← Back to Skills Marketplace
391
Downloads
1
Stars
0
Active Installs
2
Versions
Install in OpenClaw
/install cs-relogin
Description
Fast OpenAI Codex account switch for OpenClaw via the local cs command. Use when user sends `cs relogin`, asks to re-login or switch ChatGPT Codex account, o...
README (SKILL.md)
CS Relogin Skill
Use this skill to perform OpenAI Codex account switching without openclaw onboard.
Hard rules
- Always execute
csdirectly, never callopenclaw onboardfor this task. - Keep flow non-interactive.
- If user provided a callback URL/code, do completion step immediately.
Workflow
-
If user input is exactly
cs relogin:- Run:
cs relogin - Return the login URL from command output.
- Ask user to finish browser auth and paste callback URL.
- Run:
-
If user input contains callback URL/code:
- Run:
cs relogin "\x3Ccallback-url-or-code>" - Return key result lines:
- relogin completed status
- gateway restart status
- active profile/account summary
- Run:
-
If user asks status/debug:
- Run:
cs relogin status cs status - Summarize pending state and active account.
- Run:
Output format
- Keep response concise and actionable.
- Include exact next command when another step is needed.
- Never expose full tokens/secrets.
- On command failure, include raw cs stderr first (do not guess the reason).
Acknowledgement rule (MUST)
- Every successful action must have an explicit acknowledgement (回执) to the user.
- Minimum acknowledgement content:
- what was executed (e.g.
cs relogin,cs relogin \x3Ccallback>,cs status) - whether it succeeded
- current state summary (pending relogin / active account)
- what was executed (e.g.
- If command output is missing or tool callback is flaky, immediately run:
then send acknowledgement based on those results.cs relogin status cs status - Never end silently after command execution.
Usage Guidance
This skill is coherent: it simply automates calls to your local `cs` CLI to switch/relogin Codex accounts. Before using it, ensure you trust the local `cs` binary and the environment where the agent runs. Do not paste full callback URLs or tokens into chat unless you understand they may be used as command arguments (these can appear in process lists or stderr). If you're uncomfortable, run `cs relogin` and the callback completion manually in a terminal instead of via the agent. If the agent reports raw stderr on failure, inspect it locally before sharing to avoid accidental secret disclosure.
Capability Analysis
Type: OpenClaw Skill
Name: cs-relogin
Version: 1.1.2
The skill is suspicious due to a critical shell injection vulnerability. In `SKILL.md`, Workflow step 2 instructs the AI agent to directly embed user-provided input (`<callback-url-or-code>`) into a `bash` command string (`cs relogin "<callback-url-or-code>"`). Without explicit sanitization or robust quoting by the agent or the underlying `Bash` tool, a malicious user could inject arbitrary shell commands, potentially leading to Remote Code Execution (RCE). This is a significant vulnerability, not evidence of intentional malice.
Capability Assessment
Purpose & Capability
Name/description match the runtime instructions: the skill only tells the agent to run the local `cs` command for relogin, status, and callback completion. It declares no unrelated env vars, binaries, or installs.
Instruction Scope
Instructions are narrowly scoped to invoking `cs relogin`, `cs relogin "<callback>"`, and `cs status`. However, the skill explicitly instructs the agent to include raw cs stderr on failures and to accept/paste callback URLs. Those actions are necessary for relogin but can expose sensitive tokens if the callback URL or stderr contain secrets; the SKILL.md does include a rule to never expose full tokens, but returning raw stderr may still leak sensitive data in some cases.
Install Mechanism
Instruction-only skill with no install steps and no code files — nothing is written to disk by the skill itself.
Credentials
The skill requests no environment variables or credentials, and only uses the local `cs` CLI. This is proportionate. Caveat: completing OAuth requires pasting a callback URL (which can contain tokens) as a command argument; placing secrets on the command line or returning raw stderr can expose them to local process listings or chat outputs.
Persistence & Privilege
`always` is false and there is no requested permanent presence or modification of other skills or global config. The skill runs only on explicit invocation or normal autonomous invocation rules.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install cs-relogin - After installation, invoke the skill by name or use
/cs-relogin - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.1.2
compliance hardening: no automatic proxy fallback; proxy only via explicit CHATGPTSWITCH_PROXY; docs updated
v1.1.1
self-contained scripts; write requires --apply; restart opt-in; installer pinned to v1.1.1
Metadata
Frequently Asked Questions
What is CS Relogin?
Fast OpenAI Codex account switch for OpenClaw via the local cs command. Use when user sends `cs relogin`, asks to re-login or switch ChatGPT Codex account, o... It is an AI Agent Skill for Claude Code / OpenClaw, with 391 downloads so far.
How do I install CS Relogin?
Run "/install cs-relogin" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is CS Relogin free?
Yes, CS Relogin is completely free (open-source). You can download, install and use it at no cost.
Which platforms does CS Relogin support?
CS Relogin is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created CS Relogin?
It is built and maintained by Ajun (@anjun); the current version is v1.1.2.
More Skills