← 返回 Skills 市场

Exec Local

Name: Exec Local
Author: zrslu01

作者 zrslu01 · GitHub ↗ · v1.0.0 · MIT-0

cross-platform ⚠ suspicious

总下载

当前安装

版本数

在 OpenClaw 中安装

/install exec-local

功能描述

Execute system-level shell commands directly within the thundarr-gpu container for monitoring and remote orchestration tasks.

使用说明 (SKILL.md)

Thundarr Execution Bridge (Local)

The exec_local skill provides a direct interface for executing system-level shell commands within the thundarr-gpu container environment on Garuda.

Core Functionality

Direct Shell Access: Allows for low-latency execution of binary tools and scripts.
Remote Orchestration: Designed to be used as a jump-point for managing the Fedora UM250 host via the thundarr-remote SSH script.
Resource Monitoring: Can be used to check local container health, process tables, and network availability between Docker nodes.

Security Note

This tool executes commands with the permissions of the container user. Ensure all inputs are sanitized when used in automated workflows.

安全使用建议

This skill gives the agent unrestricted ability to run shell commands inside the container — it can read files, environment variables, network endpoints, and any mounted host artifacts (SSH keys, docker socket, config files). Only install if you fully trust the skill and the agent's autonomy. Consider: 1) Disable autonomous invocation (set disable-model-invocation = true) so the agent cannot run commands without your approval; 2) Remove or isolate sensitive mounts/credentials from the container (SSH keys, /var/run/docker.sock, host config directories); 3) Limit network egress from the container or firewall outbound connections; 4) Prefer manual invocation: require explicit commands from a human rather than letting the model decide; 5) Audit container file system and logs after use; 6) If you need limited monitoring/orchestration, prefer more narrowly scoped tools that expose specific APIs rather than an open shell. If you are unsure, treat this skill as high-risk and avoid installing it.

功能分析

Type: OpenClaw Skill Name: exec-local Version: 1.0.0 The skill provides a raw shell execution primitive via the 'exec' tool in skill.json and skill.yaml, allowing for arbitrary command execution within the container environment. While SKILL.md describes its purpose as a bridge for orchestration and monitoring, the lack of any command filtering or input sanitization makes it a high-risk capability that could be leveraged for unauthorized system access or persistence.

能力评估

ℹ Purpose & Capability

The name/description match the provided tooling: an 'exec' tool that runs arbitrary shell commands inside the Thundarr container. Mentioning remote orchestration via an SSH script is plausible, but the skill does not declare or request SSH keys/configs even though those would commonly be required for the described remote tasks.

⚠ Instruction Scope

SKILL.md explicitly enables arbitrary command execution and gives no runtime restrictions. Although consistent with the stated purpose, this scope permits reading files, environment variables, network access, and other actions not limited by the skill — enabling easy exfiltration or lateral movement if misused.

✓ Install Mechanism

Instruction-only skill with no install spec or downloaded code. This minimizes installation risk (nothing written by the skill itself), but runtime risk remains because commands executed by the agent will run in the container.

⚠ Credentials

The skill declares no environment variables or credentials, which is consistent with an in-container exec tool. However, arbitrary shell access effectively gives the agent access to any env vars, config files, mounted secrets, SSH keys, or sockets present in the container — a disproportionate level of access relative to what most users would expect from a small utility.

⚠ Persistence & Privilege

The skill is user-invocable and allows autonomous model invocation (disable-model-invocation is false). Autonomous invocation combined with unrestricted shell execution increases the blast radius: the agent could run commands without explicit user approval. 'always' is not set, which limits forced inclusion, but the autonomous capability is still concerning given the privileges.

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install exec-local
安装完成后，直接呼叫该 Skill 的名称或使用 /exec-local 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v1.0.0

Initial release of exec-local skill—provides secure shell command execution within the thundarr-gpu container on Garuda. - Enables direct execution of scripts and binary tools locally in the container. - Supports remote orchestration of the Fedora UM250 host via SSH. - Allows monitoring of container health, processes, and Docker node networking. - Operates with container user permissions; input sanitization recommended for automation.

元数据

Slug exec-local

版本 1.0.0

许可证 MIT-0

累计安装 0

当前安装数 0

历史版本数 1

常见问题

Exec Local 是什么？

Execute system-level shell commands directly within the thundarr-gpu container for monitoring and remote orchestration tasks. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件，目前累计下载 91 次。

如何安装 Exec Local？

在 OpenClaw 或 Claude Code 对话框中运行命令「/install exec-local」即可一键安装，无需额外配置。

Exec Local 是免费的吗？

是的，Exec Local 完全免费，采用 MIT-0 许可证，可自由下载、安装和使用。

Exec Local 支持哪些平台？

Exec Local 跨平台运行，可在任意部署了 OpenClaw / Claude Code 的环境中使用（cross-platform）。

谁开发了 Exec Local？

由 zrslu01（@zrslu01）开发并维护，当前版本 v1.0.0。