← 返回 Skills 市场
deanshak

Akeyless IO

作者 deanshak · GitHub ↗ · v1.0.0 · MIT-0
cross-platform ✓ 安全检测通过
134
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install akeyless
功能描述
Akeyless Secrets Management via the official akeyless CLI — install, configure profiles, gateway routing, and safe read/list operations. Use when the user me...
使用说明 (SKILL.md)

Akeyless CLI

Teach the agent to use the official Akeyless CLI on the same machine as the OpenClaw gateway. Do not invent URLs, regions, or auth flows—defer to docs and akeyless \x3Ccmd> -h.

References

Load when details are needed:

  • references/cli-notes.md — install (macOS/Linux), profiles, gateway env, list-items, precedence, safety

Prerequisites

  1. akeyless on PATH (akeyless --version).
  2. A configured profile (akeyless configure or ~/.akeyless/profiles/). Auth is not done through chat—user runs configure locally.
  3. For private gateways: AKEYLESS_GATEWAY_URL (and TLS trust PEM if required)—see references.

Workflow

  1. Confirm CLI: akeyless --version / which akeyless.
  2. If commands fail with auth errors: user must fix profile or gateway URL outside the agent; suggest akeyless configure or env vars from references—never ask them to paste Access Keys into chat.
  3. Prefer read-only checks first: akeyless list-items --minimal-view or akeyless list-items --path '\x3Cfolder>' --minimal-view (paths are org-specific).
  4. For JSON: akeyless list-items --jsonsummarize; do not dump large payloads or possible secret fields into chat.
  5. Region / tenant: do not assume only vault.akeyless.io; follow account and org docs.

OpenClaw-specific

  • Skills live under the agent workspace, e.g. ~/.openclaw/workspace/skills/akeyless/. User enables akeyless in Skills and restarts the gateway after changes.
  • Shell commands run as the gateway host user; that user must have working akeyless credentials.

Guardrails

  • Never paste or request Access Keys, API keys, or secret values in chat, logs, or repos.
  • Least-privilege: only commands the user’s role allows; if access denied, point to Akeyless role and folder path, not “retry with more secret text.”
  • Do not commit ~/.akeyless/ or paste profile TOML into threads.

Contrast with 1Password (op)

Akeyless uses akeyless + profiles + optional AKEYLESS_GATEWAY_URL. There is no 1Password-style desktop app unlock in this workflow.

安全使用建议
This skill appears coherent and implements an interface to the official Akeyless CLI. Before installing: confirm you trust the Homebrew tap (akeylesslabs/tap), run the CLI and configure profiles locally (do not paste keys into chat), and be aware that any CLI commands executed by the agent run as the gateway host user and can access ~/.akeyless profiles and any credentials stored there. Limit the agent/gateway user's privileges and ensure profiles are created/configured outside of chat. If you need the agent to list or summarize secrets, prefer read-only commands and request redaction of any secret fields.
功能分析
Type: OpenClaw Skill Name: akeyless Version: 1.0.0 The akeyless skill bundle provides a legitimate interface for the official Akeyless CLI, focusing on secrets management. It includes strong security guardrails in SKILL.md and references/cli-notes.md, explicitly instructing the agent never to request or display secret values, access keys, or profile contents in the chat, and relies on the user to perform authentication locally.
能力评估
Purpose & Capability
Name/description, required binary (akeyless), and install (Homebrew formula akeylesslabs/tap/akeyless) all match the stated purpose of driving the Akeyless CLI. No unrelated binaries or credentials are requested.
Instruction Scope
SKILL.md confines the agent to invoking the official CLI (version check, list-items, json output, profile usage) and instructs not to request or paste secrets. It does reference profile files (~/.akeyless/profiles/) and gateway env vars for correct operation — these are relevant to the CLI workflow. The file does not instruct the agent to read unrelated system state or to exfiltrate secrets.
Install Mechanism
Install is via a Homebrew tap formula (akeylesslabs/tap/akeyless), a standard package source for macOS/Linux Homebrew users. This is a low-risk, expected install mechanism for a CLI tool.
Credentials
The skill does not require env vars but properly documents common Akeyless envs (AKEYLESS_GATEWAY_URL, AKEYLESS_TRUSTED_TLS_CERTIFICATE_FILE) and the profiles directory. Access to ~/.akeyless profiles is necessary for the CLI to function — this is proportionate, but it means the agent (running commands on the gateway host) can observe whatever credentials the user has stored there, so care is needed.
Persistence & Privilege
The skill is not always-enabled and is user-invocable; it does not request persistent or global privileges. Autonomous invocation by the model is enabled (platform default) but not combined with any concerning permissions in this package.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install akeyless
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /akeyless 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
# Changelog All notable changes to this OpenClaw skill bundle are documented here. ## [1.0.0] — 2026-03-22 First public release of the **Akeyless IO** OpenClaw skill (drives the official **Akeyless CLI** `akeyless` binary). ### Added — `SKILL.md` - Agent playbook for the official **`akeyless`** CLI on the gateway host. - OpenClaw **`metadata.openclaw`**: emoji, **`requires.bins: ["akeyless"]`**, Homebrew install hint (`akeylesslabs/tap/akeyless`). - Workflow: verify CLI, auth outside chat, read-only checks first, gateway/tenant awareness. - Guardrails: no Access Keys or secret values in chat; JSON summaries without leaking sensitive fields. - OpenClaw-specific notes (workspace `skills/` path, gateway user = CLI user). - Short contrast with the bundled **1Password** skill (`op` vs `akeyless` / profiles / gateway URL). ### Added — `references/cli-notes.md` - Links to Akeyless [CLI](https://docs.akeyless.io/docs/cli), [CLI reference](https://docs.akeyless.io/docs/cli-reference), [authentication methods](https://docs.akeyless.io/docs/access-and-authentication-methods). - Install: **macOS** (Homebrew tap), **Linux** (pointer to official download docs). - Profiles: interactive `configure`, `~/.akeyless/profiles/`, non-interactive API-key example (run outside chat). - **SAML:** `configure` + `auth` with placeholders; **`--use-remote-browser`** for headless/SSH; verification step. - Gateway / SaaS: `AKEYLESS_GATEWAY_URL`, TLS trust PEM env var, region/tenant caution. - **`list-items`:** common read-only examples (`--minimal-view`, `--path`, `--filter`, `-t`, `--json`, pagination). - Flag precedence (CLI → env → profile). - Safety: no committing `~/.akeyless/`; access-denied → role/path/gateway. ### Added — `README.md` - **Purpose:** with-skill vs without-skill; one-sentence mission; how OpenClaw loads and runs the playbook. - **What this skill is not:** table (not hosted, not auto-access, not n8n-style, not a policy substitute). - **Agent guardrails** summary. - **Prerequisites** table (OpenClaw, CLI, Akeyless auth, optional gateway). - **Use cases** (inventory, diagnostics, onboarding, safe summaries). - **Install:** ClawHub (`clawhub install`) and manual copy to `~/.openclaw/workspace/skills/`. - **Example prompts:** smoke tests, inventory variants, named `--profile`, SAML re-auth guidance, post-install checks (`openclaw skills info`, new session). - **Publishing** maintainer steps (`clawhub login`, `clawhub publish`). - **File layout** and links to Akeyless + OpenClaw docs. ### Added — `CHANGELOG.md` - This file (release history for the bundle). ### Notes - The skill **does not** ship credentials or replace Akeyless; users install **`akeyless`** and authenticate locally (SAML, API key, etc.). - Symlinks from `~/.openclaw/workspace/skills/` to paths **outside** the workspace are skipped by OpenClaw — use a **copy** of the folder for testing.
元数据
Slug akeyless
版本 1.0.0
许可证 MIT-0
累计安装 0
当前安装数 0
历史版本数 1
常见问题

Akeyless IO 是什么?

Akeyless Secrets Management via the official akeyless CLI — install, configure profiles, gateway routing, and safe read/list operations. Use when the user me... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 134 次。

如何安装 Akeyless IO?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install akeyless」即可一键安装,无需额外配置。

Akeyless IO 是免费的吗?

是的,Akeyless IO 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。

Akeyless IO 支持哪些平台?

Akeyless IO 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 Akeyless IO?

由 deanshak(@deanshak)开发并维护,当前版本 v1.0.0。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论