← Back to Skills Marketplace
172
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install openclaw-tokenapi-qiehuan-skills
Description
提供基于WebUI的快速AI模型切换工具,支持保存配置、一键切换、批量导入及API Key本地存储管理。
Usage Guidance
This package mostly does what a local model-switcher would do, but there are important mismatches and sensitive behaviors you should check before installing:
- Do not assume API keys stay only in the browser: the backend endpoints accept API keys and call secure storage/update routines. Inspect backend/secure_config.py to confirm whether API keys are encrypted at rest and how keys are written to ~/.openclaw/agents/.../auth-profiles.json.
- Review any restart scripts referenced (tools/restart_gateway.bat, gateway.cmd under ~/.openclaw). Those are executed by the service (subprocess calls and taskkill) and could run arbitrary commands if modified or replaced on disk.
- Confirm the server only binds to localhost in your deployment. If it binds to 0.0.0.0 or you run behind a proxy, CORS allow_origins=['*'] may expose endpoints that accept API keys to other hosts.
- If you will store real production API keys, test in an isolated environment first (VM/container) to verify where keys end up and whether they are protected.
- If you want to proceed, at minimum: (1) inspect secure_config.py to verify encryption, (2) restrict CORS or bind to 127.0.0.1 only, (3) review or replace restart scripts with safe versions, and (4) consider running with least privilege and backups of ~/.openclaw before first run.
Because of the documentation/code disagreement about API key handling and the ability to run system commands and write to sensitive config locations, treat this skill as suspicious until you verify those details.
Capability Analysis
Type: OpenClaw Skill
Name: openclaw-tokenapi-qiehuan-skills
Version: 0.1.0
The skill bundle functions as a management utility for OpenClaw but includes capabilities that significantly weaken the agent's security posture. Specifically, the 'Advanced Settings' feature allows for the programmatic disabling of the sandbox mode, shell execution restrictions, and execution security prompts (found in `backend/app/api/schemas.py` and `backend/app/core/config_manager.py`). Furthermore, the backend utilizes risky `subprocess` calls with `shell=True` to terminate processes and execute local scripts (`backend/app/core/gateway.py`), which could be leveraged for command injection if the agent is influenced by malicious prompts. While no evidence of intentional data exfiltration was found, the ability to toggle core security defenses makes this bundle highly sensitive.
Capability Assessment
Purpose & Capability
The skill's name/description (model switcher + local API Key memory) matches the included frontend and backend code. However SKILL.md states "API Key 仅保存在浏览器 localStorage(本地),不上传到任何服务器" and claims the backend only reads/writes openclaw.json (non-API parts). The backend code (routes and ConfigManager) clearly accepts API keys via API endpoints and calls secure_config.update/save and update_auth_profile — i.e., it persists API keys to disk/agent auth-profiles. That mismatch between README and implementation is a substantive inconsistency.
Instruction Scope
Runtime instructions tell the agent to start a local backend and modify ~/.openclaw/openclaw.json and auth-profiles files. The code implements endpoints that write configs and API keys, and a GatewayController that runs system commands (taskkill, spawn gateway.cmd, launch a restart .bat). Those actions go beyond simple in-memory switching: they modify user files and control local processes. That scope is plausible for a gateway manager, but it's sensitive and should be explicit to the user.
Install Mechanism
No remote download/install spec is included; the package is local code + static frontend and a pip requirements file. No external arbitrary URL downloads or extract operations were detected. Risk from installation is limited to installing Python dependencies and running the included code.
Credentials
The skill requests no declared environment variables, but it will accept and persist provider API keys via HTTP endpoints and write to user config paths (e.g., ~/.openclaw/openclaw.json and ~/.openclaw/agents/main/agent/auth-profiles.json). Whether keys are encrypted at rest depends on secure_config.py (not shown in the truncated listing). The backend also enables permissive CORS (allow_origins=['*']) which could expose the local API if the server is not strictly bound to localhost — this amplifies risk for stored credentials.
Persistence & Privilege
The skill is not always-enabled and is user-invocable. It does request ability to modify local OpenClaw files and to start/stop local processes via subprocess calls. Autonomous invocation (default allowed) combined with these capabilities increases potential impact, but autonomous invocation alone is not being flagged — it's the combination with file/credential writes and process control that is notable.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install openclaw-tokenapi-qiehuan-skills - After installation, invoke the skill by name or use
/openclaw-tokenapi-qiehuan-skills - Provide required inputs per the skill's parameter spec and get structured output
Version History
v0.1.0
OpenClaw Model Switcher 0.1.0 – Initial Release
- Provides a WebUI for managing and switching between AI model providers quickly.
- Features include a saved list of model configurations, one-click switching, batch import, provider filtering, and API key memory via browser localStorage.
- Built-in presets for Aliyun, Volcano Engine, Kimi, DeepSeek, OpenAI, MiniMax, and more.
- Triggered by natural language phrases such as "切换模型" or "切换到 deepseek 模型".
- FastAPI backend (on port 9131) with a Vue 3 frontend; also supports command-line quick switching via Python script.
- Ensures security by storing API keys only locally and never uploading them to servers.
Metadata
Frequently Asked Questions
What is Openclaw Tokenapi Qiehuan Skills?
提供基于WebUI的快速AI模型切换工具,支持保存配置、一键切换、批量导入及API Key本地存储管理。 It is an AI Agent Skill for Claude Code / OpenClaw, with 172 downloads so far.
How do I install Openclaw Tokenapi Qiehuan Skills?
Run "/install openclaw-tokenapi-qiehuan-skills" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Openclaw Tokenapi Qiehuan Skills free?
Yes, Openclaw Tokenapi Qiehuan Skills is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Openclaw Tokenapi Qiehuan Skills support?
Openclaw Tokenapi Qiehuan Skills is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Openclaw Tokenapi Qiehuan Skills?
It is built and maintained by 左小空空 (@peter-zx); the current version is v0.1.0.
More Skills