← 返回 Skills 市场

Coze-Power

Name: Coze-Power
Author: homesickjava

作者 homesickjava · GitHub ↗ · v1.0.5 · MIT-0

cross-platform ⚠ suspicious

总下载

当前安装

版本数

在 OpenClaw 中安装

/install coze-power

功能描述

Bridge your Coze bots to local machine capabilities. Coze bots run in the cloud and can't access local files, run commands, or control your machine — Coze-Po...

使用说明 (SKILL.md)

Coze-Power: Bridge Coze Bots to Local Capabilities

Overview

Coze bots are powerful, but they live in the cloud. They can't read your local files, run terminal commands, or interact directly with your machine. Coze-Power solves this with a lightweight HTTP server that exposes local tools through a standard OpenAPI interface that Coze plugins can consume.

Architecture

Coze-Power Architecture

Quick Start (5 minutes)

1. Start the server

cd coze-power
python3 server.py
# Server starts on http://localhost:8899

2. Expose it publicly (one of these)

# Using ngrok (recommended for beginners)
ngrok http 8899
# → https://xxxx.ngrok.io  (copy this URL)

# Or using Cloudflare Tunnel
cloudflared tunnel --url http://localhost:8899

3. Import the Coze plugin

In Coze Studio, go to Plugins → Create Plugin
Import from OpenAPI → Upload assets/openapi-spec.json
Set Server URL to your ngrok/cloudflare URL (e.g. https://xxxx.ngrok.io)
Add API key authentication: header name X-API-Key, value from your config.json
Save and enable the plugin
Add the plugin to your Coze bot

4. Test it

In your Coze bot, try:

"Search the web for latest AI news" "List files on my desktop" "Show me the current system status"

Available Tools

Tool	Method	Endpoint	Description
Web Search	POST	`/tools/web-search`	Search the web and return results
Read File	POST	`/tools/read-file`	Read content from local files
Write File	POST	`/tools/write-file`	Write content to local files
List Directory	POST	`/tools/list-dir`	List files in a directory
Run Command	POST	`/tools/run-command`	Execute shell commands
System Info	POST	`/tools/system-info`	Get OS, CPU, memory info
Read Clipboard	POST	`/tools/clipboard-read`	Read clipboard contents
Write Clipboard	POST	`/tools/clipboard-write`	Write to clipboard
Send Notification	POST	`/tools/notify`	Send desktop notification
Health Check	GET	`/health`	Check server status

Configuration

Create config.json in the skill directory:

{
  "api_key": "your-secret-api-key",
  "host": "0.0.0.0",
  "port": 8899,
  "allowed_commands": ["ls", "pwd", "cat", "echo", "python3", "node"],
  "allowed_paths": ["/home", "/tmp"],
  "max_file_size_kb": 1024
}

Security

⚠️ You are exposing your local machine to the internet. Follow these rules:

Always use API key authentication (never run without it)
Use allowed_commands and allowed_paths to restrict access
For production: add HTTPS via ngrok (it automatically provides TLS)
Never expose this server without authentication
Consider running it in a Docker container for isolation

Coze Plugin Setup (Detailed)

See references/coze-plugin-setup.md for step-by-step Coze configuration.

Examples

See references/examples.md for real Coze bot prompts and expected behaviors.

API Reference

See references/api-reference.md for complete endpoint documentation.

安全使用建议

Install only if you intentionally want a cloud Coze bot to reach your machine. Before running it, change the API key, avoid public exposure unless necessary, narrow allowed_paths and allowed_commands to the minimum, run it in a container or VM, and do not allow clipboard reads or file writes around sensitive data.

能力标签

cryptorequires-sensitive-credentials

能力评估

⚠ Purpose & Capability

The purpose is coherent and clearly states that Coze bots can read/write local files, execute commands, access clipboard data, and get system info, but those are high-impact local-machine capabilities exposed to a cloud bot.

⚠ Instruction Scope

The quick start tells users to expose the local server with ngrok or Cloudflare and immediately test local file/system actions; security guidance exists, but is not strong enough for the level of remote authority being enabled.

⚠ Install Mechanism

The package ships a standalone Python HTTP server and OpenAPI plugin spec; setup is straightforward, but the default host is 0.0.0.0 and the sample/default API key handling is weak for internet exposure.

⚠ Credentials

The default configuration allows broad paths such as the home directory and /home, and the command allowlist includes tools like cat, python3, node, find, tar, grep, head, and tail; this is broader than a safe default for a public bridge.

⚠ Persistence & Privilege

No autostart persistence or privilege escalation was found, but once running the server can overwrite files, read clipboard contents, and execute commands without per-action local confirmation.

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install coze-power
安装完成后，直接呼叫该 Skill 的名称或使用 /coze-power 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v1.0.5

v1.0.5 — Embedded architecture diagram as data URI. Removed uguu external link.

v1.0.4

v1.0.4 — Added architecture diagram. Full English description.

v1.0.3

v1.0.3 — Added architecture diagram

v1.0.2

v1.0.2 — Added architecture diagram

v1.0.1

v1.0.1 — Fully English description and examples. Cleaned up docs.

v1.0.0

v1.0.0 — 9 local tools: web search, file read/write, directory listing, command execution, system info, clipboard, notifications. Zero-dependency Python server + Coze OpenAPI plugin ready.

元数据

Slug coze-power

版本 1.0.5

许可证 MIT-0

累计安装 0

当前安装数 0

历史版本数 6

常见问题

Coze-Power 是什么？

Bridge your Coze bots to local machine capabilities. Coze bots run in the cloud and can't access local files, run commands, or control your machine — Coze-Po... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件，目前累计下载 48 次。

如何安装 Coze-Power？

在 OpenClaw 或 Claude Code 对话框中运行命令「/install coze-power」即可一键安装，无需额外配置。

Coze-Power 是免费的吗？

是的，Coze-Power 完全免费，采用 MIT-0 许可证，可自由下载、安装和使用。

Coze-Power 支持哪些平台？

Coze-Power 跨平台运行，可在任意部署了 OpenClaw / Claude Code 的环境中使用（cross-platform）。

谁开发了 Coze-Power？

由 homesickjava（@homesickjava）开发并维护，当前版本 v1.0.5。