← 返回 Skills 市场
Cmd Executor
作者
sadikjarvis
· GitHub ↗
· v0.0.2
996
总下载
0
收藏
7
当前安装
2
版本数
在 OpenClaw 中安装
/install cmd-executor
功能描述
Executes Windows shell commands locally on the OpenClaw gateway, returning output and errors for automation and system management.
使用说明 (SKILL.md)
Cmd Executor
Description
Runs any Windows command locally and replies with the output.
Usage
Send a message starting with Run command: followed by the command.
Example:
Run command: dir "C:\Users\Md Sadik Laskar\Documents"
The assistant will reply with the listing.
安全使用建议
This skill does exactly what it says: it will run any shell command you send and return the output. That makes it extremely powerful but also dangerous — a malicious or mistaken command can read or delete data, pivot across networks, or exfiltrate secrets. Before installing: (1) Only install on a gateway you fully trust and where running arbitrary commands is acceptable. (2) Prefer to restrict invocation: disable autonomous model invocation or require explicit user approval before each run. (3) Add an allowlist of safe commands or sanitize inputs; do not expose this skill to untrusted users or public agents. (4) Review the included skill.js (it is short) and consider modifying it to impose command whitelists, execution time limits, and stronger error handling. (5) Do not install on production infrastructure unless you have strong compensating controls (sandboxing, network egress restrictions, audit logging). If you want a safer alternative, request a skill that accepts a limited set of management actions (e.g., 'list directory', 'get service status') rather than free-form shell execution.
功能分析
Type: OpenClaw Skill
Name: cmd-executor
Version: 0.0.2
This skill is designed to execute arbitrary shell commands provided by the user via `child_process.exec` in `skill.js`. There is no input sanitization or validation of the `cmd` variable before execution, making it a severe Remote Code Execution (RCE) vulnerability. While the skill's stated purpose is to run commands, this capability, without safeguards, is highly risky and could be easily exploited for malicious activities like data exfiltration or system compromise.
能力评估
Purpose & Capability
The skill is explicitly a local command executor and the code (skill.js) implements that directly by running the provided command. The declared purpose aligns with the required behavior. Minor note: the README emphasizes Windows commands but there is no OS enforcement — the code will run whatever the host OS accepts.
Instruction Scope
The SKILL.md instructs users to send 'Run command: <command>' and the skill executes exactly that string via child_process.exec with no sanitization or allowlist. This means an input can read, modify, or delete arbitrary files, open network connections, or exfiltrate data. The skill returns full stdout/stderr back to the caller, which may leak sensitive system data. Those behaviors are expected for a command executor but present a high risk if the agent or callers are not fully trusted.
Install Mechanism
There is no install spec (instruction-only style) and no third-party downloads. The only executable payload is the short skill.js bundled with the skill; nothing else is written to disk by an installer. This minimizes supply-chain injection risk but does not mitigate the inherent danger of arbitrary local execution.
Credentials
The skill does not request environment variables, credentials, or configuration paths. That is proportionate to its stated functionality. Note however that absence of declared credentials does not reduce the fact the skill can access any file or command output on the host when executed.
Persistence & Privilege
always:false (good), but disable-model-invocation is false (the default), so the agent can invoke this skill autonomously. Combined with the ability to run arbitrary shell commands, autonomous invocation increases the blast radius (the agent could run commands without explicit user prompting). Consider restricting autonomous invocation and limiting who/what can call this skill.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install cmd-executor - 安装完成后,直接呼叫该 Skill 的名称或使用
/cmd-executor触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v0.0.2
- Updated documentation: replaced detailed SKILL.md with a concise skill.md.
- Removed SKILL.md and skill.json to streamline project files.
- Simplified usage instructions and description for easier understanding.
v0.0.1
- Initial release of Cmd Executor skill.
- Allows running local Windows shell commands via the OpenClaw gateway.
- Captures standard output and error; results are sent back to the chat.
- Intended for personal automation, debugging, and local system management.
- Supports Windows platforms (PowerShell / CMD).
- Important: should only be used in trusted environments due to security risks.
元数据
常见问题
Cmd Executor 是什么?
Executes Windows shell commands locally on the OpenClaw gateway, returning output and errors for automation and system management. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 996 次。
如何安装 Cmd Executor?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install cmd-executor」即可一键安装,无需额外配置。
Cmd Executor 是免费的吗?
是的,Cmd Executor 完全免费(开源免费),可自由下载、安装和使用。
Cmd Executor 支持哪些平台?
Cmd Executor 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Cmd Executor?
由 sadikjarvis(@sadikjarvis)开发并维护,当前版本 v0.0.2。
推荐 Skills