← Back to Skills Marketplace
280
Downloads
0
Stars
4
Active Installs
1
Versions
Install in OpenClaw
/install openclaw-github-assistant-2-0-1
Description
Query and manage GitHub repositories - list repos, check CI status, create issues, search repos, and view recent activity.
README (SKILL.md)
GitHub Integration Skill
Query and manage GitHub repositories directly from your AI assistant.
Capabilities
| Capability | Description |
|---|---|
list_repos |
List your repositories with filters |
get_repo |
Get detailed info about a specific repo |
check_ci_status |
Check CI/CD pipeline status |
create_issue |
Create a new issue in a repo |
create_repo |
Create a new repository |
search_repos |
Search your repositories |
get_recent_activity |
Get recent commits |
Usage
You: List my Python repos
Bot: [lists your Python repositories]
You: Check CI status on my main project
Bot: [shows CI/CD status]
You: Create an issue about the bug
Bot: [creates the issue]
Setup
1. Generate GitHub Personal Access Token
- Go to https://github.com/settings/tokens
- Click "Generate new token (classic)"
- Name:
openclaw-github-skill - Scopes:
repo(required),read:user(optional) - Copy the token
2. Configure Credentials
Option A: Environment Variables (Recommended)
Set environment variables before starting OpenClaw:
export GITHUB_TOKEN="ghp_your_token_here"
export GITHUB_USERNAME="your_github_username"
Option B: OpenClaw Config
Add to ~/.openclaw/openclaw.json:
{
"github": {
"token": "ghp_your_token_here",
"username": "your_username"
}
}
3. Restart OpenClaw
openclaw gateway restart
Security Notes
⚠️ Protect Your Token:
- Never commit your token to git or share it publicly
- Use the minimal required scopes (
repofor private repos,public_repofor public-only) - Rotate your token if you suspect it was compromised
- Consider using a secrets manager for production use
⚠️ Best Practices:
- Don't store tokens in shell profiles (~/.zshrc) on shared machines
- For local development, environment variables are acceptable
- For production, use your platform's secret/credential store
Rate Limits
- Unauthenticated requests: 60/hour
- Authenticated requests: 5,000/hour
Requirements
- OpenClaw gateway running
- GitHub Personal Access Token with appropriate scopes
Usage Guidance
This skill appears to do what it says: it calls the GitHub REST API and uses GITHUB_TOKEN and GITHUB_USERNAME from env or OpenClaw config. Before installing: (1) Verify the source — registry metadata and package.json have slightly inconsistent version/owner info and the 'source' was listed as unknown; prefer installing skills from a confirmed repository/maintainer. (2) Limit token scopes — only grant 'repo' if you need write access to private repos; otherwise use 'public_repo' or narrower scopes. (3) Store the token in a secrets manager or OpenClaw config with proper filesystem protections; avoid committing it. (4) You can review the included JS files locally (api.js, index.js, test.js) — they only contact api.github.com; test.js imports child_process.execSync but does not execute shell commands in the provided code. (5) If you want higher assurance, ask the publisher for the canonical repository URL or a signed release so you can validate integrity before use.
Capability Analysis
Type: OpenClaw Skill
Name: openclaw-github-assistant-2-0-1
Version: 1.0.0
The skill bundle provides legitimate GitHub repository management capabilities, including listing repositories, checking CI status, and creating issues/PRs. All network requests are directed to the official GitHub API (api.github.com), and sensitive credentials (GitHub tokens) are handled through standard environment variables or configuration files. No evidence of malicious intent, data exfiltration, or prompt injection was found across the code (api.js, index.js) or documentation (SKILL.md).
Capability Assessment
Purpose & Capability
Name/description align with requested env vars (GITHUB_TOKEN, GITHUB_USERNAME) and with code that calls api.github.com. Required config paths (github.token, github.username) and the documented scopes (repo/public_repo) match the stated features (list repos, create issues, check CI, etc.).
Instruction Scope
SKILL.md only instructs setting GitHub credentials and restarting OpenClaw and documents behavior tied to GitHub. It does not direct reading unrelated files or transmitting data to unexpected endpoints. Note: the package is not truly 'instruction-only' — code files (index.js, api.js, test.js, etc.) are included even though the registry metadata declared 'No install spec — this is an instruction-only skill.'
Install Mechanism
There is no install spec (no downloads or external installers); the skill ships JavaScript files and a package.json. This is low-risk compared to arbitrary downloads. The network calls in code are all to api.github.com.
Credentials
The skill only requires GITHUB_TOKEN and GITHUB_USERNAME (and corresponding config entries). That is proportionate. Be aware the README/SKILL.md suggests 'repo' scope for private-repo functionality — that scope grants broad repo control; if you only need public info, prefer 'public_repo' or more limited scopes and use a secrets manager.
Persistence & Privilege
The skill does not request always:true and does not modify other skills or system-wide settings. Default autonomous invocation is allowed (platform default) but not combined with other elevated privileges.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install openclaw-github-assistant-2-0-1 - After installation, invoke the skill by name or use
/openclaw-github-assistant-2-0-1 - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release of the GitHub integration skill:
- Query and manage GitHub repositories: list, search, and view details.
- Check CI/CD pipeline status for repositories.
- Create new repositories and issues directly.
- View recent commit activity on repositories.
- Easy setup using environment variables or configuration file.
- Detailed security and usage instructions included.
Metadata
Frequently Asked Questions
What is Openclaw Github Assistant 2.0.1?
Query and manage GitHub repositories - list repos, check CI status, create issues, search repos, and view recent activity. It is an AI Agent Skill for Claude Code / OpenClaw, with 280 downloads so far.
How do I install Openclaw Github Assistant 2.0.1?
Run "/install openclaw-github-assistant-2-0-1" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Openclaw Github Assistant 2.0.1 free?
Yes, Openclaw Github Assistant 2.0.1 is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Openclaw Github Assistant 2.0.1 support?
Openclaw Github Assistant 2.0.1 is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Openclaw Github Assistant 2.0.1?
It is built and maintained by gyzx (@gyzx); the current version is v1.0.0.
More Skills