← 返回 Skills 市场
easyfloyd

FadNote

作者 easyFloyd · GitHub ↗ · v1.0.2
cross-platform ✓ 安全检测通过
384
总下载
1
收藏
0
当前安装
3
版本数
在 OpenClaw 中安装
/install fadnote
功能描述
Create secure shareable self-destructing notes
使用说明 (SKILL.md)

FadNote Skill

Secure self-destructing shareable notes for OpenClaw

Create encrypted, one-time-read notes directly from OpenClaw. The server never sees your plaintext.

Overview

Property Value
Name fadnote
Version 1.0.2
Author easyFloyd
License MIT
Open Source Yes — https://github.com/easyFloyd/fadnote
Runtime Node.js 18+

Installation

# Via ClawHub
claw install fadnote

# Manual
git clone https://github.com/easyFloyd/fadnote.git
ln -s $(pwd)/fadnote/openclaw-skill/scripts/fadnote.js ~/.claw/bin/fadnote

Configuration

Variable Default Description
FADNOTE_URL https://fadnote.com FadNote server endpoint

Usage

From OpenClaw

user: Secure this API key: sk-abc123xyz

claw: I'll create a secure, self-destructing note for that.
      [runs: echo "sk-abc123xyz" | fadnote]

      🔗 https://fadnote.com/n/abc123# decryption-key-here

      Share it with the recipient via any channel and this link will self-destruct after first view.

CLI Usage

  Usage: fadnote [options] [text]
         echo "text" | fadnote [options]

  Create secure self-destructing notes that can only be viewed once.

  Options:
    -h, --help          Show this help message and exit
        --ttl \x3Csecs>    Time until note expires (default: 86400 = 24h)
        --json          Output JSON with noteId, expiresIn, and decryptionUrl

  Environment:
    FADNOTE_URL         API endpoint (default: https://fadnote.com)

  Examples:
    # Standard
    fadnote "My secret message" # direct input
    echo "My secret" | fadnote # from stdin

    # With options
    fadnote --ttl 3600 "Expires in 1 hour" # Custom TTL
    fadnote --json --ttl 7200 "JSON output" # JSON output:
      # {noteId: string, expiresIn: number, decryptionUrl: string}

    # File and clipboard input
    cat file.txt | fadnote --ttl 86400 # from stdin with options
    pbpaste | fadnote  # macOS clipboard
    xclip -o -selection clipboard | fadnote # from clipboard (Linux with xclip)
    xsel -b | fadnote # from clipboard (Linux with xsel)

Single Output: Single line with the shareable URL.

JSON Output:

{
  noteId: string,
  expiresIn: number,
  decryptionUrl: string
}

Triggers

I (OpenClaw) will automatically use the FadNote skill when you say any of:

  • "Secure this [content]"
  • "FadNote this [content]"
  • "Create a secure link for [content]"
  • "Share this securely: [content]"
  • "One-time note: [content]"
  • "Encrypt and share [content]"

With email delivery (if email skill is present):

  • "Secure this and email to [recipient]: [content]"
  • "FadNote this to [email]"
  • "Send secure note to [email]"

Examples:

- Secure this API key: sk-live-12345

- FadNote this password for the server

- Create a secure link for these credentials

- Share this securely: my private SSH key

- One-time note: the meeting location

Security

  • Client-side encryption — AES-256-GCM with PBKDF2 (600k iterations)
  • Zero knowledge — Server receives only encrypted blobs
  • One-time read — Note deleted immediately after first fetch
  • Auto-expire — Default 24 hour TTL
  • Open Source — Server code is publicly auditable at https://github.com/easyFloyd/fadnote

The decryption key is embedded in the URL fragment (#key) and never sent to the server.

Files

openclaw-skill/
├── SKILL.md           # This file
└── scripts/
    └── fadnote.js     # Main CLI script (~160 lines)

Requirements

  • Node.js 18+ (no external dependencies)

Troubleshooting

Error Cause Solution
FADNOTE_URL not set Environment variable missing export FADNOTE_URL=https://fadnote.com
Empty note No input provided Pipe text into fadnote: echo "secret" | fadnote
404 Not Found Server endpoint wrong Check FADNOTE_URL points to a running FadNote instance
Connection refused Server unreachable Verify server is up or use the live service
Crypto not available Node.js \x3C 18 Upgrade to Node.js 18+

Links

安全使用建议
This skill appears to do what it claims: it encrypts your content locally and POSTs an encrypted blob to the configured FADNOTE_URL, with the decryption key placed in the URL fragment (not sent to the server). Before installing or using it: 1) Verify you trust the endpoint you set in FADNOTE_URL (the server will receive encrypted blobs and metadata like TTL and size). 2) If you rely on the claimed zero-knowledge model, review the publicly linked source (https://github.com/easyFloyd/fadnote) to confirm the implementation matches the SKILL.md. 3) Remember the decryption key is embedded in the shareable URL fragment — anyone with the full URL can decrypt the note. 4) If you plan to use automatic email delivery via another skill, be aware the skill will send the decryption URL through that channel. These are privacy/operational considerations, not evidence of malicious behavior.
功能分析
Type: OpenClaw Skill Name: fadnote Version: 1.0.2 The OpenClaw FadNote skill is designed to create secure, self-destructing notes using client-side encryption. The `SKILL.md` clearly defines its purpose and usage, instructing the agent to pipe sensitive user input to the `fadnote.js` script for encryption. The `fadnote.js` script correctly implements AES-256-GCM encryption with PBKDF2 key derivation, sending only the encrypted blob to the `FADNOTE_URL` endpoint while keeping the decryption key client-side in the URL fragment. There is no evidence of prompt injection attempts in `SKILL.md`, unauthorized data exfiltration (beyond its stated, encrypted purpose), malicious execution, persistence mechanisms, or obfuscation. The skill's behavior is fully aligned with its stated purpose and cryptographic claims.
能力评估
Purpose & Capability
Name/description (self-destructing notes) match the provided files and behavior: the CLI encrypts input client-side and posts it to FADNOTE_URL. Required binary (node) and a configurable endpoint (FADNOTE_URL) are appropriate for this purpose. Minor note: primaryEnv is set to a URL (not a secret), which is unusual but not harmful.
Instruction Scope
SKILL.md instructs the agent to run the fadnote CLI and only references the FADNOTE_URL env var and local stdin/cli usage. The runtime script only reads stdin/args, uses crypto, and POSTs the encrypted blob to the configured endpoint. There are no instructions to read unrelated files, other environment variables, or to exfiltrate raw plaintext to third parties.
Install Mechanism
No automated install/download is present (no install spec). The package provides a local CLI script and suggests manual installation or ClawHub install. This is low-risk compared with arbitrary remote downloads or extract operations.
Credentials
Only FADNOTE_URL is required; that is proportional for a service endpoint. It is labeled as the primary credential in metadata even though it is not a secret credential — this is odd but not dangerous. The skill does not request tokens, keys, passwords, or unrelated credentials.
Persistence & Privilege
The skill does not request always:true, does not modify other skills or system configurations, and has no special persistent privileges. It can be invoked autonomously (platform default), which is expected for a user-invocable skill.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install fadnote
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /fadnote 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.2
- Added CLI options for specifying TTL, JSON output, and help message. - Enhanced usage examples and documentation for clipboard and file input methods. - Increased PBKDF2 encryption iterations to 600k for improved security.
v1.0.1
- Fix default TTL from 1 hour to 24
v1.0.0
Initial release of the fadnote skill (v1.0.0) - Create secure, self-destructing, shareable notes directly from OpenClaw - Notes are encrypted client-side; the server never sees your plaintext - One-time read: note is deleted after first access; 24-hour auto-expiry - Simple CLI usage and automatic triggers for secure note creation - Requires Node.js 18+ and FADNOTE_URL environment variable
元数据
Slug fadnote
版本 1.0.2
许可证
累计安装 0
当前安装数 0
历史版本数 3
常见问题

FadNote 是什么?

Create secure shareable self-destructing notes. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 384 次。

如何安装 FadNote?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install fadnote」即可一键安装,无需额外配置。

FadNote 是免费的吗?

是的,FadNote 完全免费(开源免费),可自由下载、安装和使用。

FadNote 支持哪些平台?

FadNote 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 FadNote?

由 easyFloyd(@easyfloyd)开发并维护,当前版本 v1.0.2。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191113 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论