← Back to Skills Marketplace
Pilot Keychain
by
Calin Teodor
· GitHub ↗
· v1.0.0
· MIT-0
76
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install pilot-keychain
Description
Secure credential exchange with auto-expiry for Pilot Protocol agents. Use this skill when: 1. You need to share API keys, tokens, or credentials securely be...
Usage Guidance
This skill generally does what it says (shares credentials via pilotctl) but the instructions leave gaps that could leak secrets. Before installing or using it: 1) Confirm pilotctl/pilot-protocol come from a trusted source and verify whether pilotctl encrypts files in transit and at rest. 2) Ensure jq and openssl are available (they are used but not declared as required binaries in metadata). 3) Hardening recommendations: use mktemp for temporary files, set restrictive permissions (umask/chmod 600) on any credential files, avoid writing secrets to /tmp if other users exist on the host, avoid printing secrets to stdout (do not expose to shells/logs), and add reliable cleanup/traps to remove files on failure. 4) Test in an isolated environment first. If you need strong guarantees about non-persistence, prefer an approach that streams secrets through an authenticated, encrypted channel instead of writing them to disk.
Capability Analysis
Type: OpenClaw Skill
Name: pilot-keychain
Version: 1.0.0
The skill facilitates credential exchange using the Pilot Protocol and the pilotctl utility. While its behavior aligns with its stated purpose, it contains security vulnerabilities, such as writing sensitive credentials to /tmp and potential shell injection risks in the 'Receive' and 'Cleanup' commands where jq output is passed directly to xargs and date without sanitization. These flaws could be exploited by a malicious peer sending crafted filenames or metadata, though no evidence of intentional malice by the author is present.
Capability Assessment
Purpose & Capability
The skill claims 'secure credential exchange with end-to-end encryption' and declares pilotctl as a required binary. The SKILL.md, however, also depends on jq and openssl (listed in the human-readable Dependencies) but those are not declared in the registry metadata requires.bins. Writing credential JSON files to /tmp and ~/.pilot/keychain in plaintext is inconsistent with a strong 'secure' posture unless pilotctl guarantees transit and at-rest encryption — the README does not document that. Overall capability matches the stated purpose but dependency and storage details are under-specified.
Instruction Scope
Runtime instructions create plaintext credential files in /tmp and under ~/.pilot/keychain/sent|received, then cat and output credential values to stdout. This behavior increases the chance of local exposure (other users reading /tmp, shell history or process capture, logs). There is no guidance to restrict file permissions (chmod 600), use secure temporary files (mktemp), or avoid printing secrets. Cleanup uses rm but no secure deletion or guaranteed cleanup on failure. The instructions stay within the skill's domain (pilotctl and local keychain), but they include operations that can leak secrets and should be hardened.
Install Mechanism
Instruction-only skill with no install spec — low install risk. Nothing is downloaded or written by an installer according to the metadata.
Credentials
No environment variables or external credentials are requested. The skill needs pilotctl/pilot-protocol (reasonable for its purpose) and also uses jq and openssl; those are typical CLI dependencies but should be declared explicitly.
Persistence & Privilege
The skill does not request always:true, does not modify other skills or system-wide settings, and stores data only under ~/.pilot and /tmp. The presence of persistent files containing secrets increases local attack surface but does not request elevated platform privileges.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install pilot-keychain - After installation, invoke the skill by name or use
/pilot-keychain - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release
Metadata
Frequently Asked Questions
What is Pilot Keychain?
Secure credential exchange with auto-expiry for Pilot Protocol agents. Use this skill when: 1. You need to share API keys, tokens, or credentials securely be... It is an AI Agent Skill for Claude Code / OpenClaw, with 76 downloads so far.
How do I install Pilot Keychain?
Run "/install pilot-keychain" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Pilot Keychain free?
Yes, Pilot Keychain is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Pilot Keychain support?
Pilot Keychain is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Pilot Keychain?
It is built and maintained by Calin Teodor (@teoslayer); the current version is v1.0.0.
More Skills