← Back to Skills Marketplace
374
Downloads
0
Stars
2
Active Installs
2
Versions
Install in OpenClaw
/install openclaw-sandbox
Description
OpenClaw 沙盒测试系统 v2.0 - 零风险配置变更测试,9 层防护 +5 原则,自动备份回滚,Git 版本管理
Usage Guidance
This skill appears to implement a useful sandbox workflow for OpenClaw, but review the scripts before running them. Specifically: 1) Inspect templates/safe-try.sh and templates/apply-config.sh to ensure the openclaw commands, ports, and the sandbox token are acceptable for your environment. 2) Remove or change the enabled plugin ('feishu-openclaw-plugin') if you don't want sandbox to load external integrations — that plugin may need credentials not declared by the skill. 3) Fix the hard-coded user path in scripts/cleanup-env.sh (/Users/wh1ko) — it will mis-restore HOME on other machines; prefer restoring HOME from the parent shell or documenting the expected username. 4) Run the sandbox first on an isolated test machine or non-critical account, confirm the backup/rollback process works, and only then use apply-config.sh on production. 5) Because the scripts start a background gateway, ensure you understand how to stop it (PID file location) and verify logs before applying changes to production.
Capability Analysis
Type: OpenClaw Skill
Name: openclaw-sandbox
Version: 2.0.0
The skill bundle provides a sandbox for OpenClaw configuration testing but contains high-risk environment manipulation and poor portability. Specifically, `scripts/cleanup-env.sh` hardcodes a specific developer's path (`/Users/wh1ko`) and attempts to force the `$HOME` variable to it, which would disrupt the shell environment for any other user. While the scripts in `templates/` include backup and validation logic, the aggressive modification of core environment variables and the execution of background processes via `nohup` in `templates/safe-try.sh` represent risky behaviors that could lead to system instability if used outside the original developer's specific environment.
Capability Assessment
Purpose & Capability
The name/description (sandbox for OpenClaw config testing) match the code: scripts create a temporary sandbox, validate configs, start a gateway, backup and apply production configs. Nothing requests unrelated cloud credentials or exotic binaries. One surprising item: the sandbox config enables a 'feishu-openclaw-plugin' in templates/safe-try.sh; allowing a plugin that may require external credentials is not obviously necessary for a generic sandbox and the skill does not declare any plugin-related environment variables or creds.
Instruction Scope
The runtime instructions and included shell scripts manipulate environment variables (export OPENCLAW_HOME and HOME), create files under $HOME and /tmp, start a background gateway process, and provide an apply-to-production flow that runs openclaw gateway restart. The scripts are explicit about these actions (not stealthy), but they also embed a hard-coded user path (/Users/wh1ko) in scripts/cleanup-env.sh and assume behaviours (e.g., restoring HOME to that path). cleanup-env.sh and the SKILL.md do not make it clear when or whether users should run cleanup-env.sh automatically. The presence of a configured plugin (feishu-openclaw-plugin) and an in-cleartext sandbox token in the example config are also things a user should validate.
Install Mechanism
There is no install spec (instruction-only), so no network downloads or opaque installers are performed by the skill itself. The code files are plain shell scripts bundled in the skill — lower risk than a remote install URL. The platform will write these files into the skill path when installed, which is expected.
Credentials
The skill does not request credentials or env vars in metadata (good), but the scripts actively set and unset OPENCLAW_HOME and temporarily change HOME for the gateway process. cleanup-env.sh unconditionally sets HOME back to '/Users/wh1ko' if HOME differs, which is a hard-coded developer path and not proportional to a general-purpose skill; running that script on other machines could mis-set HOME. Also, enabling 'feishu-openclaw-plugin' in the sandbox config may implicitly require Feishu credentials not declared by the skill.
Persistence & Privilege
The skill is not always:true and does not request elevated platform privileges. It writes files into the user's skill directory, $HOME/.openclaw/backups, and /tmp for sandbox state — expected for a sandbox tool. It does start a background process (openclaw gateway) in the user's context, which is expected behavior but worth noting before launch.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install openclaw-sandbox - After installation, invoke the skill by name or use
/openclaw-sandbox - Provide required inputs per the skill's parameter spec and get structured output
Version History
v2.0.0
v2.0.0: 新增 9 层防护体系、配置安全 5 原则、4 个污染问题案例
v1.0.0
OpenClaw 沙盒测试系统 - 1.0.0
- 首次发布,提供 OpenClaw 配置变更的零风险沙盒测试环境
- 支持自动备份与一键回滚,集成 Git 版本管理
- 提供针对不同变更量的操作脚本(小改动/大改动)
- 包含详尽的快速开始说明及端口配置说明
- 完善的文件结构及安全扫描报告
Metadata
Frequently Asked Questions
What is OpenClaw 沙盒测试系统?
OpenClaw 沙盒测试系统 v2.0 - 零风险配置变更测试,9 层防护 +5 原则,自动备份回滚,Git 版本管理. It is an AI Agent Skill for Claude Code / OpenClaw, with 374 downloads so far.
How do I install OpenClaw 沙盒测试系统?
Run "/install openclaw-sandbox" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is OpenClaw 沙盒测试系统 free?
Yes, OpenClaw 沙盒测试系统 is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does OpenClaw 沙盒测试系统 support?
OpenClaw 沙盒测试系统 is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created OpenClaw 沙盒测试系统?
It is built and maintained by wh1ko (@zoopools); the current version is v2.0.0.
More Skills