← Back to Skills Marketplace
98
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install touchbridge
Description
Authenticate sudo and macOS system prompts using your phone's biometric (Face ID/fingerprint) instead of typing passwords. Perfect for Mac Mini, Mac Studio,...
Usage Guidance
This skill appears to do what it says, but it modifies macOS authentication (PAM) and installs a privileged daemon — high-risk actions. Before installing: (1) inspect the installer and install scripts (scripts/install.sh) or build from source yourself; (2) verify the .pkg via checksum or signed release from the upstream repo; (3) do not run the simulator (--simulator) on a production machine (it auto-approves sudo); (4) be cautious with --web mode (exposed URLs can be clicked by unintended parties if network-accessible); (5) back up /etc/pam.d/ and test in a VM or disposable machine first; (6) prefer installing only after verifying the GitHub project, maintainer reputation, and that the installer creates expected backups and restores on uninstall. If you are not comfortable auditing install scripts or running privileged installers, avoid installing this skill.
Capability Analysis
Type: OpenClaw Skill
Name: touchbridge
Version: 1.0.0
The skill installs a custom PAM module and system daemon to modify macOS authentication, which are high-privilege operations. It includes a 'simulator' mode that allows passwordless sudo access, creating a significant security risk. The installation process involves downloading and executing an unverified binary package (.pkg) from GitHub (HMAKT99/UnTouchID), which could be used for persistence or privilege escalation, and the 'web' mode routes authentication through an external URL.
Capability Assessment
Purpose & Capability
Name, description, required binaries (touchbridged, touchbridge-test), and the provided GitHub .pkg URL align with the stated goal of enabling phone biometric auth for macOS prompts.
Instruction Scope
SKILL.md instructs running the daemon, installing a PAM module, checking daemon sockets, using a simulator (auto-approve), and a web mode that displays a URL for phone approval. These are within the feature scope, but they explicitly direct actions that affect system authentication and can broaden the attack surface (simulator auto-approves; web mode may expose an approval URL).
Install Mechanism
The install step is a downloadable .pkg hosted on GitHub Releases — a common distribution channel but still a remote installer executed on the machine. No checksum/signature is provided in the instructions; building from source is offered as an alternative. Download-and-run installers carry execution risk and should be verified before use.
Credentials
The skill requests no environment variables or unrelated credentials; the requested access (binaries and potential sudo use during install) is proportionate to the stated functionality.
Persistence & Privilege
The tool modifies system authentication (PAM), installs a daemon, and requires elevated privileges for installation/uninstallation — these are powerful capabilities. The skill is not 'always:true', but the required privileged changes mean an installer or scripts executed via the agent would have a high blast radius and must be trusted and audited.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install touchbridge - After installation, invoke the skill by name or use
/touchbridge - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
TouchBridge 1.0.0 – Authenticate macOS sudo and system prompts using your phone’s biometric instead of passwords.
- Enables Face ID, fingerprint, or watch approval from iPhone, Android, Apple Watch, Wear OS, or any browser for Mac authentication.
- Open source alternative to Apple’s Touch ID keyboard; no special hardware required.
- Multiple modes: test (auto-approve), browser/device approval, terminal interactive, and production BLE pairing.
- Secure fallback—if phone is unreachable, normal password entry is still available.
- Easy install via .pkg, supports pairing, testing, and device management commands.
- Never modifies pam config directly or compromises password safety.
Metadata
Frequently Asked Questions
What is TouchBridge — Phone Biometric Auth for Mac?
Authenticate sudo and macOS system prompts using your phone's biometric (Face ID/fingerprint) instead of typing passwords. Perfect for Mac Mini, Mac Studio,... It is an AI Agent Skill for Claude Code / OpenClaw, with 98 downloads so far.
How do I install TouchBridge — Phone Biometric Auth for Mac?
Run "/install touchbridge" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is TouchBridge — Phone Biometric Auth for Mac free?
Yes, TouchBridge — Phone Biometric Auth for Mac is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does TouchBridge — Phone Biometric Auth for Mac support?
TouchBridge — Phone Biometric Auth for Mac is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created TouchBridge — Phone Biometric Auth for Mac?
It is built and maintained by HMAKT99 (@hmakt99); the current version is v1.0.0.
More Skills