← Back to Skills Marketplace
Allow your claws to do things remotely on a Desktop machine via MCP
by
wentbackward
· GitHub ↗
· v1.0.1
· MIT-0
133
Downloads
1
Stars
0
Active Installs
2
Versions
Install in OpenClaw
/install remote-claws
Description
Full remote desktop control of a machine via Remote Claws MCP. Use when asked to: take a screenshot of the remote desktop; click, type, or drag with the mous...
Usage Guidance
This skill is coherent: it provides remote-desktop, browser automation, command execution, and file operations as advertised. That also means it is very powerful — if misused it can run commands and read/write files on the remote machine. Before installing: (1) Confirm you trust the Remote Claws MCP server you register (verify the server hostname, repository, and operator). (2) Ensure the bearer token referenced in openclaw.json is stored securely and that you understand which account/permissions it grants. (3) Configure per-tool permissions (permissions.json) and IP/host allowlists on the MCP server to limit what the agent can do. (4) Consider disabling autonomous invocation for this skill or require explicit user consent for actions that run commands or access files. (5) If you cannot verify the remote server and its operator, do not enable this skill.
Capability Analysis
Type: OpenClaw Skill
Name: remote-claws
Version: 1.0.1
The skill provides high-privilege remote administration capabilities, including arbitrary command execution (exec_run), full file system access (file_read, file_write), and remote desktop monitoring (desktop_screenshot). While these tools are aligned with the stated purpose of 'Remote Claws' for remote machine control, they represent significant security risks such as Remote Code Execution (RCE) and data exfiltration if misused or targeted by prompt injection. No explicit evidence of intentional malice was found in SKILL.md, but the broad access granted is inherently high-risk.
Capability Assessment
Purpose & Capability
The name and description promise full remote-desktop control and the SKILL.md documents desktop, browser, exec, and file tools that exactly match that purpose. There are no unrelated environment variables, binaries, or install steps requested that would be unexpected for a remote-control skill.
Instruction Scope
The instructions tell the agent to take screenshots, click/type, run arbitrary commands, and read/write files on the remote machine — all expected for full remote-control functionality. They do not instruct the agent to read local host secrets or unrelated system files. Note: the skill assumes use of an MCP/SSE-connected remote-claws server and references configuration in openclaw.json (bearer token), which is outside the skill file itself.
Install Mechanism
Instruction-only skill with no install steps and no code files. This is the lowest install risk: nothing is downloaded or written by the skill itself.
Credentials
The skill declares no required environment variables or credentials in the registry metadata, which is consistent with being an instruction-only skill. However, the SKILL.md states the MCP server requires a bearer token configured in openclaw.json and may use allowlists and per-tool permissions. That configuration is external to the skill and not declared as a required env var — you should verify how and where that token is stored and that it is not leaked.
Persistence & Privilege
always:false and user-invocable:true (default) — the skill will not be forced into every agent run. disable-model-invocation is false, so the agent may call the skill autonomously. Given the high-power nature of remote-control tools (commands, files, screen), you should consider whether autonomous invocation is acceptable in your deployment and enforce per-tool permissions on the MCP server.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install remote-claws - After installation, invoke the skill by name or use
/remote-claws - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.1
- Updated SKILL.md and bundle contents to explain the auth and security built in.
v1.0.0
- Initial release.
Metadata
Frequently Asked Questions
What is Allow your claws to do things remotely on a Desktop machine via MCP?
Full remote desktop control of a machine via Remote Claws MCP. Use when asked to: take a screenshot of the remote desktop; click, type, or drag with the mous... It is an AI Agent Skill for Claude Code / OpenClaw, with 133 downloads so far.
How do I install Allow your claws to do things remotely on a Desktop machine via MCP?
Run "/install remote-claws" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Allow your claws to do things remotely on a Desktop machine via MCP free?
Yes, Allow your claws to do things remotely on a Desktop machine via MCP is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Allow your claws to do things remotely on a Desktop machine via MCP support?
Allow your claws to do things remotely on a Desktop machine via MCP is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Allow your claws to do things remotely on a Desktop machine via MCP?
It is built and maintained by wentbackward (@wentbackward); the current version is v1.0.1.
More Skills