← Back to Skills Marketplace
447
Downloads
0
Stars
0
Active Installs
2
Versions
Install in OpenClaw
/install sshexec
Description
A skill to execute SSH commands on remote servers, supporting both password and key-based authentication. It includes error handling and logging for command...
Usage Guidance
This skill appears to do what it says, but exercise normal SSH security hygiene before installing or using it: avoid passing passwords on the command line (use SSH agent or protected key files instead), protect private key files and their passphrases, be mindful that command output is logged (may contain secrets), and prefer enabling --strict-host-key to detect MITM. Because the package source is 'unknown', only run this on trusted machines and review or sandbox the script first; install paramiko from the official PyPI repository and verify integrity before use.
Capability Analysis
Type: OpenClaw Skill
Name: sshexec
Version: 1.0.1
The `sshexec` skill is designed to execute arbitrary SSH commands on remote servers, a powerful capability that, while aligned with its stated purpose, inherently carries significant risk. The `ssh_exec.py` script uses `paramiko.AutoAddPolicy()` by default for SSH host keys, which is a known vulnerability as it automatically trusts unknown host keys, making it susceptible to Man-in-the-Middle (MITM) attacks if not explicitly overridden with `--strict-host-key`. While the skill does not exhibit explicit malicious intent like data exfiltration or local persistence, its core functionality of remote command execution combined with a less secure default for host key verification makes it suspicious due to the potential for misuse and security flaws.
Capability Assessment
Purpose & Capability
The name/description (SSH command execution with password or key auth) matches the provided Python script (ssh_exec.py). The script uses paramiko to open SSH connections, run a command, and return/log output—exactly what the skill claims.
Instruction Scope
SKILL.md and the script limit behavior to connecting to a specified host and executing a single command. However, the documentation examples show passing passwords on the command line (exposed to other local processes/system process listings) and the script logs stdout/stderr (which may contain sensitive data). The script also honors allow_agent=True so it may use local SSH agent keys—this is expected but worth noting.
Install Mechanism
This is instruction-only (no installer). The script depends on the paramiko library and will abort if it's missing; recommending 'pip install paramiko' is expected and proportional. No remote downloads, archive extraction, or nonstandard install paths are present.
Credentials
The skill requests no environment variables or credentials from the platform. It operates using credentials you provide at runtime (password or path to a private key) and may use the local SSH agent—these are appropriate for an SSH executor.
Persistence & Privilege
The skill does not request persistent presence (always:false) and does not modify other skills or system-wide agent settings. It runs as an on-demand script and does not write configuration outside normal logging.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install sshexec - After installation, invoke the skill by name or use
/sshexec - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.1
- Updated documentation to correct the usage command paths from "skills/ssh-exec" to "skills/sshexec".
- No code changes were made; this is a documentation update only.
v1.0.0
- Added initial Python implementation (ssh_exec.py) for executing SSH commands on remote servers.
- Supports both password and key-based authentication.
- Includes error handling with detailed messages for failed executions.
- Logs all executed commands and their results for auditing.
- Updated documentation to reflect expanded features and usage instructions.
- Removed legacy file (CLAUDE.md).
Metadata
Frequently Asked Questions
What is sshexec?
A skill to execute SSH commands on remote servers, supporting both password and key-based authentication. It includes error handling and logging for command... It is an AI Agent Skill for Claude Code / OpenClaw, with 447 downloads so far.
How do I install sshexec?
Run "/install sshexec" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is sshexec free?
Yes, sshexec is completely free (open-source). You can download, install and use it at no cost.
Which platforms does sshexec support?
sshexec is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created sshexec?
It is built and maintained by leonard.w (@xlbbb-cn); the current version is v1.0.1.
More Skills