← 返回 Skills 市场
agenthyjack

Dial A Cron

作者 agenthyjack · GitHub ↗ · v2.0.0 · MIT-0
cross-platform ⚠ suspicious
104
总下载
0
收藏
0
当前安装
4
版本数
在 OpenClaw 中安装
/install dial-a-cron
功能描述
Stateful cron system for OpenClaw with persistent memory, change detection, smart routing, token budget tracking, and self-healing. Requires 'openclaw' and '...
使用说明 (SKILL.md)

dial-a-cron

Stateful cron system with memory, change detection, smart delivery, token budget tracking, and self-healing.

Security & Review Requirements (per OpenClaw scanner)

This skill has broad I/O capabilities and is marked Suspicious (high confidence) by the OpenClaw scanner.

Before installing or using:

  • Audit all job configs (especially diffs for file/command/HTTP reads and routes for webhook URLs, target_id).
  • Run in an isolated environment with limited network access (consider denying outbound webhooks if you do not want potential exfiltration).
  • Ensure openclaw and gog CLIs exist and run with least privilege.
  • Whitelist HTTP targets and restrict diff file paths to specific safe directories. Avoid diffs on secrets or system files.
  • The code uses subprocess.run(..., shell=True) with values from job configs and outputs — unsanitized fields could allow shell injection.
  • The skill can read arbitrary local files, make HTTP requests (including to internal IPs), and post outputs to external endpoints.
  • Persisted state/logs may contain sensitive data from jobs — review storage permissions.

Full scanner report is in references/security-review.md.

Only use if you have reviewed the code and trust the job configs.

Basic Usage

openclaw cron create --name my-job --command "your-command" --dial "state:yes,change-detection:yes,routing:telegram:error,slack:warning,budget:50000,self-heal:yes"

What it contains

  • Persistent state and change detection
  • Smart delivery routing (webhook, message, email, etc.)
  • Token budget tracking
  • Self-healing (retries, backoff, auto-pause)
  • Preflight, diff, router, and state scripts
  • Requires openclaw and gog CLIs (not declared in older versions — now explicit)

No credentials are requested, but the code can contact arbitrary endpoints if job configs allow it.

Installation

openclaw skills install dial-a-cron

Then review the scripts in scripts/ and all job configs before creating any scheduled jobs.

Security Notes (from scanner)

  • The skill implements the advertised features but has disproportionate I/O for a simple cron wrapper.
  • Missing declared dependencies (openclaw, gog) in older metadata.
  • Potential for exfiltration of local file contents or command output via routes/webhooks.
  • Shell command injection risk if job configs or outputs are not sanitized.
  • Persistence of state/logs that may contain sensitive job output.

Review the code, restrict job configs, and run in an isolated environment with network controls.

Full details and the exact scanner report are in references/security-review.md.

Version: 1.0.1 (security audit and full disclosure) License: MIT-0

Clean, honest, and auditable. Review before use.

安全使用建议
This skill appears to implement the advertised features but requires careful handling. Before installing: - Audit every job config (jobs/*.json). Pay special attention to 'diffs' (file paths, commands, URLs) and 'routes' (webhook URLs, target_id) and remove any targets you don't trust. - Treat job configs as privileged: do not point diffs at secrets or system files. Avoid command diffs unless you control the commands. - Run Dial-a-Cron in an isolated/containerized environment with egress controls; consider blocking outbound webhooks unless explicitly whitelisted. - Ensure openclaw and gog CLIs exist and run with least privilege; verify credential use for those tools. - Look for subprocess.run(..., shell=True) usages in the code (router.py, diff.py, others) and either sanitize/escape all inputs or modify code to use argument arrays (shell=False). - If you cannot audit and control job configs and network access, do not install in a production environment. If in doubt, run the scripts in a disposable VM/container and monitor network and file activity.
功能分析
Type: OpenClaw Skill Name: dial-a-cron Version: 2.0.0 The skill provides a powerful stateful cron system but exhibits high-risk capabilities including arbitrary shell execution (subprocess.run with shell=True), arbitrary file reads, and network exfiltration via webhooks and emails in scripts/diff.py and scripts/router.py. While the bundle includes an unusually transparent security self-audit (references/security-review.md) and warns the user of these risks in SKILL.md, the lack of input sanitization and the broad I/O scope represent significant vulnerabilities that could be exploited if job configurations are mismanaged.
能力评估
Purpose & Capability
The name/description (stateful cron with diffs, routing, budgets, self-heal) match the included scripts. However the skill metadata declares no required binaries or credentials while the code explicitly shells out to external CLIs (openclaw and gog) and expects optional env vars (DAC_JOBS_DIR, DAC_STATE_DIR, DAC_LOG_DIR). Missing declared dependencies is an incoherence: an operator would reasonably expect required CLIs/credentials to be declared.
Instruction Scope
SKILL.md and preflight instructions instruct the agent/operator to run preflight and inject DAC_CONTEXT into LLM prompts. The preflight/diff engine can read arbitrary local files, run arbitrary commands, and fetch arbitrary HTTP URLs defined in job configs; those results can be placed into DAC_CONTEXT and routed to external webhooks or emailed. The runtime instructions therefore allow collection and transmission of local file contents and command outputs — scope is broader than a minimal cron wrapper and is high-risk unless job configs are strictly controlled.
Install Mechanism
No install spec (instruction-only) — the bundle contains Python scripts but nothing is downloaded or auto-executed by an installer. This lowers supply-chain risk; however consumers receive executable scripts that must be run locally and therefore must be audited before execution.
Credentials
The skill declares no required env vars or credentials, yet the code reads optional env vars (DAC_JOBS_DIR, DAC_STATE_DIR, DAC_LOG_DIR) and shells out to external CLIs that typically require credentials (openclaw, gog). It also accepts webhook URLs, file paths, and agent endpoints from job configs. The absence of declared dependencies/credentials is disproportionate and could mislead operators about runtime capabilities and privileges.
Persistence & Privilege
The skill persists state, logs, and memory under local directories (state/, memory/, logs/). 'always' is not set. Persisted files may contain sensitive outputs or carry data from jobs; this is expected for a stateful cron but operators should review storage locations and permissions.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install dial-a-cron
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /dial-a-cron 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v2.0.0
Full security overhaul per OpenClaw scanner (high confidence Suspicious). Added complete honest disclosure of risks (arbitrary file reads, HTTP to any URL, shell injection potential, undeclared CLIs openclaw/gog). Strong review/audit warnings, isolated environment recommendations, whitelist advice, and full scanner report in references/security-review.md. No misleading metadata. Completely transparent.
v1.0.2
Intelligent stateful cron system with persistent memory, change detection (skip if no change), smart delivery routing, token budget tracking, and self-healing with auto-pause. Turns basic fire-and-forget crons into reliable, self-aware jobs.
v1.0.1
**Changelog for dial-a-cron 1.0.1** - Major restructuring: moved core scripts from `src/` to `scripts/`, removed job/sample data files. - Added documentation (`README.md`, `job-config-schema.md`) and improved skill metadata. - Consolidated and cleaned up codebase for clarity and production-readiness. - Updated usage and installation instructions for streamlined OpenClaw integration.
v1.0.0
Intelligent stateful cron system with change detection, smart delivery routing, token budget tracking, and self-healing. Replaces basic fire-and-forget crons with reliable, self-aware jobs.
元数据
Slug dial-a-cron
版本 2.0.0
许可证 MIT-0
累计安装 0
当前安装数 0
历史版本数 4
常见问题

Dial A Cron 是什么?

Stateful cron system for OpenClaw with persistent memory, change detection, smart routing, token budget tracking, and self-healing. Requires 'openclaw' and '... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 104 次。

如何安装 Dial A Cron?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install dial-a-cron」即可一键安装,无需额外配置。

Dial A Cron 是免费的吗?

是的,Dial A Cron 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。

Dial A Cron 支持哪些平台?

Dial A Cron 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 Dial A Cron?

由 agenthyjack(@agenthyjack)开发并维护,当前版本 v2.0.0。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191113 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论