← Back to Skills Marketplace
SIGAA
by
Daniel Marques
· GitHub ↗
· v1.1.2
· MIT-0
345
Downloads
0
Stars
0
Active Installs
4
Versions
Install in OpenClaw
/install sigaa
Description
Interact with SIGAA (Sistema Integrado de Gestão de Atividades Acadêmicas), the academic management system used by 50+ Brazilian federal universities (UNB, U...
Usage Guidance
This skill appears to do what it says, but review and run carefully: 1) Inspect scripts before sourcing them (sourcing executes code in your shell and installs an EXIT trap). 2) Use a dedicated institution account (not an admin) and verify SIGAA_URL is the official site for your university. 3) If you prefer not to modify your interactive shell, run the commands in a disposable shell/container or adapt the login script to produce credentials for a subprocess instead of sourcing. 4) Confirm network targets after the first login (the script follows CAS redirects) and avoid running on a machine that carries other high-value credentials. 5) If you need stronger isolation, run these scripts inside a temporary VM or container.
Capability Analysis
Type: OpenClaw Skill
Name: sigaa
Version: 1.1.2
The sigaa skill bundle is a well-documented tool for interacting with the Brazilian SIGAA academic system. The scripts (sigaa_login.sh, sigaa_student.sh, sigaa_professor.sh) use curl and Python to perform authenticated web scraping. The implementation follows security best practices, such as using environment variables for credentials, setting restricted permissions (chmod 600) on temporary session cookie files, using shell traps for automatic cleanup, and unsetting sensitive variables after use. No evidence of data exfiltration, malicious execution, or prompt injection was found; the logic is entirely consistent with the stated purpose of academic management automation.
Capability Tags
Capability Assessment
Purpose & Capability
Name/description (SIGAA automation) align with required binaries (curl, python3, grep), the three required env vars (SIGAA_URL, SIGAA_USER, SIGAA_PASSWORD), and the included login/student/professor scripts. The scripts perform expected web scraping and JSF POST flows for SIGAA and CAS SSO; nothing requested appears unrelated to the stated purpose.
Instruction Scope
SKILL.md and scripts limit network activity to the institution SIGAA_URL and the CAS host derived from login redirects (and the README explicitly warns to verify those hosts). Scripts parse HTML, POST JSF forms, and emit results to stdout — all consistent with the stated functionality. Minor note: sigaa_login.sh is intended to be sourced into the user's shell and installs a trap on EXIT to delete the cookie file and unset exported vars; when sourced the trap becomes part of the user's shell and will override any prior EXIT trap handlers in that shell (this is a side-effect users should be aware of).
Install Mechanism
No install spec; the skill is delivered as scripts and docs (no package downloads or external installers). This lowers install-time risk because nothing arbitrary is fetched or extracted during install.
Credentials
Only SIGAA_URL, SIGAA_USER, and SIGAA_PASSWORD are required — these are exactly the credentials needed to authenticate to SIGAA/CAS. No unrelated secrets or system credentials are requested. The SKILL.md and scripts access only those env vars and the cookie file they create.
Persistence & Privilege
The skill does not request permanent or platform-wide privileges (always is false). However, sigaa_login.sh is designed to be sourced (it exports SIGAA_COOKIE_FILE, SIGAA_USER_ID, SIGAA_BASE_URL and sets an EXIT trap). Sourcing modifies the current shell environment (intentional for session reuse) and the EXIT trap behavior — users should review the script before sourcing and be aware of these side-effects. The skill does not modify other skills or persistent agent configuration.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install sigaa - After installation, invoke the skill by name or use
/sigaa - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.1.2
- Added version, author, and license metadata to SKILL.md.
- No functional changes to the skill logic or interface.
- Documentation now includes explicit versioning and attribution fields for improved clarity.
v1.1.1
- Added a comprehensive README.md with setup instructions, usage examples, security notes, troubleshooting tips, and references.
- No changes to code or logic; documentation only.
v1.1.0
Security hardening: credentials via env vars only (no CLI args), cookie files chmod 600 + auto-deleted on exit, password unset after login, rate limiting, declared required binaries (curl, python3, grep)
v1.0.0
Initial release: student/professor portal automation for 50+ Brazilian universities
Metadata
Frequently Asked Questions
What is SIGAA?
Interact with SIGAA (Sistema Integrado de Gestão de Atividades Acadêmicas), the academic management system used by 50+ Brazilian federal universities (UNB, U... It is an AI Agent Skill for Claude Code / OpenClaw, with 345 downloads so far.
How do I install SIGAA?
Run "/install sigaa" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is SIGAA free?
Yes, SIGAA is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does SIGAA support?
SIGAA is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created SIGAA?
It is built and maintained by Daniel Marques (@olegantonov); the current version is v1.1.2.
More Skills