← 返回 Skills 市场
Lap 1password Connect
作者
mickmicksh
· GitHub ↗
· v1.0.1
· MIT-0
248
总下载
0
收藏
1
当前安装
2
版本数
在 OpenClaw 中安装
/install lap-1password-connect
功能描述
1Password Connect API skill. Use when working with 1Password Connect for activity, vaults, heartbeat. Covers 15 endpoints.
使用说明 (SKILL.md)
1Password Connect
API version: 1.5.7
Auth
Bearer bearer
Base URL
http://localhost:8080/v1
Setup
- Set Authorization header with your Bearer token
- GET /activity -- verify access
- POST /vaults/{vaultUuid}/items -- create first items
Endpoints
15 endpoints across 5 groups. See references/api-spec.lap for full details.
activity
| Method | Path | Description |
|---|---|---|
| GET | /activity | Retrieve a list of API Requests that have been made. |
vaults
| Method | Path | Description |
|---|---|---|
| GET | /vaults | Get all Vaults |
| GET | /vaults/{vaultUuid} | Get Vault details and metadata |
| GET | /vaults/{vaultUuid}/items | Get all items for inside a Vault |
| POST | /vaults/{vaultUuid}/items | Create a new Item |
| GET | /vaults/{vaultUuid}/items/{itemUuid} | Get the details of an Item |
| PUT | /vaults/{vaultUuid}/items/{itemUuid} | Update an Item |
| DELETE | /vaults/{vaultUuid}/items/{itemUuid} | Delete an Item |
| PATCH | /vaults/{vaultUuid}/items/{itemUuid} | Update a subset of Item attributes |
| GET | /vaults/{vaultUuid}/items/{itemUuid}/files | Get all the files inside an Item |
| GET | /vaults/{vaultUuid}/items/{itemUuid}/files/{fileUuid} | Get the details of a File |
| GET | /vaults/{vaultUuid}/items/{itemUuid}/files/{fileUuid}/content | Get the content of a File |
heartbeat
| Method | Path | Description |
|---|---|---|
| GET | /heartbeat | Ping the server for liveness |
health
| Method | Path | Description |
|---|---|---|
| GET | /health | Get state of the server and its dependencies. |
metrics
| Method | Path | Description |
|---|---|---|
| GET | /metrics | Query server for exposed Prometheus metrics |
Common Questions
Match user requests to endpoints in references/api-spec.lap. Key patterns:
- "List all activity?" -> GET /activity
- "List all vaults?" -> GET /vaults
- "Get vault details?" -> GET /vaults/{vaultUuid}
- "List all items?" -> GET /vaults/{vaultUuid}/items
- "Create a item?" -> POST /vaults/{vaultUuid}/items
- "Get item details?" -> GET /vaults/{vaultUuid}/items/{itemUuid}
- "Update a item?" -> PUT /vaults/{vaultUuid}/items/{itemUuid}
- "Delete a item?" -> DELETE /vaults/{vaultUuid}/items/{itemUuid}
- "Partially update a item?" -> PATCH /vaults/{vaultUuid}/items/{itemUuid}
- "List all files?" -> GET /vaults/{vaultUuid}/items/{itemUuid}/files
- "Get file details?" -> GET /vaults/{vaultUuid}/items/{itemUuid}/files/{fileUuid}
- "List all content?" -> GET /vaults/{vaultUuid}/items/{itemUuid}/files/{fileUuid}/content
- "List all heartbeat?" -> GET /heartbeat
- "List all health?" -> GET /health
- "List all metrics?" -> GET /metrics
- "How to authenticate?" -> See Auth section
Response Tips
- Check response schemas in references/api-spec.lap for field details
- List endpoints may support pagination; check for limit, offset, or cursor params
- Create/update endpoints typically return the created/updated object
CLI
# Update this spec to the latest version
npx @lap-platform/lapsh get 1password-connect -o references/api-spec.lap
# Search for related APIs
npx @lap-platform/lapsh search 1password-connect
References
- Full spec: See references/api-spec.lap for complete endpoint details, parameter tables, and response schemas
Generated from the official API spec by LAP
安全使用建议
This skill appears to do what it says: talk to a local 1Password Connect server using the provided 1PASSWORD_CONNECT_API_KEY. Before installing, confirm the following: (1) the base URL (http://localhost:8080/v1) points to the Connect server you intend to use — if you plan to use a remote host, understand the network implications; (2) the API key you provide has minimal required scope and is treated as a secret (rotate/revoke if exposed); (3) if you do not want the agent to call the API autonomously, disable autonomous invocation for this skill or provide a scoped key that limits what the agent can do; and (4) avoid running the optional npx commands unless you trust they will fetch the official spec (they perform a network fetch and require npm). Overall there are no unexpected env vars, installs, or filesystem accesses in the skill.
功能分析
Type: OpenClaw Skill
Name: lap-1password-connect
Version: 1.0.1
The skill bundle is a standard API integration for 1Password Connect, providing instructions for an AI agent to interact with vault items, files, and activity logs. It correctly identifies the need for the 1PASSWORD_CONNECT_API_KEY environment variable and defaults to a local base URL (http://localhost:8080/v1), which is typical for 1Password Connect deployments. No evidence of malicious intent, data exfiltration to unauthorized endpoints, or prompt injection was found in SKILL.md or _meta.json.
能力评估
Purpose & Capability
Name/description, declared env var (1PASSWORD_CONNECT_API_KEY), and the listed endpoints (vaults, activity, heartbeat, health, metrics) align with a 1Password Connect integration. There are no unrelated binaries, configs, or credentials requested.
Instruction Scope
The SKILL.md instructs the agent to call local 1Password Connect endpoints (base URL http://localhost:8080/v1) and to use a Bearer token from 1PASSWORD_CONNECT_API_KEY — this is appropriate for the stated purpose. The doc also suggests running npx @lap-platform/lapsh to fetch references/api-spec.lap (a CLI/network operation) — that is optional documentation tooling and not required for API use; if executed it will perform a network fetch and requires npm. The skill's runtime instructions do not ask the agent to read arbitrary local files or exfiltrate data to third-party endpoints.
Install Mechanism
No install spec or code is included (instruction-only), so nothing will be downloaded or written to disk by the skill itself.
Credentials
Only a single env var (1PASSWORD_CONNECT_API_KEY) is required, which is proportional to a Connect API skill. However, that API key grants access to vaults and items according to its privileges — treat it as highly sensitive and prefer least-privilege keys and scoped service accounts.
Persistence & Privilege
always is false and there is no install or persistent modification of agent/system state. The skill can be invoked autonomously by the agent (disable-model-invocation is false), which is the platform default; this is expected behavior but worth noting because an autonomous agent could call the 1Password API using the provided key.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install lap-1password-connect - 安装完成后,直接呼叫该 Skill 的名称或使用
/lap-1password-connect触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.1
- Rolled back 1Password Connect API version from 1.7.1 to 1.5.7 in documentation.
- Added a CLI section with commands to update the API spec and search for related APIs.
- No changes to endpoints or usage instructions.
v1.0.0
Initial release of lap-1password-connect.
- Provides access to 15 endpoints from 1Password Connect API v1.7.1, including activity, vaults, heartbeat, health, and metrics.
- Supports full CRUD for vault items and retrieval of vault and file data.
- Includes instructions for setup and authentication using Bearer tokens.
- Offers user query matching examples and response schema tips.
- Requires 1PASSWORD_CONNECT_API_KEY environment variable for operation.
元数据
常见问题
Lap 1password Connect 是什么?
1Password Connect API skill. Use when working with 1Password Connect for activity, vaults, heartbeat. Covers 15 endpoints. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 248 次。
如何安装 Lap 1password Connect?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install lap-1password-connect」即可一键安装,无需额外配置。
Lap 1password Connect 是免费的吗?
是的,Lap 1password Connect 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
Lap 1password Connect 支持哪些平台?
Lap 1password Connect 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Lap 1password Connect?
由 mickmicksh(@mickmicksh)开发并维护,当前版本 v1.0.1。
推荐 Skills