← Back to Skills Marketplace
OpenClaw Config Reference
by
Daniel Samer
· GitHub ↗
· v1.0.0
652
Downloads
2
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install openclaw-config-reference
Description
OpenClaw configuration reference for openclaw.json. Use when asked about config, configuration, gateway settings, channel setup, agent config, session manage...
Usage Guidance
This skill is documentation only and appears coherent for its stated purpose. It contains many explicit commands and file paths that, if executed, will modify local configuration, start/stop services, or reveal/store secrets. Before installing or allowing autonomous use: (1) treat it as read-only documentation — do not grant the skill permission to run shell commands or access your filesystem unless you explicitly trust and inspect each action; (2) don't enable features that let chat users modify config (e.g., commands.config: true or open DM policy) without strict access controls; (3) keep secrets out of openclaw.json and use ~/.openclaw/.env with strict permissions (chmod 600); (4) be cautious about enabling remote browser CDP URLs, webhooks, or binding the gateway to LAN without proper auth; and (5) verify the skill/source if you need higher assurance (homepage and owner are listed but source repository is not provided). If you want the agent to perform any of the documented commands, explicitly review and approve each command first.
Capability Analysis
Type: OpenClaw Skill
Name: openclaw-config-reference
Version: 1.0.0
This skill bundle, consisting entirely of documentation files, is classified as suspicious due to its detailed description of numerous powerful and security-sensitive configurations and commands. While the documentation explicitly warns against misconfigurations (e.g., `commands.config: true`, `tools.elevated.enabled: true` with open DM policy, `gateway.bind: "lan"` without authentication, hardcoding secrets), these capabilities (such as arbitrary code execution via `tools.exec.security: "allow"`, broad file system access, shell environment inheritance via `env.shellEnv: true`, and direct prompt injection via webhook data in `references/session.md`) represent significant attack surfaces and potential vulnerabilities if an AI agent is maliciously prompted or the system is misconfigured. The documentation itself does not contain malicious code or instructions, but it outlines the means for severe system compromise.
Capability Assessment
Purpose & Capability
Name/description (OpenClaw config reference) match the content: the SKILL.md and reference files are documentation for configuring the Gateway, channels, agents, sandbox, models, hooks, etc. There are no unrelated env vars, binaries, or install steps required.
Instruction Scope
The instructions include concrete shell commands and file paths (e.g., cp ~/.openclaw/openclaw.json, openclaw doctor, pkill -SIGUSR1 -f gateway, systemctl start docker) and describe handling of secrets (~/.openclaw/.env). This is expected for a config reference, but it means the skill's text can instruct an agent or a user to run potentially impactful local commands if followed literally.
Install Mechanism
No install spec and no code files; the skill is instruction-only so it doesn't download or install third-party code. This is the lowest-risk install profile.
Credentials
The skill does not request any environment variables or credentials, but the documentation references storing API keys and gateway tokens in ~/.openclaw/.env and discusses model provider keys. Those references are appropriate for a config reference, but they point to sensitive data locations the user should protect.
Persistence & Privilege
always is false, no install, and no behavior that modifies other skills or system-wide agent settings is declared. The skill does not request permanent privileges.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install openclaw-config-reference - After installation, invoke the skill by name or use
/openclaw-config-reference - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release. Complete openclaw.json configuration reference with danger warnings, recovery procedures, and full schema docs for all sections: gateway, agents, channels, session, sandbox, cron, hooks, tools, browser, skills, models, and environment. Includes troubleshooting guide for common pitfalls.
Metadata
Frequently Asked Questions
What is OpenClaw Config Reference?
OpenClaw configuration reference for openclaw.json. Use when asked about config, configuration, gateway settings, channel setup, agent config, session manage... It is an AI Agent Skill for Claude Code / OpenClaw, with 652 downloads so far.
How do I install OpenClaw Config Reference?
Run "/install openclaw-config-reference" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is OpenClaw Config Reference free?
Yes, OpenClaw Config Reference is completely free (open-source). You can download, install and use it at no cost.
Which platforms does OpenClaw Config Reference support?
OpenClaw Config Reference is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created OpenClaw Config Reference?
It is built and maintained by Daniel Samer (@yixn); the current version is v1.0.0.
More Skills