← 返回 Skills 市场

RedHat File Operations

Name: RedHat File Operations
Author: mzfshark

作者 Mauricio Z. · GitHub ↗ · v1.0.0 · MIT-0

cross-platform ✓ 安全检测通过

总下载

当前安装

版本数

在 OpenClaw 中安装

/install axodus-file-operations

功能描述

Perform safe, auditable file operations with path validation and backups.

使用说明 (SKILL.md)

SKILL: file-operations

Purpose

Perform safe, auditable file operations (read/write/update/delete/move/copy) in an MCP-enabled environment with path validation and backups.

When to Use

Any task requires editing files on disk.
You need to ensure changes are safe and reversible.
You must avoid accidental overwrites or destructive operations.

Inputs

operation (required, enum: read|write|update|delete|move|copy).
paths (required, object):
- source (optional, string)
- target (optional, string)
- targets (optional, string[])
content (optional, string): for write/update.
backup (optional, boolean, default: true for overwrite/delete).
constraints (optional, string[]): e.g., â€œonly within workspaceâ€.

Steps

Resolve absolute paths and normalize.
Validate scope:
- operation stays inside the intended workspace root(s)
- block path traversal/suspicious targets
Preflight:
- confirm existence for read/update/delete
- confirm non-existence (or allow overwrite explicitly) for write/move
If overwrite/delete and backup=true, create a backup copy (timestamped).
Execute the operation with explicit reporting (what changed).
Post-validate:
- file exists where expected
- content/diff matches expectation

Validation

Operation is reversible when possible (backup exists for destructive actions).
The final target path is verified before execution.
The operation result is explicitly reported (not silent).

Output

operation: "\x3Coperation>"
affected: ["\x3Cpath>"]
backup_paths: ["\x3Cpath>"]
result: "success|blocked|failed"
notes: ["..."]

Safety Rules

Never delete or overwrite recursively without explicit user confirmation.
Never operate on computed paths without printing the resolved final paths first.
Prefer patch-based updates over full-file rewrites when possible.

Example

Update a config file:

operation: update
paths: { target: "apps/api/.env.example" }
Validation: backup created; diff is minimal; file still parses.

安全使用建议

This skill appears coherent with its stated goal and does not request credentials or install code, but it performs potentially destructive file operations. Before installing or enabling it: (1) confirm what the platform supplies as the 'workspace root' and ensure the skill cannot escape that scope, (2) require explicit user confirmation for delete/recursive/overwrite actions and test on non-production data, (3) ensure backups created by the skill are stored where you expect and protected, (4) if you are uncomfortable with autonomous invocation, disable autonomous invocation or require manual invocation/approval in your agent policy, and (5) review audit/logging policies so all file changes are recorded. If you need more assurance, ask the maintainers to specify how workspace roots are determined and to provide an implementation review or sample run logs.

功能分析

Type: OpenClaw Skill Name: axodus-file-operations Version: 1.0.0 The skill bundle defines a set of instructions for an AI agent to perform file operations with an emphasis on safety and auditability. The instructions in SKILL.md and file-operations.md explicitly mandate path validation, the blocking of path traversal, and the creation of backups for destructive operations. No malicious code, data exfiltration logic, or harmful prompt injection attempts were found in the provided files.

能力评估

✓ Purpose & Capability

Name, description, and runtime instructions are aligned: the skill describes reading/writing/updating/deleting/moving/copying files with path validation and backups and does not request unrelated binaries, env vars, or external services.

ℹ Instruction Scope

SKILL.md stays within the stated purpose and contains explicit safety rules (preflight checks, resolved path printing, backups). It does not instruct network transmission or credential access. One ambiguity: it refers to an 'MCP-enabled environment' and 'workspace root(s)' but does not declare how those roots are obtained or enforced — that platform integration detail is external to the skill and should be verified by the deployer.

✓ Install Mechanism

Instruction-only skill with no install spec and no code files. Nothing is written to disk by the skill itself during installation.

✓ Credentials

The skill declares no environment variables, credentials, or config-path requirements. It does not request broad secrets or unrelated access.

ℹ Persistence & Privilege

always:false (normal) and user-invocable:true. The skill can be invoked autonomously by the agent (disable-model-invocation:false) — this is platform default, but combined with file-editing capabilities it means you should confirm agent policies and prompting/confirmation behavior before allowing autonomous runs.

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install axodus-file-operations
安装完成后，直接呼叫该 Skill 的名称或使用 /axodus-file-operations 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v1.0.0

Initial release of file-operations skill. - Perform safe, auditable file operations: read, write, update, delete, move, and copy. - Path validation and scope checks prevent unauthorized file access. - Automatic backups for destructive actions (overwrite, delete) for easy recovery. - Detailed output reporting includes reverted changes and backup locations. - Enforces safety rules to avoid accidental data loss or unauthorized operations.

元数据

Slug axodus-file-operations

版本 1.0.0

许可证 MIT-0

累计安装 0

当前安装数 0

历史版本数 1

常见问题