← Back to Skills Marketplace
Mcporter
by
Peter Steinberger
· GitHub ↗
· v1.0.0
67602
Downloads
194
Stars
2042
Active Installs
1
Versions
Install in OpenClaw
/install mcporter
Description
Use the mcporter CLI to list, configure, auth, and call MCP servers/tools directly (HTTP or stdio), including ad-hoc servers, config edits, and CLI/type generation.
Usage Guidance
Install this only if you want an agent to use mcporter for direct MCP operations. Treat `mcporter call`, OAuth, config edits, daemon commands, and `--stdio` commands as sensitive: review the target server or command first, avoid production credentials unless needed, and prefer explicit user approval before running commands that can modify data or start local processes.
Capability Analysis
Type: OpenClaw Skill
Name: mcporter
Version: 1.0.0
The skill is classified as suspicious due to its broad capabilities, particularly the explicit instruction for `mcporter call --stdio "bun run ./server.ts"` in `SKILL.md`. This demonstrates and enables the execution of arbitrary commands, which is a significant security risk, even though the example command itself is benign. Additionally, the skill allows for arbitrary HTTP calls (`mcporter call <url>`), configuration edits, and daemon management, granting extensive system and network access. While these capabilities might be plausible for the stated purpose of a CLI tool, they represent high-risk behaviors without clear malicious intent from the skill bundle itself.
Capability Assessment
Purpose & Capability
The stated purpose is to operate MCP servers and tools through mcporter, including HTTP, stdio, auth, config, daemon, and code generation workflows; the listed capabilities match that purpose.
Instruction Scope
The instructions are terse and include high-impact examples such as arbitrary MCP URL calls, OAuth, config edits, daemon operations, and stdio command execution, but these are presented openly rather than hidden or purpose-mismatched.
Install Mechanism
The artifact contains only SKILL.md and declares installation of the mcporter Node package binary; static scan found no suspicious files or executable payloads in the skill bundle.
Credentials
Network calls, OAuth flows, local command execution through stdio, and local config changes can affect user data or tokens, but they are proportionate to a CLI skill for directly operating MCP servers.
Persistence & Privilege
Daemon start/status/stop/restart and config modification are explicitly documented; no hidden persistence, privilege escalation, or destructive behavior is evident in the artifact.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install mcporter - After installation, invoke the skill by name or use
/mcporter - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Metadata
Frequently Asked Questions
What is Mcporter?
Use the mcporter CLI to list, configure, auth, and call MCP servers/tools directly (HTTP or stdio), including ad-hoc servers, config edits, and CLI/type generation. It is an AI Agent Skill for Claude Code / OpenClaw, with 67602 downloads so far.
How do I install Mcporter?
Run "/install mcporter" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Mcporter free?
Yes, Mcporter is completely free (open-source). You can download, install and use it at no cost.
Which platforms does Mcporter support?
Mcporter is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Mcporter?
It is built and maintained by Peter Steinberger (@steipete); the current version is v1.0.0.
More Skills