← 返回 Skills 市场
Docker Osx
作者
NightVibes3
· GitHub ↗
· v1.0.0
505
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install docker-osx
功能描述
Run macOS in Docker on Linux with KVM. Use when: user wants to build iOS apps/IPAs, needs macOS environment, wants to compile Apple apps without Mac, or want...
使用说明 (SKILL.md)
Docker-OSX
Run macOS in Docker - build iOS apps on Linux!
Quick Start
start macos # Boot VM (2-5 min)
status macos # Check if ready
ssh macos # Connect
stop macos # Shutdown
Commands
| Command | Description |
|---|---|
start macos |
Boot macOS VM |
stop macos |
Shutdown VM |
status macos |
Check running |
ssh macos |
Get SSH command |
vnc macos |
Get VNC address |
logs macos |
View logs |
Connection
- SSH: port 50922, password:
alpine - VNC: port 5900
Building iOS
# In macOS terminal:
xcode-select --install
git clone \x3Crepo>
cd repo
xcodegen generate
xcodebuild -project App.xcodeproj -scheme App -configuration Release -destination 'generic/platform=iOS' CODE_SIGN_IDENTITY="" CODE_SIGNING_REQUIRED=NO CODE_SIGNING_ALLOWED=NO build
Errors
| Error | Fix |
|---|---|
| KVM not available | Server needs hardware virtualization |
| Docker not installed | `curl -sSL get.docker.com |
Resources
- 4+ CPU cores
- 8GB+ RAM
- 100GB disk
安全使用建议
This skill does what it says: it automates running sickcodes/docker-osx in Docker and requires KVM and Docker. Before installing/using it: (1) Understand you will pull and run a third-party container image (inspect the image on Docker Hub, verify the maintainer and recent activity). (2) Do not run it on sensitive or production hosts — the container is granted /dev/kvm access and mapped host ports. Use an isolated VM or disposable host if possible. (3) Change default credentials (SSH/VNC password 'alpine') and restrict network access. (4) Consider scanning the image for malware and reviewing the upstream repo. (5) Be aware of Apple licensing implications for running macOS on non‑Apple hardware (operational/legal, not a security scanner finding). If you cannot verify the image or isolate the runtime, treat the container as untrusted code and avoid running it on critical infrastructure.
功能分析
Type: OpenClaw Skill
Name: docker-osx
Version: 1.0.0
The skill is classified as suspicious primarily due to the explicit instruction in both `SKILL.md` and `scripts/docker_osx.py` to install Docker using `curl -sSL get.docker.com | sh`. This method is a significant security risk, vulnerable to supply chain attacks or man-in-the-middle attacks, and represents a potential prompt injection vulnerability if the AI agent were to automatically execute this 'fix'. Additionally, the skill runs a Docker container with `--device /dev/kvm`, granting high privileges to the container, which, while necessary for its function, relies heavily on the integrity of the `sickcodes/docker-osx:stable` image. A weak default password ('alpine') is also used for the guest macOS VM.
能力评估
Purpose & Capability
The name/description (run macOS in Docker with KVM to build iOS apps) matches the declared requirements and code: it requires docker and KVM, and the script runs docker commands using the sickcodes/docker-osx image. Nothing requested is unrelated to running a macOS VM in Docker.
Instruction Scope
SKILL.md and the script stick to VM lifecycle and connection tasks (start/stop/status/logs/ssh/vnc). They do not read unrelated host files or request extra credentials. However SKILL.md suggests installing Docker via `curl -sSL get.docker.com | sh` (network-fetch-and-execute) and documents insecure default credentials (SSH password 'alpine') and exposed host ports (50922, 5900), which are operational/security concerns.
Install Mechanism
There is no install spec (instruction-only), which is low-risk for local files. At runtime the script invokes `docker run` which will pull the image sickcodes/docker-osx:stable from Docker Hub if not present — running an external, third-party container image effectively downloads and executes remote code. This is expected for this use case but is a trust boundary you must evaluate (verify image publisher, check image contents, run in isolated environment).
Credentials
The skill requests no environment variables or credentials, which is appropriate. Note: it relies on Docker daemon access (implicit requirement) and uses a documented default password ('alpine') for SSH/VNC — an insecure default that users should change.
Persistence & Privilege
always:false and no special persistent privileges are requested. Runtime behavior requires access to the host's Docker daemon and maps /dev/kvm into the container (needed for virtualization). Mapping /dev/kvm and exposing ports is required for functionality but increases the container's ability to interact with host resources — run only on hosts where this is acceptable.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install docker-osx - 安装完成后,直接呼叫该 Skill 的名称或使用
/docker-osx触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release of docker_osx (v1.0.0):
- Enables running macOS in Docker on Linux using KVM.
- Provides commands to start, stop, check, and connect (SSH/VNC) to the macOS VM.
- Includes a quick-start guide and sample workflow for building iOS apps.
- Lists hardware/software requirements and common troubleshooting tips.
- Not suitable for servers without KVM support or low-resource systems.
元数据
常见问题
Docker Osx 是什么?
Run macOS in Docker on Linux with KVM. Use when: user wants to build iOS apps/IPAs, needs macOS environment, wants to compile Apple apps without Mac, or want... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 505 次。
如何安装 Docker Osx?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install docker-osx」即可一键安装,无需额外配置。
Docker Osx 是免费的吗?
是的,Docker Osx 完全免费(开源免费),可自由下载、安装和使用。
Docker Osx 支持哪些平台?
Docker Osx 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Docker Osx?
由 NightVibes3(@nightvibes3)开发并维护,当前版本 v1.0.0。
推荐 Skills