← Back to Skills Marketplace
Nanobot Overstory Bridge
by
austindixson
· GitHub ↗
· v1.1.0
399
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install nanobot-overstory-bridge
Description
Seamless bidirectional bridge between nanobot (Ollama Mistral orchestrator) and overstory (Claude Code agent swarm). Routes tasks through the OverClaw gatewa...
Usage Guidance
What to consider before installing:
- This skill contains multiple scripts that read/write files in your home/workspace (MEMORY.md, ~/.nanobot/config.json, UI settings, session_bridge.db) and can discover and execute Python scripts from the skills directory. That means agents routed through this bridge could read local config files and run local code.
- The registry metadata claims no required env vars, but the code expects several (OVERSTORY_BIN, NANOBOT_* paths). That mismatch is a red flag — verify and explicitly set safe paths before use.
- If you keep secrets (API keys, tokens) in workspace files or ~/.nanobot/config.json or in MEMORY.md, consider them at risk. Avoid storing credentials in those files or run the bridge in an isolated environment.
- Before installing: review the implementation of exec_skill / any code that launches subprocesses (not fully shown in the truncated file) to confirm whether scripts are executed safely (sandboxed, path-checked) or run arbitrary commands.
- Mitigations: run this bridge inside a sandboxed VM or container, restrict NANOBOT_WORKSPACE and NANOBOT_SKILLS_DIR to a controlled directory with limited contents, do not expose credentials in the workspace, and restrict OVERSTORY_BIN to a trusted binary. Prefer installing only if you trust the overstory agents and the skill author (this package lists author 'ghost' and no homepage/source — lack of provenance increases risk).
- Additional information that would change this assessment: a trustworthy source/homepage and clear provenance; a registry manifest that declares required env vars and permissions; or confirmation that exec_skill implements strict sandboxing/safety checks. If exec_skill is safe and the runtime is properly sandboxed, this would lower concern; if exec_skill runs arbitrary subprocesses with untrusted input, the risk would be higher.
Capability Analysis
Type: OpenClaw Skill
Name: nanobot-overstory-bridge
Version: 1.1.0
The skill provides powerful capabilities, including executing arbitrary Python scripts and external CLI commands (`overstory`) via `subprocess.run` in `scripts/gateway_tools.py` and `scripts/overstory_client.py`. This creates a significant Remote Code Execution (RCE) vulnerability if an AI agent can be prompted to invoke these functions with malicious arguments. Additionally, the ability for agents to write arbitrary content to `MEMORY.md` (via `scripts/memory_sync.py` and `scripts/gateway_tools.py`) presents a prompt injection vulnerability against other agents that consume this shared memory. While these are critical vulnerabilities, there is no clear evidence of intentional malicious behavior like data exfiltration to external servers or backdoor installation.
Capability Assessment
Purpose & Capability
The skill's name/description (a bridge between nanobot and overstory) is consistent with the included Python modules (task routing, session mapping, memory sync, an overstory CLI wrapper and gateway tooling). However the registry metadata claims no required env vars or config paths while the SKILL.md and the code expect environment variables and local resources (OVERSTORY_BIN, NANOBOT_GATEWAY_URL, workspace paths, etc.). That mismatch between declared requirements and actual runtime needs is an incoherence to be aware of.
Instruction Scope
The SKILL.md and code instruct the agent to read and write workspace files (MEMORY.md, .overclaw UI settings, .overstory/gateway-context.md), scan skills directories and skill metadata, read possible user config files (~/.nanobot/config.json), and (via gateway_tools/find_skill_script + exec path) discover and execute arbitrary scripts in the skills directory. Those actions go beyond simple message routing and give downstream agents the ability to inspect local configs and run local scripts — a significant scope expansion that could be abused to access secrets or execute arbitrary code.
Install Mechanism
No remote install/downloads are present (instruction-only install spec). The package contains Python scripts only; there are no brew/npm downloads or extraction-from-URL steps. Risk from install mechanism itself is low. Note: the code will run on the host and perform filesystem and subprocess actions when invoked.
Credentials
Although the registry lists no required environment variables, the code relies on several environment variables (NANOBOT_GATEWAY_URL, NANOBOT_WORKSPACE, NANOBOT_SKILLS_DIR, OVERSTORY_BIN, SESSION_BRIDGE_DB, NANOBOT_MEMORY_PATH, etc.). The code reads home/workspace config files (like ~/.nanobot/config.json) and MEMORY.md which may contain sensitive data. The skill does not request cloud API keys etc., but it does access local config files and can execute other skill scripts — that access is broad relative to a simple routing bridge and could expose secrets or allow lateral actions.
Persistence & Privilege
The skill is not force-included (always:false). It permits autonomous invocation (default behavior). It writes/updates local files under the workspace (UI settings, gateway-context.md, MEMORY.md entries) and creates project folders and a SQLite DB for session mappings; these behaviors are expected for a bridge but do give it persistent local state and the ability to alter workspace files. Combined with the ability to execute scripts in the skills dir, this persistence increases the blast radius if the skill or invoked agents are untrusted.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install nanobot-overstory-bridge - After installation, invoke the skill by name or use
/nanobot-overstory-bridge - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.1.0
- Introduced OverClaw Bridge as a seamless bidirectional connector between nanobot and overstory, routing all tasks via the OverClaw gateway (port 18800).
- Added modular components: Python CLI wrapper (overstory_client), task classification/router, persistent session bridge with SQLite mapping, and robust bidirectional memory sync.
- Enables task intake, agent coordination, status checks, inter-agent mail, and memory operations from both Python and CLI interfaces.
- New task-to-capability mapping automates agent selection for research, social, coding, review, and more.
- Clear separation of responsibilities between nanobot orchestration and overstory subagent lifecycle and coordination.
- Updated environment variables, requirements, and integration flow documentation for straightforward deployment and integration.
Metadata
Frequently Asked Questions
What is Nanobot Overstory Bridge?
Seamless bidirectional bridge between nanobot (Ollama Mistral orchestrator) and overstory (Claude Code agent swarm). Routes tasks through the OverClaw gatewa... It is an AI Agent Skill for Claude Code / OpenClaw, with 399 downloads so far.
How do I install Nanobot Overstory Bridge?
Run "/install nanobot-overstory-bridge" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Nanobot Overstory Bridge free?
Yes, Nanobot Overstory Bridge is completely free (open-source). You can download, install and use it at no cost.
Which platforms does Nanobot Overstory Bridge support?
Nanobot Overstory Bridge is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Nanobot Overstory Bridge?
It is built and maintained by austindixson (@austindixson); the current version is v1.1.0.
More Skills