← Back to Skills Marketplace
gluonfield

Ink

by Augustinas Malinauskas · GitHub ↗ · v0.1.0 · MIT-0
cross-platform ⚠ suspicious
302
Downloads
0
Stars
1
Active Installs
1
Versions
Install in OpenClaw
/install ink-skill
Description
Deploy and manage cloud services on Ink (ml.ink): create projects, deploy services, provision databases, manage DNS and custom domains, configure workspaces,...
README (SKILL.md)

Use Ink

Ink is a cloud platform designed for AI agents to deploy and manage services autonomously. It makes deployments simple enough that fully autonomous agents can handle the entire lifecycle: create, deploy, monitor, and scale services without human intervention.

Preflight

Before any operation, verify the CLI is installed and authenticated:

command -v ink                    # CLI installed
ink whoami                        # authenticated

If the CLI is missing, install it:

npm install -g @mldotink/cli      # npm (macOS, Linux, Windows)
brew install mldotink/tap/ink     # Homebrew (macOS)

If not authenticated, run ink login.

Configuration

Ink CLI resolves context in this order (highest priority first):

  1. CLI flags -- --api-key, --workspace, --project
  2. Environment -- INK_API_KEY
  3. Local config -- .ink file in current directory
  4. Global config -- ~/.config/ink/config

Use ink whoami to check current auth. Use --json on any command for machine-readable output.

Git: Two Options

Ink supports two git providers. Use ink whoami to see which are available.

Option 1: Ink Internal Git (default)

Zero-setup, works for everyone. No GitHub account needed.

ink repos create my-app           # creates repo, shows git remote URL
git remote add ink \x3Curl>          # add the remote
git push ink main                 # push code -- auto-triggers deployment

Option 2: GitHub

Requires GitHub OAuth and GitHub App connected at https://ml.ink (Settings > GitHub).

ink deploy my-app --repo username/repo-name --host github --port 3000

Auto-Redeploy

Both git providers trigger automatic redeployment on push. After pushing code, just poll ink status \x3Cname> to track progress -- you do not need to redeploy manually.

Secrets & Environment Variables

Use ink secrets to manage env vars on running services. Changes are merged server-side and trigger an automatic redeploy.

For sensitive values (API keys, tokens, credentials), use ink secrets import to avoid leaking to shell history:

# From file
ink secrets import my-app --file .env

# From stdin (preferred for agents)
cat > .env.secrets \x3C\x3CEOF
DATABASE_URL=libsql://my-db-myworkspace.turso.io
DATABASE_AUTH_TOKEN=eyJhbG...
API_KEY=sk_live_xxx
EOF
ink secrets import my-app --file .env.secrets
rm .env.secrets

For non-sensitive values, ink secrets set is fine:

ink secrets set my-app NODE_ENV=production LOG_LEVEL=info

Other operations:

ink secrets list my-app                          # list current vars
ink secrets unset my-app OLD_KEY                 # remove a single var
ink secrets delete my-app KEY1 KEY2              # remove multiple vars
ink secrets import my-app --file .env --replace  # replace ALL vars (removes unspecified)

For initial deploy, use --env-file to pass secrets:

ink deploy my-app --repo my-app --port 3000 --env-file .env

Use --env only for non-sensitive values like NODE_ENV=production.

Common Operations

ink services                                      # list all services
ink status my-app                                 # service details
ink logs my-app                                   # tail logs
ink deploy my-app --repo my-app --port 3000       # deploy new service
ink redeploy my-app                               # redeploy existing
ink redeploy my-app --memory 1Gi --vcpu 1         # redeploy with new config
ink delete my-app                                 # delete service

ink db create my-db                               # create database
ink db list                                       # list databases
ink db token my-db                                # get connection credentials
ink db delete my-db                               # delete database

ink secrets set my-app KEY=value                  # set env vars (merges)
ink secrets import my-app --file .env             # import from file
ink secrets list my-app                           # list env vars
ink secrets unset my-app KEY                      # remove env var
ink secrets delete my-app KEY1 KEY2               # remove multiple

ink domains add my-app app.example.com            # add custom domain
ink domains remove my-app app.example.com         # remove custom domain

ink dns zones                                     # list DNS zones
ink dns records example.com                       # list records
ink dns add example.com --name sub --type A --content 1.2.3.4
ink dns delete example.com \x3Crecord-id>

ink repos create my-app                           # create internal git repo
ink repos token my-app                            # get push token

ink projects list                                 # list projects
ink workspaces                                    # list workspaces

Deployment Flows

Deploy a service

# 1. Create a repo and push code
ink repos create my-app
git remote add ink \x3CgitRemote_from_output>
git push ink main

# 2. Deploy
ink deploy my-app --repo my-app --port 3000

# 3. Check status (status goes: queued -> building -> deploying -> active)
ink status my-app

Deploy a full-stack app (API + frontend)

# 1. Deploy backend
ink repos create my-api
git remote add ink \x3Curl>
git push ink main
ink deploy my-api --repo my-api --port 8080

# 2. Wait for backend to be active
ink status my-api

# 3. Deploy frontend with backend URL
ink repos create my-frontend
git remote add ink-frontend \x3Curl>
git push ink-frontend main
ink deploy my-frontend --repo my-frontend --port 3000 \
  --env VITE_API_URL=https://my-api.ml.ink

Deploy with a database

# 1. Create database
ink db create my-db --json
# Save databaseUrl and authToken from output

# 2. Deploy service
ink deploy my-app --repo my-app --port 3000

# 3. Set database credentials (merges with existing vars, triggers redeploy)
cat > .env.secrets \x3C\x3CEOF
DATABASE_URL=\x3CdatabaseUrl from step 1>
DATABASE_AUTH_TOKEN=\x3CauthToken from step 1>
EOF
ink secrets import my-app --file .env.secrets
rm .env.secrets

Deploy a static site or SPA

For frontend apps (React, Vue, Vite, Next.js static export, etc.) that build to a directory of static files. No --port needed — Ink serves via nginx automatically.

ink repos create my-site
git remote add ink \x3Curl>
git push ink main
ink deploy my-site --repo my-site --publish-dir dist

Use --publish-dir to specify where the build output goes (dist, build, out, etc.). Ink runs the build step then serves the result as static files.

For SPAs with an API backend, pass the API URL as a build-time env var:

ink deploy my-site --repo my-site --publish-dir dist \
  --env VITE_API_URL=https://my-api.ml.ink

Deploy from a monorepo

# 1. Create one repo for the monorepo
ink repos create my-monorepo
git remote add ink \x3Curl>
git push ink main

# 2. Deploy backend from backend/ subdirectory
ink deploy mono-api --repo my-monorepo --root-dir backend --port 8080

# 3. Deploy frontend from frontend/ subdirectory (public URL is not a secret)
ink deploy mono-web --repo my-monorepo --root-dir frontend --publish-dir dist \
  --env VITE_API_URL=https://mono-api.ml.ink

Deploy from GitHub

Requires GitHub OAuth and App connected at https://ml.ink.

ink deploy my-app --repo username/repo-name --host github --port 3000

Pushes to the GitHub repo automatically trigger redeployment via webhook.

Add a custom domain

Requires a DNS zone delegated to Ink first (via https://ml.ink/dns).

ink dns zones                                     # verify zone is active
ink domains add my-app app.example.com            # auto-creates DNS + TLS

Update a service (scale, env vars, config)

Use ink secrets for env var changes. Use ink redeploy for resource/config changes. Pushing code auto-redeploys -- you don't need to call redeploy for that.

# Add or update non-sensitive env vars
ink secrets set my-app NODE_ENV=production LOG_LEVEL=info

# Add secrets via file (avoids shell history exposure)
ink secrets import my-app --file .env.secrets

# Scale up memory and CPU
ink redeploy my-app --memory 1Gi --vcpu 1

Debug a failing deployment

ink status my-app                                 # check status and error
ink logs my-app                                   # check runtime logs

Service Configuration

Option Values Default
Memory 128Mi, 256Mi, 512Mi, 1024Mi, 2048Mi, 4096Mi 256Mi
vCPUs 0.1, 0.2, 0.25, 0.3, 0.4, 0.5, 1, 2, 3, 4 0.25
Region eu-central-1 eu-central-1
Branch any git branch main

Guidelines

  • Install the CLI first. If command -v ink fails, install with npm install -g @mldotink/cli.
  • Check ink services before deploying to see if a service already exists. Use ink deploy for new services and ink redeploy for existing ones.
  • Pushing code auto-redeploys. After git push, just poll ink status to track progress.
  • Use --json flag for machine-readable output when you need to parse results.
  • Memory: 128Mi, 256Mi (default), 512Mi, 1024Mi, 2048Mi, 4096Mi.
  • vCPUs: 0.1, 0.2, 0.25 (default), 0.3, 0.4, 0.5, 1, 2, 3, 4.
  • When deploying, confirm the repo URL and branch with the user first.
  • Use ink secrets import for sensitive values (credentials, tokens, API keys). Write to a temp file, import, delete the file. Never pass secrets as CLI arguments — they leak to shell history and process listings.
  • Use ink secrets set only for non-sensitive vars like NODE_ENV=production. Never use ink redeploy --env to update vars — it replaces all vars.
  • Never hardcode or guess secret values. Secrets should come from the user, from ink db token, or from other Ink CLI output.
  • Show the service URL after successful deployment.
  • Zone delegation (for custom domains) must be set up by the user at https://ml.ink/dns before you can use ink domains add.
Usage Guidance
This skill appears to be an instruction-only helper for the Ink (ml.ink) CLI and will perform deploys and manage secrets — that requires authenticated access to your Ink account and the ability to upload credentials. Before installing: (1) confirm the skill's source/owner and whether you trust ml.ink and the publisher (source is unknown); (2) do not store highly privileged keys in environment variables for the agent—prefer interactive ink login or create a least-privilege API key for CI/deploy tasks; (3) be cautious about using the skill with sensitive secrets (databases, payment keys) because it instructs the agent to import them into the remote service; (4) ask the publisher to update registry metadata to declare required env vars/primary credential (INK_API_KEY) so it's clear what will be requested; and (5) consider restricting autonomous agent deployment rights (require explicit confirmation) until you verify behavior. If you need higher confidence, request the skill's source code or a publisher identity and a clearer manifest showing expected credentials and activation triggers.
Capability Analysis
Type: OpenClaw Skill Name: ink-skill Version: 0.1.0 The 'ink' skill provides a legitimate interface for managing cloud infrastructure on the ml.ink platform. It includes detailed instructions for service deployment, database provisioning, and secure secret management using the Ink CLI. While it utilizes powerful tools like npm and git, these are strictly aligned with its stated purpose of autonomous cloud management and follow security best practices, such as avoiding secret leakage in shell history.
Capability Assessment
Purpose & Capability
The SKILL.md describes a cloud deployment CLI (installing and using an 'ink' CLI, managing projects, deployments, databases, DNS, and secrets). That purpose is coherent with the commands shown. However the registry metadata lists no primary credential or required env vars even though the instructions explicitly reference INK_API_KEY, CLI authentication (ink login / ink whoami), repo push tokens, and secret management. The missing credential declarations are an inconsistency.
Instruction Scope
The runtime instructions tell the agent to install/use the ink CLI, run authentication (ink login / ink whoami), push repos, run deploy/redeploy/delete, and import/manage secrets (including instructions to create temporary files containing sensitive secrets and then rm them). They also instruct the agent to 'Use this skill whenever the user mentions Ink... even if they don't say "Ink" explicitly,' which is broad and could cause the agent to activate in many contexts. The secret-management steps and broad invocation rule increase the risk surface.
Install Mechanism
This is an instruction-only skill with no install spec or bundled code. The SKILL.md recommends installing the official-looking CLI via npm or Homebrew, which is a normal, low-risk instruction (no arbitrary download URLs or embedded installers in the skill itself).
Credentials
The skill will need authenticated access to ml.ink and will manage service secrets and repo push tokens. Those are sensitive and expected for a deploy tool, but the declared metadata does not request any environment variables or a primary credential. That mismatch (no declared INK_API_KEY or similar) is concerning because users may not realize what credentials the skill requires and will need to provide. The skill also instructs agents to import arbitrary secrets from files, which is appropriate for the purpose but requires careful handling and least-privilege credentials.
Persistence & Privilege
The skill is not forced-always and allows normal autonomous invocation. Autonomous invocation combined with capabilities to deploy services and manage secrets raises the blast radius if the agent acts without user confirmation — but autonomy itself is platform-default and not by itself a blocker. The SKILL.md's directive to trigger whenever Ink-related terms appear is an instruction-level scope concern (see instruction_scope).
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install ink-skill
  3. After installation, invoke the skill by name or use /ink-skill
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v0.1.0
Initial release of the Ink skill. - Enables deployment and management of cloud services, databases, and domains on Ink (ml.ink). - Supports creating projects, deploying from internal git or GitHub, and managing secrets securely. - Provides commands for monitoring, auto-redeploy on code push, and workspace/project configuration. - Includes workflows for full-stack, static site, and monorepo deployments. - Offers guides for using the Ink CLI (installation, authentication, configuration, and common tasks).
Metadata
Slug ink-skill
Version 0.1.0
License MIT-0
All-time Installs 1
Active Installs 1
Total Versions 1
Frequently Asked Questions

What is Ink?

Deploy and manage cloud services on Ink (ml.ink): create projects, deploy services, provision databases, manage DNS and custom domains, configure workspaces,... It is an AI Agent Skill for Claude Code / OpenClaw, with 302 downloads so far.

How do I install Ink?

Run "/install ink-skill" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Ink free?

Yes, Ink is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does Ink support?

Ink is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Ink?

It is built and maintained by Augustinas Malinauskas (@gluonfield); the current version is v0.1.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments