← Back to Skills Marketplace
phenixstar

Openclaw Whisperer

by PhenixStar · GitHub ↗ · v1.2.0
cross-platform ⚠ suspicious
1553
Downloads
0
Stars
5
Active Installs
1
Versions
Install in OpenClaw
/install openclaw-whisperer
Description
Comprehensive diagnostic, error-fixing, and skill recommendation tool for OpenClaw
Usage Guidance
This repository looks like a legitimate diagnostic/repair tool, but several red flags mean you should not run it blindly: 1) SECURITY.md claims 'no network calls', yet fix-recipes and references include docker pull, wget (GitHub release), npm installs and openclaw skill installs — ask the author to clarify and provide an explicit network policy. 2) The package does not declare any required environment variables, but many recipes reference sensitive tokens (OPENAI_API_KEY, GATEWAY_TOKEN, Slack/Discord tokens). Verify exactly when/where the tool will read or transmit secrets and avoid providing credentials until reviewed. 3) Several fix recipes run destructive system commands (kill -9, systemctl start, cp/mv, chmod) and shell pipelines (lsof | xargs kill) — inspect how the Python code executes recipe commands (does it use shell=True?) and test in a safe environment first. 4) The self-updater and runtime downloads increase risk; prefer running the code in an isolated/sandboxed environment or container, review/upstream hashes for downloaded artifacts, and disable automatic updates until you trust the source. If you plan to use auto-fix features, back up your openclaw.json and relevant data first and enable interactive confirmation for risky recipes. If possible, request the maintainer to: (a) document exact network endpoints used, (b) declare required env vars in the manifest, and (c) remove or explicitly mark any remote-download steps so you can vet them before execution.
Capability Analysis
Type: OpenClaw Skill Name: openclaw-whisperer Version: 1.2.0 The skill bundle is classified as suspicious due to high-risk capabilities, specifically the execution of `npm install -g` commands without explicit user confirmation when the `--auto-fix` flag is used. While the stated purpose is to install core OpenClaw components (`pnpm`, `openclaw` CLI), this action (defined as `safe_auto: true` in `data/fix-recipes.json`) downloads and executes code from external registries, posing a significant supply chain risk. The `SECURITY.md` documentation's examples for `safe_auto: true` (info messages, config reads, version checks) do not align with the actual execution of software installations, indicating a potential misrepresentation of safety. Other powerful commands like `kill -9`, `chmod`, and `docker rm` are appropriately marked `safe_auto: false` (requiring confirmation), but the breadth of system-level operations still presents a high-risk profile for a diagnostic tool.
Capability Assessment
Purpose & Capability
Name/description (diagnostic + auto-fix + recommendations) align with included Python scripts and data files. Requiring python3 and installing small Python deps is proportionate. However, the skill's docs and fix-recipes reference provider API keys, gateway tokens, channel tokens and installation of third-party binaries (docker pull, wget, npm install -g, openclaw skills install). The registry metadata declares no required env vars, which is inconsistent with the many references to sensitive environment variables and external integrations in the code and docs.
Instruction Scope
SKILL.md and the included references/fix-recipes instruct the agent to run commands that modify configs, kill processes, start system services (systemctl start docker), perform network operations (docker pull, wget from GitHub releases, npm install -g), and run interactive setup flows. Those actions are within a diagnostic tool's remit but expand the scope to system-level changes and network I/O. The SECURITY.md asserts 'No network calls to external services' but fix recipes clearly include network operations — a direct contradiction.
Install Mechanism
The declared install step is a simple pip install of common Python libs (click, rich, requests, beautifulsoup4) which is low risk. However, the package includes a self-updater and recipes that download binaries or images (wget, docker pull, npm installs). Those runtime downloads are not part of the declared install spec and raise risk because they pull code/assets from external sources at runtime.
Credentials
The skill declares no required env vars, yet the data and references list many sensitive variables (OPENAI_API_KEY, ANTHROPIC_API_KEY, GATEWAY_TOKEN, channel tokens, Slack/Discord tokens, etc.) and fix recipes read/modify openclaw.json, .env and may template or inject values. That mismatch is suspicious: the skill appears designed to operate with secrets and external integrations but does not declare or request those explicitly. The user must understand where secrets are read/written and whether the skill transmits them.
Persistence & Privilege
always:false (good). The skill includes a self-updater, fix logging/backups, and can run commands that change system state (install packages, start/stop services). Autonomous invocation is allowed (disable-model-invocation:false) which is normal, but combined with the ability to perform network downloads and system commands it increases blast radius. The skill does not request to be always-enabled or to modify other skills' configs directly in the manifest, but it does include instructions (openclaw skills install ...) that could change the agent's skill set at runtime.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install openclaw-whisperer
  3. After installation, invoke the skill by name or use /openclaw-whisperer
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.2.0
Security hardening: safe_auto fixes, shlex.split, SECURITY.md
Metadata
Slug openclaw-whisperer
Version 1.2.0
License
All-time Installs 7
Active Installs 5
Total Versions 1
Frequently Asked Questions

What is Openclaw Whisperer?

Comprehensive diagnostic, error-fixing, and skill recommendation tool for OpenClaw. It is an AI Agent Skill for Claude Code / OpenClaw, with 1553 downloads so far.

How do I install Openclaw Whisperer?

Run "/install openclaw-whisperer" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Openclaw Whisperer free?

Yes, Openclaw Whisperer is completely free (open-source). You can download, install and use it at no cost.

Which platforms does Openclaw Whisperer support?

Openclaw Whisperer is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Openclaw Whisperer?

It is built and maintained by PhenixStar (@phenixstar); the current version is v1.2.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463556 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259610 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200551 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191226 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190235 · by oswalpalash

💬 Comments