← 返回 Skills 市场
rabbykst

Fix Exec Allowlist Miss

作者 Fazlay Rabby · GitHub ↗ · v1.0.0 · MIT-0
cross-platform ⚠ suspicious
36
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install fix-exec-allowlist-miss
功能描述
Hybrid reload mode auto-restarts for gateway/plugins changes. Config patching requires baseHash from config.get first. Minimax cron auth uses system-level to...
使用说明 (SKILL.md)

Diagnosing exec deny:

  1. Check tools.exec.security and tools.profile in config
  2. If profile=coding and security=full still denied → profile baseline missing exec
  3. Use gateway tool: gateway('config.patch', {raw: '{tools:{profile:"full"}}'})
  4. Hot-reload applies automatically in hybrid mode; explicit restart via gateway restart if needed
  5. Verify: gateway('config.get', {}) → confirm profile=full

Config patch workflow (atomic, hash-verified):

  1. gateway('config.get', {}) → capture payload.hash
  2. gateway('config.patch', {raw: '...', baseHash: '\x3Chash>'})
  3. Rate limit: 3 req/60s per deviceId+clientIp. Restart coalesces with 30s cooldown.

Hot-apply vs restart fields (hybrid mode): Hot-apply (no restart): channels, agent, models, routing, hooks, cron, session, messages, tools, browser, skills, mcp, audio, talk, ui, logging, identity, bindings Restart required: gateway.* (port, bind, auth, TLS, HTTP), discovery, plugins gateway.reload and gateway.remote changes do NOT trigger restart.

Minimax OAuth failure (ConnectionRefused / 401):

  • Cron jobs use system-level auth, not current session OAuth → isolated session
  • If minimax portal token expired: gateway('update.run', {continuationMessage: '...'}) attempts re-auth on restart
  • Fallback: openclaw config set models.providers.minimax-portal.apiKey '\x3Ckey>'

Workflow

Config patch protected paths:

  • Cannot patch channel-specific configs (e.g., whatsapp:8801322964987)
  • Raw must be object, not string — wrong: gateway('config.patch', {raw: '{...}'})
    Right: gateway('config.patch', {raw: {channels: {...}}})
  • Protected paths raise error: gateway config.patch cannot change protected config paths: \x3Cpath>
安全使用建议
Review before installing. This skill is not showing malware-like behavior, but it guides an agent to broaden gateway exec/profile settings persistently. Only use it if you understand the OpenClaw gateway config change, verify the current config with config.get first, require hash-verified patches, and keep a rollback path for the previous profile/security settings.
能力标签
requires-oauth-tokenrequires-sensitive-credentials
能力评估
Purpose & Capability
The stated purpose is to fix exec allowlist misses, and reading/patching gateway config fits that purpose, but the central action is high-impact: changing tool/profile settings toward broader exec capability.
Instruction Scope
The skill says config patching requires a baseHash from config.get, but its first remediation example patches tools.profile without baseHash, and it gives conflicting raw parameter formats.
Install Mechanism
The artifact is a single markdown SKILL.md with no executable scripts, package dependencies, installer, or hidden runtime files.
Credentials
The skill mentions OAuth/token troubleshooting and setting a Minimax API key, which is related to its gateway troubleshooting purpose but should be handled carefully as sensitive credential material.
Persistence & Privilege
The workflow makes persistent gateway configuration changes and may trigger reloads/restarts; enabling a broader profile to restore exec is security-relevant and lacks explicit user confirmation, rollback, or containment guidance.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install fix-exec-allowlist-miss
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /fix-exec-allowlist-miss 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release with detailed workflow for diagnosing and resolving exec allowlist misses. - Supports hybrid reload with automatic restarts for gateway and plugin changes. - Config patching requires hash from config.get and enforces rate limits. - Lists which config changes hot-apply versus require a restart. - Documents Minimax cron authentication: now uses system-level tokens, not session OAuth. - Details protected config patch paths and proper patch structure.
元数据
Slug fix-exec-allowlist-miss
版本 1.0.0
许可证 MIT-0
累计安装 0
当前安装数 0
历史版本数 1
常见问题

Fix Exec Allowlist Miss 是什么?

Hybrid reload mode auto-restarts for gateway/plugins changes. Config patching requires baseHash from config.get first. Minimax cron auth uses system-level to... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 36 次。

如何安装 Fix Exec Allowlist Miss?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install fix-exec-allowlist-miss」即可一键安装,无需额外配置。

Fix Exec Allowlist Miss 是免费的吗?

是的,Fix Exec Allowlist Miss 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。

Fix Exec Allowlist Miss 支持哪些平台?

Fix Exec Allowlist Miss 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 Fix Exec Allowlist Miss?

由 Fazlay Rabby(@rabbykst)开发并维护,当前版本 v1.0.0。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191113 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论