← Back to Skills Marketplace
Model Switchboard
by
frank-bot07
· GitHub ↗
· v3.0.0
364
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install model-switchboard
Description
Safely configure OpenClaw AI models by validating roles, autoloading backups, blocking unsafe changes, and managing via CLI or Canvas UI.
Usage Guidance
This skill appears coherent and appropriate for managing OpenClaw models: it only needs access to your OpenClaw config and any provider API keys you already use, and it implements validation, backups and a UI. However, the included security audit flagged two HIGH issues (XSS in the UI and a shell-injection vector in the import flow). The changelog states those issues were fixed, but some files in the submission were truncated so I could not fully verify every fix. Before installing or enabling this skill in production: 1) Inspect switchboard.sh (import_config) to ensure file paths are passed via environment variables (no unescaped shell interpolation). 2) Open ui/index.html and confirm user/model strings are rendered using textContent/createElement (no innerHTML with unescaped values or inline onclick string interpolation). 3) Run the tool in a non-production environment, exercise import/export and UI flows, and confirm backups and rollback work as advertised. 4) If you must trust it in production, run a local security test (attempt model names with special characters, simulate concurrent operations) and ensure backup directory permissions and lockfiles are present. If you want, I can (a) search the provided switchboard.sh and ui files for the exact patterns and report lines that still look risky, or (b) provide a short checklist of commands/tests to run to validate the fixes on your machine.
Capability Analysis
Type: OpenClaw Skill
Name: model-switchboard
Version: 3.0.0
The Model Switchboard skill is classified as benign. While a self-audit (`AUDIT-OPUS.md`) revealed several high-severity vulnerabilities (XSS in `ui/index.html`, shell injection in `scripts/switchboard.sh`) and medium-severity issues, the `CHANGELOG.md` and a thorough code review confirm that all these findings have been addressed and fixed in the provided v3.0 files. The skill's core purpose is safe AI model configuration, employing robust safety measures such as fail-closed validation, atomic writes with automatic rollback, and comprehensive input sanitization, demonstrating a strong commitment to security in its design and implementation.
Capability Assessment
Purpose & Capability
Name/description match the code and SKILL.md: the bundle contains a validation engine, CLI wrapper, redundancy generator, UI, model registry and setup script. Files access the OpenClaw config (~/.openclaw/openclaw.json) and provider auth artifacts — expected for a model-management tool. No unrelated cloud creds or unrelated binaries are requested.
Instruction Scope
SKILL.md confines runtime actions to model validation, backups, uses the OpenClaw CLI and the provided switchboard.sh/ui. It explicitly forbids direct editing of openclaw.json and prescribes dry-runs and confirmations. The SKILL.md does suggest editing model-registry.json to add new models (this changes the skill bundle's data), which is within the tool's domain but worth noting as it requires modifying shipped files.
Install Mechanism
No install spec / no external downloads. This is instruction-first with bundled scripts (Python + Bash + HTML). That lowers install-time risk compared to fetching remote archives. No evidence of remote code pulls or unusual installers in included files.
Credentials
The skill itself declares no required env vars; at runtime it conditionally reads provider API keys and OpenClaw auth files (ANTHROPIC_API_KEY, OPENAI_API_KEY, ~/.openclaw/auth/*) to detect available providers — this is proportional to model/provider discovery and redundancy features. It does read/write the user's OpenClaw config and creates backups under ~/.openclaw — expected for this purpose.
Persistence & Privilege
No 'always: true' privilege. The skill reads/writes user-level config (~/.openclaw/openclaw.json and backups) and runs a UI server locally; these are appropriate for a model-management tool. It does not request system-wide privileges or modify other skills' configs in the provided excerpts.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install model-switchboard - After installation, invoke the skill by name or use
/model-switchboard - Provide required inputs per the skill's parameter spec and get structured output
Version History
v3.0.0
- Major upgrade: introduces robust safeguards for managing AI models in OpenClaw.
- All model assignments must use provided commands; direct JSON edits are strictly forbidden.
- Automatic validation, backup (30 rolling), and instant rollback for every config change.
- Prevents unsafe assignments (e.g., image models as LLMs) and enforces strict validation rules.
- Adds visual management dashboard (Canvas UI) and full CLI reference.
- Advanced redundancy, import/export, health diagnostics, and troubleshooting support included.
Metadata
Frequently Asked Questions
What is Model Switchboard?
Safely configure OpenClaw AI models by validating roles, autoloading backups, blocking unsafe changes, and managing via CLI or Canvas UI. It is an AI Agent Skill for Claude Code / OpenClaw, with 364 downloads so far.
How do I install Model Switchboard?
Run "/install model-switchboard" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Model Switchboard free?
Yes, Model Switchboard is completely free (open-source). You can download, install and use it at no cost.
Which platforms does Model Switchboard support?
Model Switchboard is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Model Switchboard?
It is built and maintained by frank-bot07 (@frank-bot07); the current version is v3.0.0.
More Skills