← Back to Skills Marketplace
477
Downloads
1
Stars
4
Active Installs
1
Versions
Install in OpenClaw
/install safe-config-workflow
Description
安全修改 OpenClaw 配置,先查文档和验证,确认后自动修复并反馈,记录教训,确保 Gateway 正常运行。
Usage Guidance
This skill appears coherent and focused on safely editing OpenClaw configuration, but before installing: 1) Ensure the agent integration actually requires and enforces explicit user confirmation before running 'openclaw doctor --fix' (or run doctor without --fix to preview changes). 2) Keep backups (the SKILL.md already recommends this). 3) Review diffs produced by the skill before accepting changes. 4) Be careful when recording lessons to MEMORY.md — redact any secrets or tokens from saved notes. 5) If you are uncomfortable with automatic fixes, run the diagnostic steps manually or ask the agent to output a proposed patch instead of applying it automatically.
Capability Analysis
Type: OpenClaw Skill
Name: safe-config-workflow
Version: 1.0.0
The skill bundle is designed for a legitimate administrative purpose (safe configuration workflow) and includes instructions emphasizing safety and user confirmation. However, the `SKILL.md` instructs the AI agent to perform direct file modifications (e.g., `nano ~/.openclaw/openclaw.json` for manual fixes) and execute shell commands with pipelines (e.g., `openclaw doctor --fix 2>&1 | grep -E ...`). While these capabilities are necessary for the skill's stated function, they represent significant control over the system's configuration and command execution. This poses a vulnerability risk (e.g., via prompt injection against the agent) due to the powerful capabilities granted, even though there is no evidence of malicious intent within the skill bundle itself.
Capability Assessment
Purpose & Capability
Name/description match the actions in SKILL.md: it operates on ~/.openclaw/openclaw.json, uses the openclaw CLI (doctor, gateway, logs), and documents fixes. No unrelated environment variables, binaries, or install steps are requested.
Instruction Scope
Runtime instructions stay within the declared purpose (checking, auto-fixing, diffing, backing up, logging lessons). The flow requires explicit user confirmation before running 'openclaw doctor --fix', but the SKILL.md relies on procedural discipline rather than an enforced guard — confirm that any integration actually prompts the user. Also note MEMORY.md may end up storing configuration values; sensitive secrets should be redacted before recording.
Install Mechanism
Instruction-only skill with no install spec or downloaded artifacts. This is the lowest-risk install footprint.
Credentials
No environment variables, credentials, or external endpoints are requested. Actions are limited to local config paths (~/.openclaw/*) which are appropriate for a config-management skill.
Persistence & Privilege
always is false and model invocation is normal. The skill suggests writing its own MEMORY.md but does not request modifying other skills or system-wide settings. No elevated persistence is requested.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install safe-config-workflow - After installation, invoke the skill by name or use
/safe-config-workflow - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
初始版本:安全的配置修改流程,包含 doctor --fix 兜底、热重载验证、双重保险机制
Metadata
Frequently Asked Questions
What is 安全配置流程?
安全修改 OpenClaw 配置,先查文档和验证,确认后自动修复并反馈,记录教训,确保 Gateway 正常运行。 It is an AI Agent Skill for Claude Code / OpenClaw, with 477 downloads so far.
How do I install 安全配置流程?
Run "/install safe-config-workflow" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is 安全配置流程 free?
Yes, 安全配置流程 is completely free (open-source). You can download, install and use it at no cost.
Which platforms does 安全配置流程 support?
安全配置流程 is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created 安全配置流程?
It is built and maintained by nicoxia (@nicoxia); the current version is v1.0.0.
More Skills