← 返回 Skills 市场
zhaozewen0519

1password.Bak

作者 zhaozewen0519 · GitHub ↗ · v1.0.0 · MIT-0
cross-platform ⚠ suspicious
197
总下载
0
收藏
1
当前安装
1
版本数
在 OpenClaw 中安装
/install 1password-bak
功能描述
Set up and use 1Password CLI (op). Use when installing the CLI, enabling desktop app integration, signing in (single or multi-account), or reading/injecting/...
使用说明 (SKILL.md)

1Password CLI

Follow the official CLI get-started steps. Don't guess install commands.

References

  • references/get-started.md (install + app integration + sign-in flow)
  • references/cli-examples.md (real op examples)

Workflow

  1. Check OS + shell.
  2. Verify CLI present: op --version.
  3. Confirm desktop app integration is enabled (per get-started) and the app is unlocked.
  4. REQUIRED: create a fresh tmux session for all op commands (no direct op calls outside tmux).
  5. Sign in / authorize inside tmux: op signin (expect app prompt).
  6. Verify access inside tmux: op whoami (must succeed before any secret read).
  7. If multiple accounts: use --account or OP_ACCOUNT.

REQUIRED tmux session (T-Max)

The shell tool uses a fresh TTY per command. To avoid re-prompts and failures, always run op inside a dedicated tmux session with a fresh socket/session name.

Example (see tmux skill for socket conventions, do not reuse old session names):

SOCKET_DIR="${CLAWDBOT_TMUX_SOCKET_DIR:-${TMPDIR:-/tmp}/clawdbot-tmux-sockets}"
mkdir -p "$SOCKET_DIR"
SOCKET="$SOCKET_DIR/clawdbot-op.sock"
SESSION="op-auth-$(date +%Y%m%d-%H%M%S)"

tmux -S "$SOCKET" new -d -s "$SESSION" -n shell
tmux -S "$SOCKET" send-keys -t "$SESSION":0.0 -- "op signin --account my.1password.com" Enter
tmux -S "$SOCKET" send-keys -t "$SESSION":0.0 -- "op whoami" Enter
tmux -S "$SOCKET" send-keys -t "$SESSION":0.0 -- "op vault list" Enter
tmux -S "$SOCKET" capture-pane -p -J -t "$SESSION":0.0 -S -200
tmux -S "$SOCKET" kill-session -t "$SESSION"

Guardrails

  • Never paste secrets into logs, chat, or code.
  • Prefer op run / op inject over writing secrets to disk.
  • If sign-in without app integration is needed, use op account add.
  • If a command returns "account is not signed in", re-run op signin inside tmux and authorize in the app.
  • Do not run op outside tmux; stop and ask if tmux is unavailable.
安全使用建议
This skill is coherent for installing and using the 1Password CLI. Before installing or running it: 1) verify you trust the Homebrew formula source (official 1Password/Homebrew tap), 2) run the sign-in steps in an isolated environment so you don't accidentally expose secrets to logs or shared tmux sockets, and 3) prefer op inject/op run patterns over printing secrets to the terminal. Be cautious with the SKILL.md's capture-pane step — it can capture output that might accidentally include sensitive data; modify or omit that capture if you will run commands that print secrets.
功能分析
Type: OpenClaw Skill Name: 1password-bak Version: 1.0.0 The skill mandates wrapping all 1Password CLI (op) operations within tmux sessions and using 'capture-pane' to retrieve output (SKILL.md), which is a high-risk pattern that can lead to sensitive credentials being inadvertently stored in tmux buffers and agent logs. It also specifies a hardcoded socket directory in /tmp (/tmp/clawdbot-tmux-sockets) without explicit permission hardening, which could allow local session hijacking. While these appear to be technical workarounds for non-interactive shell limitations, the combination of complex session management and secret handling is inherently risky.
能力评估
Purpose & Capability
Name/description: 1Password CLI setup and usage. Declared requirement: op binary and an install path via Homebrew formula '1password-cli' which produces the 'op' binary — this is exactly what the skill needs and nothing extraneous is requested.
Instruction Scope
SKILL.md is instruction-only and stays on-task (install/enable app integration, signin, run/read/inject secrets). It requires running op inside a fresh tmux session and even captures the pane output; while reasonable to automate sign-in checks, capture-pane can include sensitive terminal output if secrets are printed. The file also references env vars like CLAWDBOT_TMUX_SOCKET_DIR and OP_ACCOUNT (typical but not declared). Follow the guardrails (do not print secrets, prefer op inject/run) and avoid capturing commands that emit secrets.
Install Mechanism
Install spec uses Homebrew formula '1password-cli' to provide the 'op' binary. This is a standard, low-risk package source for macOS/Linux that is proportionate to the stated purpose.
Credentials
The skill declares no required credentials or config paths. Its occasional references to common env vars (OP_ACCOUNT, TMPDIR-like variables, CLAWDBOT_TMUX_SOCKET_DIR) are operational conveniences, not secret requests. No unrelated credentials or high-privilege environment access are requested.
Persistence & Privilege
always is false and the skill is user-invocable. It does not request persistent/system-wide changes or cross-skill configuration. Autonomous invocation is allowed (platform default) but not combined with other red flags.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install 1password-bak
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /1password-bak 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release of 1password-bak skill. - Guides setup and use of 1Password CLI (op), including installation and account sign-in. - Enforces use of a dedicated tmux session for all CLI operations, with detailed workflow. - Includes references for get-started steps and real CLI examples. - Built-in guardrails to protect secrets and ensure secure CLI usage. - Brew-based installation instructions provided.
元数据
Slug 1password-bak
版本 1.0.0
许可证 MIT-0
累计安装 3
当前安装数 1
历史版本数 1
常见问题

1password.Bak 是什么?

Set up and use 1Password CLI (op). Use when installing the CLI, enabling desktop app integration, signing in (single or multi-account), or reading/injecting/... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 197 次。

如何安装 1password.Bak?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install 1password-bak」即可一键安装,无需额外配置。

1password.Bak 是免费的吗?

是的,1password.Bak 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。

1password.Bak 支持哪些平台?

1password.Bak 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 1password.Bak?

由 zhaozewen0519(@zhaozewen0519)开发并维护,当前版本 v1.0.0。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论