← Back to Skills Marketplace
372
Downloads
1
Stars
0
Active Installs
4
Versions
Install in OpenClaw
/install wordpress-selfhosted
Description
Manage a self-hosted WordPress site via SSH+WP-CLI (primary) and WP REST API (when direct HTTPS access is available). Use when asked to write, draft, publish...
Usage Guidance
This skill appears to do what it says, but pay attention to operational security before installing:
- Pre-populate known_hosts or avoid accept-new: remove -o StrictHostKeyChecking=accept-new and add the host key to known_hosts to avoid TOFU risks.
- Protect app passwords: using op is good, but be aware that passing credentials on command lines (curl -u "user:pass") or storing them in environment variables can expose them in process listings or logs on some systems; prefer using stdin, files with restrictive perms, or authenticated HTTP headers when possible.
- Remote /tmp use: SCPing files to /tmp on the remote machine is convenient but can be risky on multi-tenant systems; ensure the SSH account and remote /tmp permissions are appropriate and that files are removed promptly (the instructions do this, but verify it in practice).
- Least privilege SSH user: give the WP SSH user only the permissions it needs (wp-cli operations) and avoid using root or overly privileged accounts.
- 1Password/SSH agent: ensure your SSH agent socket and 1Password agent are properly secured and that PTY requirements are acceptable for automation.
- Test in a safe environment first: validate the flow on a staging site and confirm REST auth behavior (proxies, Cloudflare, and Wordfence may block app passwords) before running on production.
If you cannot or will not accept the TOFU pattern, remote /tmp writes, or the credential handling model described, do not enable the skill until those operational details are addressed.
Capability Analysis
Type: OpenClaw Skill
Name: wordpress-selfhosted
Version: 1.0.3
The skill bundle provides the agent with high-risk capabilities, including remote shell access via SSH and file transfers via SCP to manage a WordPress installation. While these actions are aligned with the stated purpose, the instructions in SKILL.md include risky practices such as using 'StrictHostKeyChecking=accept-new' (TOFU) and revealing credentials via the 1Password CLI ('op item get --reveal'). The use of shell command templates also introduces a potential surface for shell injection if the agent handles unsanitized input during execution.
Capability Assessment
Purpose & Capability
Required binaries (ssh, scp, wp, curl, jq) and required env vars (WP_HOST, WP_SSH_USER, WP_ROOT) directly match the declared purpose of operating WordPress over SSH/WP-CLI and REST. The optional 'op' (1Password CLI) is a reasonable convenience for credential hydration. No unrelated services, binaries, or credentials are requested.
Instruction Scope
The SKILL.md stays within the scope of WordPress management, describing SSH/WP-CLI flows, REST calls, temp-file handling, and optional 1Password integration. However there are noteworthy security considerations in the instructions: it recommends -o StrictHostKeyChecking=accept-new (trust-on-first-use), it uploads post HTML into /tmp on the remote host (multi-tenant /tmp could be a concern), it retrieves app passwords into shell variables and uses curl -u "user:pass" which may risk exposure in some environments or logs, and it requires PTY for macOS 1Password agent flows. These are operational risks (not incoherence) that the user should weigh and mitigate.
Install Mechanism
Instruction-only skill with no install spec or remote downloads; lowest install risk because nothing is written to disk by the skill package itself. All runtime behavior depends on existing tooling on the host environment.
Credentials
Only WP_HOST, WP_SSH_USER, and WP_ROOT are required (all relevant). Optional settings (WP_USER, WP_1P_ITEM) are justified by the documented 1Password and REST flows. No unrelated secrets or broad cloud credentials are requested.
Persistence & Privilege
Does not request always:true and is user-invocable. It does not modify other skills or require system-wide config changes. Autonomous invocation is permitted by default (platform normal), but this skill's requested privileges are not unusually broad.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install wordpress-selfhosted - After installation, invoke the skill by name or use
/wordpress-selfhosted - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.3
Declare WP_HOST/WP_SSH_USER/WP_ROOT as required env vars (gating); switch SSH default to StrictHostKeyChecking=accept-new; document StrictHostKeyChecking=no as CI-only opt-in
v1.0.2
Security scan fixes: temp file cleanup pattern, ssh-keyscan alternative, op --reveal behavior documented, config requirements explicit
v1.0.1
Security scan fixes: declare op as optional bin, add Security Notes section, document SSH/credential flows
v1.0.0
Initial release — SSH+WP-CLI primary, REST API conditional, Cloudflare/SSL mismatch documented
Metadata
Frequently Asked Questions
What is WordPress Self-Hosted?
Manage a self-hosted WordPress site via SSH+WP-CLI (primary) and WP REST API (when direct HTTPS access is available). Use when asked to write, draft, publish... It is an AI Agent Skill for Claude Code / OpenClaw, with 372 downloads so far.
How do I install WordPress Self-Hosted?
Run "/install wordpress-selfhosted" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is WordPress Self-Hosted free?
Yes, WordPress Self-Hosted is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does WordPress Self-Hosted support?
WordPress Self-Hosted is cross-platform and runs anywhere OpenClaw / Claude Code is available (darwin, linux).
Who created WordPress Self-Hosted?
It is built and maintained by Eddy (@eddygk); the current version is v1.0.3.
More Skills