← Back to Skills Marketplace
380
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install vault-client
Description
Hashicorp Vault client for OpenClaw agents. Read and write secrets from a Vault server without raw curl commands or hardcoded tokens. Use when reading API ke...
Usage Guidance
This skill appears to be a legitimate Vault client and is coherent with its description, but it stores tokens and cached secret values unencrypted under ~/.openclaw (vault.json and vault-cache.json) and will append a startup block to AGENTS.md during setup. Before installing: (1) ensure you trust the skill source; (2) use least-privileged or short-lived Vault tokens (AppRole or limited policies), not a root/admin token; (3) restrict file permissions on ~/.openclaw (chmod 600) and consider not enabling caching if you don't want secrets on disk; (4) keep tls.verify=true unless you must disable it for internal use; and (5) if you want higher assurance, provide the complete vault.js file (the supplied snippet was truncated) or a source checksum so the implementation can be fully audited — absence of the file tail reduces confidence.
Capability Analysis
Type: OpenClaw Skill
Name: vault-client
Version: 1.0.0
The skill is classified as suspicious due to two main reasons: 1) The `scripts/vault.js` file's `cmdSetup` function appends a block of text containing executable commands to `~/.openclaw/workspace/AGENTS.md`. While the current content is benign documentation, this capability to modify a core agent configuration file outside its own directory is a significant vulnerability that could be exploited for prompt injection or arbitrary command execution if the appended content were malicious. 2) The `vaultRequest` function allows disabling TLS certificate verification (`rejectUnauthorized: cfg.tls?.verify !== false`), which is a security weakness that could expose communications to Man-in-the-Middle attacks. There is no evidence of intentional malicious behavior like data exfiltration to unauthorized endpoints or backdoors.
Capability Assessment
Purpose & Capability
The skill name/description match the included code: vault.js implements get/put/list/token-info/token-renew/check/setup and uses the Vault HTTP API. There are no unrelated network endpoints, unrelated required binaries, or extraneous credentials requested.
Instruction Scope
SKILL.md tells the agent to run the included node script for setup/check/get/put/etc. The script only communicates with the configured Vault address and reads/writes files under ~/.openclaw. The setup step also appends a startup block to AGENTS.md and writes ~/.openclaw/vault.json and ~/.openclaw/vault-cache.json — this is within the declared scope but is persistent filesystem modification the user should be aware of. The documentation contains examples (e.g., reading the Kubernetes service account token) that are examples only — they are not executed by the script unless the user follows them.
Install Mechanism
No install spec or external downloads. The code uses only Node.js stdlib and no npm packages. There is no remote code fetch or archive extraction in the provided files.
Credentials
The skill declares no required environment variables and does not attempt to read unrelated system credentials. However, it stores Vault credentials (token) and secrets in plaintext JSON files under ~/.openclaw and caches secret values in ~/.openclaw/vault-cache.json. That persistent storage of sensitive material is expected for a CLI but is sensitive and should be considered when granting permissions.
Persistence & Privilege
The script writes configuration and cache files under ~/.openclaw and appends to AGENTS.md during setup. It is not marked always:true and does not modify other skills' configuration. Persistent writes are limited to the user's home directory as described.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install vault-client - After installation, invoke the skill by name or use
/vault-client - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release. Clean Vault secret access for OpenClaw agents — no curl, no hardcoded tokens. Commands: check, get, put, list, token-info, token-renew, setup. Session-level caching, AGENTS.md auto-scaffold, zero npm deps.
Metadata
Frequently Asked Questions
What is Vault Client?
Hashicorp Vault client for OpenClaw agents. Read and write secrets from a Vault server without raw curl commands or hardcoded tokens. Use when reading API ke... It is an AI Agent Skill for Claude Code / OpenClaw, with 380 downloads so far.
How do I install Vault Client?
Run "/install vault-client" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Vault Client free?
Yes, Vault Client is completely free (open-source). You can download, install and use it at no cost.
Which platforms does Vault Client support?
Vault Client is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Vault Client?
It is built and maintained by jbushman (@jbushman); the current version is v1.0.0.
More Skills