← Back to Skills Marketplace
1810
Downloads
0
Stars
3
Active Installs
2
Versions
Install in OpenClaw
/install mcp-ssh-manager
Description
This skill should be used when the user asks to "run ssh command", "execute on server", "ssh session", "upload file", "download file", "ssh tunnel", "check server status", "monitor server", "deploy files", "backup server", or needs remote server management. This skill emphasizes session reuse, workdir organization, and content persistence for sustainable operations.
Usage Guidance
Before installing, verify the skill's source and how the ssh_* tools are provided (is there an external 'mcp-ssh-manager' service you must run?). Review the three included scripts to ensure they don't exfiltrate data or run unexpected network calls. Be aware the skill will write command outputs and host snapshots to ~/.ssh-workdir — inspect those outputs regularly and avoid storing sensitive data there. Confirm how SSH authentication will occur (SSH keys/agent), and consider restricting model-triggered use (disableModelInvocation) or running the skill in a sandbox until you trust it. If you can't verify the upstream project/homepage or the origin of the ssh_* helpers, treat this package as untrusted.
Capability Analysis
Type: OpenClaw Skill
Name: mcp-ssh-manager
Version: 0.1.1
The skill provides extensive remote server management capabilities, including arbitrary command execution (`ssh_execute`, `ssh_session_send`), file transfer (`ssh_upload`, `ssh_download`, `ssh_sync`), and network tunneling (`ssh_tunnel_create`), as detailed in `SKILL.md` and `examples/*.md`. While these capabilities are aligned with the stated purpose of an SSH manager, they are inherently high-risk. The local shell scripts (`scripts/*.sh`) are benign, primarily managing local workdir files and not performing network calls or accessing sensitive local data. There is no clear evidence of intentional malicious behavior, prompt injection attempts against the agent, data exfiltration, or obfuscation within the provided files, but the powerful nature of the remote execution and file transfer functions warrants a 'suspicious' classification due to the significant inherent risk.
Capability Assessment
Purpose & Capability
The skill's name and description match SSH management. However, the runtime instructions reference custom CLI tools (ssh_execute, ssh_session_start, ssh_upload, etc.) and standard operations (ssh, scp, tar, git, pm2) without declaring any required binaries or credentials. The package contains helper scripts for creating a workdir and logging, but does not provide or install the external 'mcp ssh-manager' server or explain how the ssh_* tools are made available. That mismatch (claims to provide/manage servers but no install, no required binaries, no primary credential) is incoherent.
Instruction Scope
SKILL.md instructs the agent to run arbitrary remote commands, create persistent sessions, transfer files, and save command outputs and host snapshots under ~/.ssh-workdir. Those behaviors are expected for an SSH manager, but they also permit capturing and storing arbitrary remote output (which may include secrets), and running any command on remote hosts. The instructions are broad and rely on external tooling and existing SSH auth; they also implicitly assume access to the user's SSH agent/keys.
Install Mechanism
There is no install spec (instruction-only), which minimizes arbitrary remote downloads. The repo includes three small scripts (create-workdir.sh, log-command.sh, save-status.sh) that manage local logs/workdirs. Not having an install step reduces installer risk, but it increases ambiguity about where the referenced ssh_* tools come from.
Credentials
The skill declares no required environment variables or credentials, yet its functionality implicitly requires SSH authentication (private keys, agent, or credentials) and uses standard system tools. The lack of explicit credential requirements is surprising: the skill will depend on the user's existing SSH keys/config and will store outputs locally. This implicit access should be made explicit so users know what will be used or exposed.
Persistence & Privilege
The skill persists command logs, outputs, and status snapshots under ~/.ssh-workdir. Persisting remote outputs locally is reasonable for auditing, but it increases the risk of storing sensitive data (passwords, tokens, config) without explicit safeguards. The skill does not set always:true, but also does not disable model invocation — meaning the agent could invoke these behaviors when the skill is eligible. Combined with the ability to run arbitrary remote commands, that is a noteworthy privilege.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install mcp-ssh-manager - After installation, invoke the skill by name or use
/mcp-ssh-manager - Provide required inputs per the skill's parameter spec and get structured output
Version History
v0.1.1
- Added attribution at the top of SKILL.md linking to the original mcp-ssh-manager repository and author.
- Clarified that the skill provides documentation, workflows, and best practices for MCP ssh-manager usage.
- No changes to functionality or commands; content and usage examples remain the same.
- Version unchanged in SKILL.md and metadata.
v0.1.0
Initial release of mcp-ssh-manager.
- Provides tools for remote SSH server management, including command execution, session handling, file transfer, monitoring, tunneling, and backup.
- Emphasizes session reuse, organized workdir usage, and content persistence for efficient and sustainable operations.
- Includes detailed usage reference tables and examples for common server management tasks.
- Documents best practices for session lifecycle management and workdir structure.
Metadata
Frequently Asked Questions
What is MCP SSH Manager?
This skill should be used when the user asks to "run ssh command", "execute on server", "ssh session", "upload file", "download file", "ssh tunnel", "check server status", "monitor server", "deploy files", "backup server", or needs remote server management. This skill emphasizes session reuse, workdir organization, and content persistence for sustainable operations. It is an AI Agent Skill for Claude Code / OpenClaw, with 1810 downloads so far.
How do I install MCP SSH Manager?
Run "/install mcp-ssh-manager" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is MCP SSH Manager free?
Yes, MCP SSH Manager is completely free (open-source). You can download, install and use it at no cost.
Which platforms does MCP SSH Manager support?
MCP SSH Manager is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created MCP SSH Manager?
It is built and maintained by iMaxTomas (@imaxtomas); the current version is v0.1.1.
More Skills