← Back to Skills Marketplace
130
Downloads
0
Stars
0
Active Installs
6
Versions
Install in OpenClaw
/install tophant-clawvault-operator
Description
Operate ClawVault services, configuration, vault presets, and scanning from OpenClaw
Usage Guidance
This skill appears coherent for operating a local ClawVault installation, but consider the following before installing:
- Prerequisites: confirm ClawVault was installed by the corresponding installer skill and that the installer's venv (the SKILL.md / SECURITY.md reference) exists as expected. The operator calls the 'claw_vault' module and relies on that installation.
- File reads: the 'scan-file' command will read any path you pass it. Do not scan sensitive files unless you intend to expose their contents to the skill's runtime environment.
- Process control: the skill runs subprocesses (pgrep, start via Python -m claw_vault, os.kill). Review platform policies if you need strict process isolation.
- Local-only network: the skill claims to only contact 127.0.0.1; verify that the dashboard binds to localhost if you need to avoid remote access.
- Review upstream packages: because the operator invokes the installed 'claw_vault' package, verify the integrity/source of that package (installed venv) to avoid running malicious code from upstream packages.
- If you require strong isolation, run this skill in a disposable VM/container or audit the code and the installed clawvault package first.
I have high confidence the package is internally consistent with its stated purpose. If you want, I can point out the exact lines that read/write the config, run pgrep/kill, or perform the local HTTP calls so you can review them yourself.
Capability Analysis
Type: OpenClaw Skill
Name: tophant-clawvault-operator
Version: 0.2.5
The tophant-clawvault-operator skill is a management tool for the ClawVault security service, providing commands to start/stop services, manage local YAML configurations, and scan text or files for sensitive data. The implementation in clawvault_ops.py uses standard Python libraries and subprocess calls to interact with the local claw_vault module and its configuration directory (~/.ClawVault/). All requested permissions (execute_command, read_files, write_files, network) are well-justified and restricted to local operations, with no evidence of data exfiltration, prompt injection, or malicious intent.
Capability Tags
Capability Assessment
Purpose & Capability
Name/description (operate ClawVault: start/stop/status, config, vault presets, scanning) align with the included Python tool and the requested permissions (execute_command, read_files, write_files, network). No unrelated secrets or cloud credentials are requested.
Instruction Scope
SKILL.md and clawvault_ops.py limit network access to local dashboard (127.0.0.1) and operate on ~/.ClawVault/ and files explicitly supplied to scan-file. This is expected for a local operator, but scan-file reads arbitrary user-supplied paths — granting read_files allows the skill to read any file you point it at. The SKILL.md contains examples showing prompt-injection strings (e.g., 'Ignore previous instructions...') as scan targets; this is probably illustrative rather than an attempt to manipulate the evaluator.
Install Mechanism
No install spec is provided (instruction-only install). Code is bundled with the skill (clawvault_ops.py) and expects ClawVault to be previously installed by the installer skill. No remote downloads or extracted archives are performed by the skill package itself.
Credentials
No environment variables or external credentials are required. Declared requirements (pyyaml, requests) are consistent with YAML parsing and HTTP calls to the local dashboard. The permissions requested (read/write under ~/.ClawVault/, execute commands, local network probes) are proportional to the stated functionality.
Persistence & Privilege
always is false and model-invocation is allowed (the platform default). The skill does not request elevated system-wide persistence or modify other skills. Its write scope is limited to ~/.ClawVault/.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install tophant-clawvault-operator - After installation, invoke the skill by name or use
/tophant-clawvault-operator - Provide required inputs per the skill's parameter spec and get structured output
Version History
v0.2.5
Rename local operator package to tophant-clawvault-operator, align command docs with slash name, and hide local scan commands.
v0.2.4
v0.2.4 — Shortened in-skill disclosure, moved detail to SECURITY.md
The verbose capability enumeration introduced in v0.2.3 caused the ClawHub LLM scanner to over-flag each enumerated capability as a separate concern. This release restores a concise top-level description in SKILL.md and README.md and relocates the complete capability/risk disclosure to a dedicated SECURITY.md.
- SKILL.md and README.md: single-sentence summary, pointing to SECURITY.md for detail.
- SECURITY.md (new): full capability list, what the skill does and does not touch, runtime prerequisite, sensitive command modes (scan-file / local-scan / skill_audit / scan-schedule-add), permissions table.
No code changes. Same runtime behavior as v0.2.3.
v0.2.3
v0.2.3 — Expanded capability disclosure (scan: suspicious → clean)
Documentation-only update addressing three re-evaluated ClawHub scanner findings:
1. Instruction Scope (was: concern) — SKILL.md and README.md now explicitly disclose that scan-file, local-scan, and scan-schedule-add read user-supplied paths, and that local-scan --type skill_audit specifically reads files under other installed OpenClaw skill directories.
2. Purpose & Capability (was: note) — Clarified the venv arrangement: the python3 declared in requires.bins launches clawvault_ops.py, which then dispatches into ~/.clawvault-env/ for ClawVault operations.
3. Credentials (was: note) — Broader file-read capability is now surfaced up-front so read_files permission is clearly justified.
No code changes.
v0.2.2
v0.2.2 — Binary dependency declaration (scan: note → ok)
Addresses the "Purpose & Capability" note flagged by ClawHub security scanner.
Changes:
- skill.json now declares `pgrep` alongside `python3` in `metadata.openclaw.requires.bins`. The operator script has always used pgrep for service-status checks; this version makes that dependency explicit in the manifest so the scanner and OpenClaw can verify the runtime environment up-front.
- SKILL.md frontmatter mirrors the same declaration.
No code changes.
v0.2.1
v0.2.1 — Documentation hardening (no code changes)
Mirrors the documentation update in tophant-clawvault-installer v0.2.1. No behavior changes.
- Added "Capability Disclosure" section to SKILL.md clarifying that the operator skill only reads/writes ~/.ClawVault/, starts/stops existing processes, and talks to localhost:8766. It installs nothing and modifies no systemd units.
- Explicit statement that the skill refuses to run if the installer's venv at ~/.clawvault-env/ is missing.
v0.2.0
First public release (v0.2.0)
25 operational commands grouped into six categories:
- Service lifecycle: start, stop, status
- Threat scanning: scan, scan-file
- Configuration: config-show, config-get, config-set, config-append, config-remove (hot-patches live config via dashboard API)
- Vault presets: 21 built-in presets covering general, engineering, compliance, and organization scenarios (developer-workflow, source-code-repo, ci-cd-pipelines, mobile-dev, cloud-infra, database-protection, crypto-wallet, financial-strict, healthcare-hipaa, gdpr-compliance, legal-contracts, hr-recruiting, backup-archive, enterprise-internal, communication-logs, audit-only, plus 5 originals)
- Local filesystem scans: local-scan with credential/vulnerability/skill_audit types, cron scheduling, and history
- Per-agent config: granular detection and guard-mode overrides per agent
Requires tophant-clawvault-installer (v0.2.0+) to be installed first.
Metadata
Frequently Asked Questions
What is Tophant Clawvault Operator?
Operate ClawVault services, configuration, vault presets, and scanning from OpenClaw. It is an AI Agent Skill for Claude Code / OpenClaw, with 130 downloads so far.
How do I install Tophant Clawvault Operator?
Run "/install tophant-clawvault-operator" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Tophant Clawvault Operator free?
Yes, Tophant Clawvault Operator is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Tophant Clawvault Operator support?
Tophant Clawvault Operator is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Tophant Clawvault Operator?
It is built and maintained by Ali0th (@martin2877); the current version is v0.2.5.
More Skills