← Back to Skills Marketplace
Openclaw Skill
by
JoshuaOHanlon
· GitHub ↗
· v1.0.3
595
Downloads
2
Stars
1
Active Installs
4
Versions
Install in OpenClaw
/install shelv
Description
Convert PDFs into structured Markdown filesystems and hydrate them into your workspace for exploration with standard Unix tools
Usage Guidance
This skill appears coherent and implements the documented workflow. If you plan to install: 1) only provide a SHELV_API_KEY you trust (it grants access to your Shelv account), 2) be aware hydrated files are written under ~/.openclaw/workspace/shelves/<name> (the --force flag will remove an existing directory), and 3) the archive is downloaded from a presigned URL supplied by the service — ensure you trust the shelv.dev service and its API keys before use. If you need higher assurance, review the scripts locally before running them and confirm the API host (https://api.shelv.dev) is the intended endpoint.
Capability Analysis
Type: OpenClaw Skill
Name: shelv
Version: 1.0.3
The OpenClaw AgentSkills skill bundle for Shelv is classified as benign. While it performs inherently high-risk operations such as uploading user-provided files, making network calls to an external API (`https://api.shelv.dev`), and downloading/extracting archives into the workspace, it implements robust security measures. Specifically, `scripts/shelv-hydrate.sh` includes critical checks to prevent path traversal and symlink attacks within downloaded tar archives, sanitizes user-provided directory names, and verifies archive integrity using SHA256 checksums. There is no evidence of intentional malicious behavior, data exfiltration beyond the stated purpose, persistence mechanisms, obfuscation, or prompt injection attempts against the agent in any of the provided files.
Capability Assessment
Purpose & Capability
Name/description describe uploading PDFs, polling processing, and hydrating a filesystem; the skill only requires an API key for shelv.dev and POSIX tools (curl, tar, jq, shasum). These requirements are appropriate and expected for the described functionality.
Instruction Scope
SKILL.md and included scripts only call the Shelv API, download the archive returned by the service, verify its sha256 checksum, check for path traversal and symlinks, and extract files into ~/.openclaw/workspace/shelves. The scripts do not attempt to read unrelated local files, exfiltrate environment data, or contact unexpected endpoints beyond the API/presigned-URL flow described.
Install Mechanism
No install spec is provided (instruction-only with shipped helper scripts). The scripts are plain shell, no third-party download/install step is executed at runtime by the skill. This is the lower-risk pattern for a skill that relies on system utilities.
Credentials
Only SHELV_API_KEY is required and it is the primary credential used to authenticate to the documented API. This is proportionate. Minor note: the declared required binaries list includes shasum (and the scripts accept sha256sum too), so the declared binaries and the scripts' runtime checks are consistent enough but slightly imprecise about accepting either sha256sum or shasum.
Persistence & Privilege
always:false (default), and the skill does not request persistent system-wide privileges or modify other skills' configuration. It writes files only under ~/.openclaw/workspace/shelves/ and verifies the target path to prevent path traversal; --force can delete a shelf directory, which is explicit and expected behavior.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install shelv - After installation, invoke the skill by name or use
/shelv - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.3
Remove accidentally included test script
v1.0.2
Address security scan findings: declare shasum in metadata bins, replace config-file credential guidance with env var, add --force flag for non-destructive default, reject symlinks in archives
v1.0.1
Security hardening: sanitize --name flag, mandatory SHA256 checksum, tar path traversal inspection, workspace containment guard
v1.0.0
Initial release
Metadata
Frequently Asked Questions
What is Openclaw Skill?
Convert PDFs into structured Markdown filesystems and hydrate them into your workspace for exploration with standard Unix tools. It is an AI Agent Skill for Claude Code / OpenClaw, with 595 downloads so far.
How do I install Openclaw Skill?
Run "/install shelv" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Openclaw Skill free?
Yes, Openclaw Skill is completely free (open-source). You can download, install and use it at no cost.
Which platforms does Openclaw Skill support?
Openclaw Skill is cross-platform and runs anywhere OpenClaw / Claude Code is available (macos, linux).
Who created Openclaw Skill?
It is built and maintained by JoshuaOHanlon (@joshuaohanlon); the current version is v1.0.3.
More Skills