← Back to Skills Marketplace
wufan2026

OpenClaw Admin Main

by wufan2026 · GitHub ↗ · v0.2.8 · MIT-0
cross-platform ⚠ suspicious
115
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install openclaw-admin-main
Description
Provides a web interface to monitor OpenClaw nodes, manage agent configurations, oversee resource usage, security policies, and review system logs.
Usage Guidance
This package appears to implement what it claims (a web admin UI plus a Node.js backend), but the registry metadata and SKILL.md do not fully describe how to install, run, or supply credentials. Before installing or running: 1) Treat the source as untrusted until you verify origin—the Homepage is missing and owner is unknown. 2) Inspect server/index.js and server/gateway.js to confirm there are no hardcoded remote endpoints or telemetry/exfil behavior. 3) Do not provide production OpenClaw tokens or passwords until you run it in an isolated test VM or container. 4) Expect to run: npm install, npm run build, and npm run start (or node --env-file=.env server/index.js) and to supply env vars (OPENCLAW_WS_URL, OPENCLAW_AUTH_TOKEN or OPENCLAW_AUTH_PASSWORD, PORT). 5) Restrict network access (firewall, bind to localhost) and review .env.example to understand which secrets the app will read. 6) Consider running npm audit, verifying dependency integrity, and running the server in a sandbox/container with limited filesystem and network privileges. If you want, share server/index.js and server/gateway.js contents and I can point out specific lines to review for sensitive operations or hidden endpoints.
Capability Analysis
Type: OpenClaw Skill Name: openclaw-admin-main Version: 0.2.8 The bundle provides a legitimate administrative dashboard for OpenClaw, offering features such as remote terminal access via 'node-pty', file system management, and system monitoring. High-risk capabilities, including the ability to execute shell commands for NPM updates and spawning VNC sessions for remote desktop access (found in 'server/index.js'), are clearly aligned with the tool's stated purpose as an administrative interface. While some endpoints exhibit potential vulnerabilities like weak input sanitization in the media and update handlers, there is no evidence of intentional malice, obfuscation, or unauthorized data exfiltration. The inclusion of 'ssh2' and 'better-sqlite3' supports the documented management and logging features.
Capability Tags
cryptorequires-wallet
Capability Assessment
Purpose & Capability
The codebase (frontend + server + RPC/WebSocket client + sqlite storage + terminal/SSH support) matches the claimed purpose (administrative dashboard for OpenClaw). However the skill metadata declares no required environment variables or binaries even though package scripts and .env.example show the server expects OPENCLAW_WS_URL, OPENCLAW_AUTH_TOKEN / OPENCLAW_AUTH_PASSWORD, PORT, and other envs. That omission is an inconsistency that should be corrected before trusting/Installing.
Instruction Scope
SKILL.md gives a high-level deployment command (clawhub publish ...) and prerequisite notes but omits concrete developer/run steps present in package.json (npm install, npm run build, npm run start or node --env-file=.env server/index.js) and does not warn that the backend will open network ports and persist to a SQLite DB. The runtime instructions therefore under-specify operations that materially affect the system (network listeners, local database, possible terminal/SSH features).
Install Mechanism
There is no explicit install spec in the skill registry (instruction-only), but a full codebase with package.json is included. Installation will require npm install / build and will pull many dependencies (express, ws, ssh2, node-pty, better-sqlite3, etc.). Those dependencies are consistent with the app's features; there are no obvious external download URLs or extract steps in the manifest. The risk here is operational (missing install guidance) rather than supply-chain downloads from suspicious hosts.
Credentials
The registry declares no required environment variables or credentials, yet the code and .env.example reference gateway connection credentials (OPENCLAW_WS_URL, OPENCLAW_AUTH_TOKEN, OPENCLAW_AUTH_PASSWORD), possibly media/storage paths, and server ports. The backend can access local filesystem (data directory, sqlite) and network (connecting to OpenClaw Gateway, listening for incoming connections, SSH/remote terminal). Requesting gateway credentials and the ability to run a networked backend is proportionate to an admin console, but the omission from declared metadata and lack of explicit guidance about safely providing secrets is a concern.
Persistence & Privilege
The project contains a server component that persists data (better-sqlite3 database files) and opens network interfaces. The skill metadata does not request always:true and does not claim automatic persistent presence. That is consistent: the backend must be run explicitly to be persistent. However, SKILL.md doesn't warn users that running the server will create local databases and listen on ports, so the persistence implications are under-documented.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install openclaw-admin-main
  3. After installation, invoke the skill by name or use /openclaw-admin-main
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v0.2.8
- Added comprehensive SKILL.md documentation describing the administrative web interface for OpenClaw. - Details on node monitoring, agent configuration, and system oversight now available. - Provides installation, setup, and troubleshooting guidance for easier deployment and management.
Metadata
Slug openclaw-admin-main
Version 0.2.8
License MIT-0
All-time Installs 0
Active Installs 0
Total Versions 1
Frequently Asked Questions

What is OpenClaw Admin Main?

Provides a web interface to monitor OpenClaw nodes, manage agent configurations, oversee resource usage, security policies, and review system logs. It is an AI Agent Skill for Claude Code / OpenClaw, with 115 downloads so far.

How do I install OpenClaw Admin Main?

Run "/install openclaw-admin-main" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is OpenClaw Admin Main free?

Yes, OpenClaw Admin Main is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does OpenClaw Admin Main support?

OpenClaw Admin Main is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created OpenClaw Admin Main?

It is built and maintained by wufan2026 (@wufan2026); the current version is v0.2.8.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments