← Back to Skills Marketplace
513
Downloads
2
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install fault-handling
Description
当用户需要故障处理、远程主机执行脚本、服务重启、磁盘清理等运维操作时使用。通过 run-script API 执行脚本,并轮询 execution-history 获取执行结果。
README (SKILL.md)
故障处理 Skill
Overview
用纯 Python 流程完成一次故障处理操作:
- 根据用户提供的主机 IP(或从告警上下文获取)构建执行参数
- 调用
run-scriptAPI 执行脚本 - 轮询
execution-historyAPI 等待执行完成 - 输出执行结果报告
Files
- 主入口:
skills/fault-handling/run_script.py(完全独立,内置签名、请求等工具函数) - 配置文件:
skills/fault-handling/.env
Default Workflow
用户说"故障处理""执行脚本""重启服务""重启 nginx"时,按以下顺序执行:
1. 确认执行参数
必须确认以下信息后才能执行:
- 主机 IP(
ansible_host):从用户提供的 IP、告警上下文、或对话历史中获取。必须至少有一个主机 IP。 - 脚本:默认使用预置脚本
服务重启-nginx服务重启(场景演示)(script_id=187)。用户可指定其他脚本 ID 或脚本内容。 - organize(主机所属组织):可选,默认为空字符串。
如果缺少主机 IP,必须询问用户。
2. 执行脚本
运行:
python3 skills/fault-handling/run_script.py \
--hosts '192.168.3.76' \
--script-id 187
多主机用逗号分隔:
python3 skills/fault-handling/run_script.py \
--hosts '192.168.3.76,192.168.3.75' \
--script-id 187
也可以直接传脚本内容代替脚本 ID:
python3 skills/fault-handling/run_script.py \
--hosts '192.168.3.76' \
--script-type 1 \
--script-content 'systemctl restart nginx'
3. 等待执行完成
脚本内部会:
- 调用
run-scriptAPI 提交任务,获取execution_id - 每 3 秒轮询
execution-historyAPI 检查任务状态 - 任务完成后(
is_running=false)输出 JSON 结果
4. 输出结果
脚本输出 JSON 格式的执行结果,包含:
execution_id: 任务 IDtask_name: 任务名称status: 执行状态(1=成功,2=失败,3=部分成功,4=正在执行)status_label: 状态中文标签consuming: 耗时(秒)steps: 每个步骤的详细输出,包含每台主机的 stdout 和执行状态
5. 向用户汇报
基于执行结果,在回复中给出:
🔧 故障处理执行报告
任务名称:{task_name}
任务ID:{execution_id}
执行状态:{status_label}
执行耗时:{consuming}秒
📋 步骤执行详情
步骤 主机IP 主机名 状态 输出
{step_name} {ansible_host} {host_name} {status} {stdout}
📌 执行结论
● ✅ {成功数}台主机执行成功
● ❌ {失败数}台主机执行失败
API Reference
run-script(执行脚本)
- URL:
/api/v6/devops/run-script - Method: POST
- 参数通过
data字段传递 JSON 字符串
请求参数:
| 参数名 | 必选 | 类型 | 说明 |
|---|---|---|---|
| steps>>hosts | 是 | object[] | 主机数据 |
| steps>>hosts>>ansible_host | 是 | string | 主机IP |
| steps>>hosts>>organize | 是 | string | 主机所属组织 |
| steps>>script_type | 是 | int | 脚本类型[1.shell,2.python,3.playbook,4.powershell,5.network] |
| steps>>script_id | 是 | int/string | 脚本ID,传了脚本ID,以脚本ID对应脚本内容优先 |
返回:{ "code": 0, "data": { "execution_id": 970, "task_name": "..." } }
execution-history(执行历史)
- URL:
/api/v6/devops/execution-history - Method: POST
请求参数:
| 参数名 | 必选 | 类型 | 说明 |
|---|---|---|---|
| execution_id | 是 | int | 任务ID |
返回参数:
| 参数名 | 类型 | 说明 |
|---|---|---|
| is_running | boolean | 任务是否执行中 |
| detail>>status | int | 执行结果[1.成功,2.失败,3.部分成功,4.正在执行] |
| detail>>output | object[] | 步骤输出列表 |
| detail>>output>>hosts | object[] | 每台主机的输出 |
| detail>>output>>hosts>>stdout | string | 输出内容 |
| detail>>output>>hosts>>status | int | 执行状态[1.成功,2.失败,3.部分成功,4.正在执行] |
Preset Scripts
| 脚本名称 | 脚本ID | 脚本类型 | 说明 |
|---|---|---|---|
| 服务重启-nginx服务重启 | 187 | 1 (shell) | nginx服务重启脚本 |
| 主机磁盘空间清理 | 197 | 1 (shell) | 磁盘空间清理脚本 |
Hard Rules
- 这是纯 Python skill。不要调用
node、tsx、index.ts。 - 执行前必须确认主机 IP,不能猜测或使用占位 IP。
run-scriptAPI 的data字段是 JSON 字符串,不是嵌套对象。脚本已处理此序列化。- 轮询
execution-history时最多等待 300 秒(5 分钟),超时则报告任务仍在执行中。 - 不要在脚本执行完成前就声称"执行成功",必须等到轮询结果确认。
- 如果 API 返回错误或
code != 0,必须立即报告错误,不要重试。 - 默认脚本 ID 为 187(nginx 服务重启场景演示),用户可通过参数覆盖。
Configuration
需要以下环境变量:
LWJK_API_URLLWJK_API_SECRET
从 skills/fault-handling/.env 读取。
Common Commands
使用预置脚本执行故障处理:
python3 skills/fault-handling/run_script.py --hosts '192.168.3.76' --script-id 187
指定主机组织:
python3 skills/fault-handling/run_script.py \
--hosts '192.168.3.76' \
--organizes '' \
--script-id 187
仅提交任务不等待结果:
python3 skills/fault-handling/run_script.py \
--hosts '192.168.3.76' \
--script-id 187 \
--no-wait
查询已有任务执行结果:
python3 skills/fault-handling/run_script.py --query 970
Completion Checklist
完成前必须自检:
- 已确认主机 IP 来源合法(用户提供或告警上下文)
- 已成功调用
run-scriptAPI 并获取execution_id - 已轮询
execution-history直到任务完成或超时 - 已向用户展示完整的执行结果报告
- 报告包含每台主机的执行状态和输出内容
- 如果执行失败,已明确说明失败原因
Usage Guidance
This skill appears to do what it says (submit run-script tasks and poll results), but there are two red flags you should consider before installing or using it:
1) Metadata mismatch: The registry metadata claims no required environment variables, but SKILL.md and the script require LWJK_API_URL and LWJK_API_SECRET. That mismatch could be an oversight or a packaging error — confirm with the author.
2) Preconfigured external endpoint: The included .env sets LWJK_API_URL to https://8.lwops.cn/backend_api. If you populate LWJK_API_SECRET or run the skill as-is, host IPs and script content will be sent to that external service. Only use this skill if you trust and control that endpoint. Preferably replace the URL with your own trusted API endpoint or remove the shipped .env.
Practical steps before use:
- Ask the publisher to explain and correct the missing metadata (declare LWJK_API_URL and LWJK_API_SECRET).
- Verify the API endpoint is one you trust and control. If not, edit .env to point to your internal service or leave it blank.
- Do not set LWJK_API_SECRET to any high-privilege credential until you confirm the endpoint's ownership and security posture.
- Test in an isolated environment with non-production hosts and non-sensitive scripts to observe exactly what the skill transmits.
- Consider disabling autonomous invocation for agents that would run this skill, or restrict which agents/users can invoke it, until you are confident about the endpoint and metadata fixes.
If you want, I can draft a short message to the skill author requesting the metadata fix and asking them to justify the default API URL.
Capability Analysis
Type: OpenClaw Skill
Name: fault-handling
Version: 1.0.0
The skill provides remote command execution capabilities on servers managed via a specific third-party DevOps API (https://8.lwops.cn). While the functionality aligns with the stated purpose of 'fault handling' and 'service restarts' in SKILL.md, the run_script.py file allows for the execution of arbitrary shell scripts (via the --script-content argument) on remote hosts. This high-risk capability, combined with the dependency on an external endpoint and the lack of input validation, makes it a significant security risk if the agent is manipulated, although no clear evidence of intentional malice was found.
Capability Assessment
Purpose & Capability
The SKILL.md and run_script.py require LWJK_API_URL and LWJK_API_SECRET to call /api/v6/devops/run-script and execution-history — these are necessary for the described functionality. However, the registry metadata at the top reports "Required env vars: none" and "Primary credential: none", which is inconsistent. The skill also ships a .env file with a pre-filled API URL pointing to https://8.lwops.cn/backend_api, which is not documented in the registry metadata and may be an unexpected external dependency.
Instruction Scope
The instructions explicitly direct the agent to collect host IPs (from user input, alert context, or conversation history) and send them (plus script content/IDs) to the remote API. That behavior is exactly the skill's purpose but also means potentially sensitive data (host IPs, script content) will be transmitted to the configured API endpoint. The SKILL.md enforces confirmation of hosts before running, which is good, but it gives broad discretion to pull IPs from context — a potential source of accidental data exposure if not carefully controlled.
Install Mechanism
Instruction-only skill with no install spec. No code is downloaded at install time. The included Python script is self-contained; there is no external install mechanism to review.
Credentials
Requesting an API URL and secret (LWJK_API_URL, LWJK_API_SECRET) is proportionate for a remote-run service, but the package metadata didn't declare these required env vars (mismatch). Additionally, the shipped .env contains a preconfigured API URL pointing to an external domain (https://8.lwops.cn/backend_api). That default external endpoint is potentially sensitive because any host IPs, script contents, or other task data will be sent there when the secret is populated. The skill asks for a SECRET environment variable (sensitive) with no provenance or trust information.
Persistence & Privilege
Skill does not request persistent 'always' inclusion and does not modify other skills or system-wide settings. It reads a local .env and environment variables — normal for an API client — and runs only when invoked.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install fault-handling - After installation, invoke the skill by name or use
/fault-handling - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release of the fault-handling skill.
- Provides automated remote fault handling, including script execution, service restart, and disk cleanup, via API.
- Confirms required parameters (especially host IP) before execution; prompts user if missing.
- Uses pure Python for all operations; no Node.js or TypeScript dependencies.
- Submits jobs with `run-script` API, polls `execution-history` for results (with 5-minute timeout).
- Outputs a detailed JSON execution report, including per-host status and logs.
- Handles API errors explicitly and displays clear user-facing reports for all results.
Metadata
Frequently Asked Questions
What is Lerwee Fault Handling?
当用户需要故障处理、远程主机执行脚本、服务重启、磁盘清理等运维操作时使用。通过 run-script API 执行脚本,并轮询 execution-history 获取执行结果。 It is an AI Agent Skill for Claude Code / OpenClaw, with 513 downloads so far.
How do I install Lerwee Fault Handling?
Run "/install fault-handling" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Lerwee Fault Handling free?
Yes, Lerwee Fault Handling is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Lerwee Fault Handling support?
Lerwee Fault Handling is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Lerwee Fault Handling?
It is built and maintained by Lerwee (@lerwee); the current version is v1.0.0.
More Skills