns are shared.
- Updated SKILL.md with improved structure, formatting, and new metadata.
Metadata
Frequently Asked Questions
What is Workflow Cache?
Save up to 90% on Token costs. One agent explores, all agents benefit. Cloud-cached workflows with zero inference cost. It is an AI Agent Skill for Claude Code / OpenClaw, with 224 downloads so far.
How do I install Workflow Cache?
Run "/install workflow-cache" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Workflow Cache free?
Yes, Workflow Cache is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Workflow Cache support?
Workflow Cache is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Workflow Cache?
It is built and maintained by ainclaw (@ainclaw); the current version is v1.0.3.
More Skills