← Back to Skills Marketplace
Travel Lobster
by
Wenyu Yang
· GitHub ↗
· v1.5.0
438
Downloads
1
Stars
3
Active Installs
11
Versions
Install in OpenClaw
/install travel-lobster
Description
Autonomous internet exploration skill. Your agent roams the web driven by its own curiosity, discovers interesting things, and sends illustrated "postcards"...
Usage Guidance
This skill is internally coherent, but review and consider these practical points before installing:
- Cost & volume: The skill schedules repeated autonomous trips and documents per-postcard costs (~$0.03–0.06). At default intervals (60–180m) this can become continuous daily spend and many outbound messages. Adjust min/max intervals or run in test mode first.
- Local file access: setup.sh auto-reads IDENTITY.md, USER.md, and SOUL.md to personalize postcards and will create/write memory/travel-journal.md and a .travel-config in the skill dir. If those files contain sensitive info you don't want the skill to use or propagate to chat, remove or sanitize them first.
- API key usage: The skill requires OPENROUTER_API_KEY for image generation. Provide a key with usage limits or monitoring (do not reuse high-privilege keys) and be aware that the key will be used by gen_image.py to call openrouter.ai.
- Persistent scheduling: The skill uses openclaw cron to schedule runs and offers an optional watchdog cron entry. If you do not want long-running autonomous behavior, do not add the watchdog to system crontab and inspect cron jobs with 'openclaw cron list' before and after starting.
- Inspect the scripts: The included scripts are readable shell/Python files; review them (they are short) to confirm you are comfortable with their read/write paths and logging. The image client expects a particular response format from openrouter.ai (may fail if API returns different shape), but this is an operational bug risk, not a security mismatch.
- Testing recommendation: Run setup.sh and a single run of travel.sh pointing at a test/chat you control and with large min/max intervals (e.g., 1440–2880 minutes) to verify behavior, output files, and costs before enabling frequent autonomous runs.
If you accept these tradeoffs (personalization via local files, one external API key, and autonomous scheduling), the skill's requests and behavior are coherent with its stated purpose.
Capability Analysis
Type: OpenClaw Skill
Name: travel-lobster
Version: 1.5.0
The 'travel-lobster' skill implements an autonomous, self-scheduling agent that browses the internet and maintains a persistent 'travel journal.' While the behavior is transparently documented and aligned with its stated purpose, it employs high-risk patterns including reading workspace identity files (IDENTITY.md, USER.md), autonomous web exploration, and a self-perpetuating loop where the agent is instructed to execute shell commands (scripts/travel.sh) via the platform's cron system. These capabilities create a significant attack surface for prompt injection from external web content, as the agent is directed to fetch web data and then perform shell-based scheduling. No evidence of intentional malice was found, but the autonomous shell execution and broad data access qualify it as suspicious.
Capability Assessment
Purpose & Capability
Requested binaries (bash, python3, envsubst, openclaw) and the OPENROUTER_API_KEY align with the described behavior: openclaw schedules/launches agent sessions, python3 runs image generation, envsubst fills the prompt. No unrelated credentials or binaries are requested.
Instruction Scope
SKILL.md and references explicitly instruct the agent to read and edit a persistent journal in the workspace, to crawl publicly accessible websites (with an explicit forbid-list for private/internal IPs and authenticated services), generate images, and send messages to a chat. This is in-scope for the advertised persistent 'travel memory' feature, but it does mean the skill will read local workspace files (IDENTITY.md, USER.md, SOUL.md) and write memory/log files. The run loop also requires the agent to schedule its next run every trip (Step 7), which enforces persistent autonomous behavior.
Install Mechanism
There is no install spec (instruction-only + small scripts), so nothing is downloaded or installed by the registry. The included scripts are plain shell and Python files; no external archives or untrusted download URLs are used.
Credentials
Only one secret is declared: OPENROUTER_API_KEY (primaryEnv) for image generation via OpenRouter/Gemini Flash, which matches the image-generation step. The skill does read local workspace files (names/timezone/language) and writes journal/config files under the workspace/skill directory; that local file access is reasonable for personalization but may surface personal info from USER.md/IDENTITY.md. No other unrelated credentials are requested.
Persistence & Privilege
always:false and autonomous invocation are standard. However, the scripts implement a self-scheduling loop (openclaw cron add) and an optional watchdog to restart the loop via crontab; Step 7 requires scheduling the next run every trip. This yields persistent autonomous runs that can produce many messages and charges over time (costs are documented). The skill does not modify other skills' configs or request excessive system privileges.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install travel-lobster - After installation, invoke the skill by name or use
/travel-lobster - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.5.0
Rich milestone system: 3-tier journey checkpoints (every 10 postcards: retrospective, every 25: knowledge map with themes/blind spots, every 50: grand expedition report with badges). Milestone postcards have dedicated journal format. Image filenames use postcard number for uniqueness.
v1.4.0
Comprehensive security documentation overhaul for Benign review: (1) Exact data access tables showing grep patterns used on workspace files, (2) Explicit enumeration of all data written and sent to external services, (3) Clear statement that agent sessions do NOT read identity files (only setup.sh does, once), (4) Honest limitation disclosure for prompt-level network restrictions, (5) Detailed autonomous scheduling section with cost implications and full control commands, (6) Recommended first-use steps for gradual trust building
v1.3.0
Security review response: declared openclaw CLI in required bins, updated default intervals to 60-180min with accurate cost estimates, expanded Persistence & Autonomous Scheduling section with explicit control instructions, clarified watchdog is optional and manually installed, improved Requirements table with all dependencies and notes
v1.2.0
Major reliability update: postcard numbering now computed by travel.sh (no more duplicates/gaps), unique image filenames per postcard, milestone retrospectives at every 10th postcard, strict journal entry format template, restored network restrictions in prompt
v1.1.0
Stable release. Fixed crontab PATH for both openclaw and node (nvm). Increased session timeout to 300s. Strengthened self-scheduling resilience. Full 13-point audit passed: syntax, security, env vars, permissions, error handling, PATH simulation, parameter validation. Cleaned runtime residuals.
v1.0.5
Robustness fixes: add PATH export for crontab compatibility (fixes openclaw command not found), increase session timeout 180s→300s, strengthen Step 7 prompt to always schedule next trip even on errors, recommend 15-min watchdog interval
v1.0.4
Fix registry env declaration: use metadata.clawdbot.requires.env format (matching Benign skills like tavily). Tighten prompt: replace open-ended web_fetch with explicit allowed/forbidden source list. Declare binary dependencies (bash, python3, envsubst).
v1.0.3
Transparency fix: rewrote Security section to accurately document all file reads (workspace identity files during setup), all file writes (journal, config, logs), and what is NOT accessed. Removed inaccurate claims. Clearly distinguished prompt-level vs technical network controls.
v1.0.2
Address security review: declared OPENROUTER_API_KEY in frontmatter env field, expanded Security section with detailed per-concern documentation covering credentials, network scope, file access, persistence, isolation, and recommended first-run steps
v1.0.1
Security fixes per ClawHub review: API key now only from OPENROUTER_API_KEY env var (no config file scanning), prompt restricts to public websites only, declared env var requirements in SKILL.md
v1.0.0
Initial release: autonomous internet exploration with illustrated postcards, persistent travel memory, knowledge graph, self-scheduling trips
Metadata
Frequently Asked Questions
What is Travel Lobster?
Autonomous internet exploration skill. Your agent roams the web driven by its own curiosity, discovers interesting things, and sends illustrated "postcards"... It is an AI Agent Skill for Claude Code / OpenClaw, with 438 downloads so far.
How do I install Travel Lobster?
Run "/install travel-lobster" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Travel Lobster free?
Yes, Travel Lobster is completely free (open-source). You can download, install and use it at no cost.
Which platforms does Travel Lobster support?
Travel Lobster is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Travel Lobster?
It is built and maintained by Wenyu Yang (@yangwenyu2); the current version is v1.5.0.
More Skills