功能描述

Deploy web services to the cloud with Jack. Use when: you need to create APIs, websites, or backends and deploy them live. Teaches: project creation, deploym...

使用说明 (SKILL.md)

Jack Cloud — Deploy Anything from the Terminal

Name: Jack Cloud
Author: hellno

Jack deploys Cloudflare Workers projects in one command. Create an API, add a database, ship it live — all from the terminal.

Install

npm i -g @getjack/jack
jack login

External Endpoints

Endpoint	Data Sent	Purpose
`auth.getjack.org`	OAuth tokens (GitHub/Google via WorkOS)	Authentication
`control.getjack.org`	Project metadata, source code during deploy	Project management and deployments

Security & Privacy

jack login authenticates via browser OAuth (GitHub/Google via WorkOS). Auth token stored at ~/.config/jack/auth.json
No environment variables required — authentication is interactive
Source code is uploaded during jack ship and deployed to Cloudflare Workers via Jack Cloud
Project metadata (name, slug, deploy history) is stored on Jack Cloud
No telemetry is sent without user consent (jack telemetry to configure)
npm package: @getjack/jack — open source CLI

MCP Tools

If your agent has mcp__jack__* tools available, prefer those over CLI commands. They return structured JSON and are tracked automatically. The CLI equivalents are noted below for agents without MCP.

Create & Deploy a Project

jack new my-api

This creates a project from a template, deploys it, and prints the live URL.

Pick a template when prompted (or pass --template):

Template	What you get
`api`	Hono API with example routes
`hello`	Minimal hello-world starter
`miniapp`	Full-stack app with frontend
`ai-chat`	AI chat app with streaming
`nextjs`	Next.js full-stack app

Run jack new to see all available templates.

MCP: mcp__jack__create_project with name and template params.

After creation, your project is live at https://\x3Cslug>.runjack.xyz.

Deploy Changes

After editing code, push changes live:

jack ship

For machine-readable output (useful in scripts and agents):

jack ship --json

Builds the project and deploys to production. Takes a few seconds.

MCP: mcp__jack__deploy_project

Check Status

jack info

Shows: live URL, last deploy time, attached services (databases, storage, etc.).

MCP: mcp__jack__get_project_status

Database (D1)

jack services db create                  # Add D1 database (auto-configures wrangler.jsonc)
jack db execute "SELECT * FROM users"    # Query data
jack db execute --json "SELECT ..."      # JSON output
jack db execute --write "INSERT INTO users (name, email) VALUES ('Alice', '[email protected]')"
jack db execute --write "CREATE TABLE posts (id INTEGER PRIMARY KEY, title TEXT, body TEXT, created_at TEXT DEFAULT CURRENT_TIMESTAMP)"
jack db execute "SELECT name FROM sqlite_master WHERE type='table'"   # View schema
jack db execute "PRAGMA table_info(users)"

After schema changes, redeploy with jack ship.

MCP: mcp__jack__create_database, mcp__jack__execute_sql (set allow_write: true for writes; DROP/TRUNCATE blocked by default).

Logs

Stream production logs to debug issues:

jack logs

Shows real-time request/response logs. Press Ctrl+C to stop.

MCP: mcp__jack__tail_logs with duration_ms and max_events params for a bounded sample.

Common Workflow: API with Database

# 1. Create project
jack new my-api --template api

# 2. Add database
jack services db create

# 3. Create tables
jack db execute --write "CREATE TABLE items (id INTEGER PRIMARY KEY, name TEXT, created_at TEXT DEFAULT CURRENT_TIMESTAMP)"

# 4. Edit src/index.ts — add routes that query the DB
#    Access DB via: c.env.DB (the D1 binding)

# 5. Deploy
jack ship

# 6. Verify
curl https://my-api.runjack.xyz/api/items

Secrets

Store API keys and sensitive values:

# Set a secret (prompts for value)
jack secrets set STRIPE_SECRET_KEY

# Set multiple
jack secrets set API_KEY WEBHOOK_SECRET

# List secrets (names only, values hidden)
jack secrets list

Secrets are available in your worker as c.env.SECRET_NAME. Redeploy after adding secrets:

jack ship

Project Structure

my-project/
├── src/
│   └── index.ts          # Worker entry point
├── wrangler.jsonc        # Config: bindings, routes, compatibility
├── package.json
└── .jack/
    └── project.json      # Links to Jack Cloud

wrangler.jsonc defines D1 bindings, environment vars, compatibility flags
.jack/project.json links the local directory to your Jack Cloud project
src/index.ts is the main entry point — typically a Hono app

Advanced Services

Storage (R2)

jack services storage create          # Create R2 bucket
jack services storage list            # List buckets
jack services storage info            # Bucket details

Access in worker via c.env.BUCKET binding. Use for file uploads, images, assets.

MCP: mcp__jack__create_storage_bucket, mcp__jack__list_storage_buckets, mcp__jack__get_storage_info

Vector Search (Vectorize)

jack services vectorize create                    # Create index (768 dims, cosine)
jack services vectorize create --dimensions 1536  # Custom dimensions
jack services vectorize list
jack services vectorize info

Access via c.env.VECTORIZE_INDEX binding. Use for semantic search, RAG, embeddings.

MCP: mcp__jack__create_vectorize_index, mcp__jack__list_vectorize_indexes, mcp__jack__get_vectorize_info

Cron Scheduling

jack services cron create "*/15 * * * *"   # Every 15 minutes
jack services cron create "0 * * * *"      # Every hour
jack services cron list
jack services cron test "0 9 * * MON"      # Validate + show next runs

Your worker needs a scheduled() handler or POST /__scheduled route.

MCP: mcp__jack__create_cron, mcp__jack__list_crons, mcp__jack__test_cron

Custom Domains

jack domain connect app.example.com      # Reserve domain
jack domain assign app.example.com       # Assign to current project
jack domain unassign app.example.com     # Unassign
jack domain disconnect app.example.com   # Fully remove

Follow the DNS instructions printed after assign. Typically add a CNAME record.

List Projects

jack ls           # List all your projects
jack info my-api  # Details for a specific project
jack open my-api  # Open in browser

MCP: mcp__jack__list_projects with optional filter (all, local, deployed, cloud).

Troubleshooting

Problem	Fix
"Not authenticated"	Run `jack login`
"No wrangler config found"	Run from a jack project directory
"Database not found"	Run `jack services db create`
Deploy fails	Check `jack logs` for errors, fix code, `jack ship` again
Need to start over	`jack new` creates a fresh project

Reference

Services deep dive — detailed patterns for each service
Jack documentation

安全使用建议

This skill appears to be what it claims, but take these practical precautions before using it: 1) Understand that `jack ship` uploads your project source and metadata to Jack Cloud (control.getjack.org); do not ship sensitive secrets in code or commit private keys. 2) The CLI is distributed via npm — review the package and publisher on the npm registry (publisher, package readme, source repo) before running `npm i -g @getjack/jack`. 3) OAuth tokens will be stored locally at ~/.config/jack/auth.json; protect that file and remove tokens when no longer needed. 4) If you need to limit blast radius, test in an isolated environment or throwaway account/repo, or inspect the package source first. 5) If you require stronger guarantees about where your code or data go, verify Jack Cloud's privacy/security documentation or consider an alternative deployment flow (e.g., using your own Cloudflare account/wrangler).

功能分析

Type: OpenClaw Skill Name: jack-cloud Version: 0.3.1 The skill is classified as suspicious due to its broad `allowed-tools` permissions, specifically `Edit`, which grants write access to the file system. Additionally, the skill explicitly instructs the agent to install an external CLI (`@getjack/jack` via npm) and use commands like `jack ship` which upload user source code to `control.getjack.org`. The `jack db execute` command also allows arbitrary SQL execution. While these capabilities are plausibly needed for the stated purpose of deploying web services, they introduce significant security risks if the agent is compromised or misused, without clear evidence of intentional malicious behavior from the skill bundle itself.

能力评估

✓ Purpose & Capability

Name/description (deploy web services) align with requested binaries (node, npm) and the SKILL.md instructions to install and use the @getjack/jack CLI. The listed external endpoints (auth.getjack.org, control.getjack.org) and behaviors (upload source during `jack ship`, store auth at ~/.config/jack/auth.json) are coherent with a deployment service.

ℹ Instruction Scope

Instructions explicitly tell the agent/user to install the CLI, run interactive OAuth login, and upload project source code and metadata during `jack ship`. This is expected for a deploy tool, but it does mean your source code and project metadata are transmitted to control.getjack.org — a privacy/exfiltration surface the user should be aware of.

ℹ Install Mechanism

No formal platform install spec in the registry, but SKILL.md recommends `npm i -g @getjack/jack` (a public npm package). Global npm installs are common for CLIs but run arbitrary package code locally; reviewing the npm package and publisher is advisable before installing.

✓ Credentials

The skill requests no environment variables or external credentials in metadata; authentication is interactive OAuth and tokens are stored at ~/.config/jack/auth.json. The declared access matches the instructions (no unexpected credential requests or hidden env reads).

✓ Persistence & Privilege

Skill is not always-enabled and uses normal agent invocation. It creates local artifacts (.jack/project.json, auth.json) and uploads project data as part of normal operation — this is expected and limited to the tool's scope. It does not request elevated system-wide privileges.

版本历史

v0.3.1

Add clawdbot metadata, security sections, fix templates, add homepage

v0.3.0

- Added a Security & Privacy section detailing authentication, data storage, telemetry, and external endpoints used by Jack Cloud. - Listed all external endpoints and described what data is sent to each. - Expanded the project templates list in project creation (`jack new`) to include new options such as `hello`, `ai-chat`, and `nextjs`. - Updated and reorganized database command examples for clarity. - Embedded a structured `metadata` block for skill information, tool requirements, emoji, and install instructions.

v0.2.1

- Added documentation for the --json flag to jack ship for machine-readable deploy output. - Added documentation for the --json flag to jack db execute for JSON-formatted database results.

v0.2.0

- Removed Bash from the list of allowed tools in the skill manifest. - SKILL.md updated; no changes to any code or CLI/API usage documented.

v0.1.0

Jack Cloud skill 0.1.0 — First release! - Deploy APIs, websites, and backends to the cloud using simple terminal commands. - Full support for project creation, deployment, status checks, logs, secrets, and database integration (D1). - Guides for connecting storage (R2), vector search (Vectorize), cron jobs, and custom domains. - Supports both CLI usage and structured MCP tools for automation. - Includes troubleshooting steps and reference links for further help.

元数据

Slug jack-cloud

版本 0.3.1

许可证 —

累计安装 0

当前安装数 0

历史版本数 5

常见问题

Jack Cloud 是什么？

Deploy web services to the cloud with Jack. Use when: you need to create APIs, websites, or backends and deploy them live. Teaches: project creation, deploym... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件，目前累计下载 1385 次。

如何安装 Jack Cloud？

在 OpenClaw 或 Claude Code 对话框中运行命令「/install jack-cloud」即可一键安装，无需额外配置。

Jack Cloud 是免费的吗？

是的，Jack Cloud 完全免费（开源免费），可自由下载、安装和使用。

Jack Cloud 支持哪些平台？

Jack Cloud 跨平台运行，可在任意部署了 OpenClaw / Claude Code 的环境中使用（cross-platform）。

谁开发了 Jack Cloud？

由 hellno（@hellno）开发并维护，当前版本 v0.3.1。

Jack Cloud