← 返回 Skills 市场
wangyieleven11

Local-Passwords-Manager

作者 wangyieleven11 · GitHub ↗ · v1.0.0 · MIT-0
cross-platform ⚠ suspicious
219
总下载
0
收藏
1
当前安装
1
版本数
在 OpenClaw 中安装
/install local-passwords-manager
功能描述
本地密码管理器,用于存储、查询、修改和删除账号密码。当用户要求记住密码、查询密码、修改密码、删除密码时使用。 存储文件:~/.openclaw/workspace/passwords.json 特性:密码加密存储、支持多账号、记录创建/修改时间、支持备注/URL、支持姓名、全字段搜索 触发词:记住xxx密码、查一...
使用说明 (SKILL.md)

Password Manager

本地密码管理器,支持密码加密、多账号存储、时间记录、备注信息、姓名、全字段搜索。

存储位置

  • ~/.openclaw/workspace/passwords.json - 加密后的密码数据
  • ~/.openclaw/workspace/.password_key - 加密密钥(600权限)

功能特性

  • 🔐 密码加密:使用 Fernet 对称加密,密钥存储在本地文件
  • 👥 多账号:支持同一服务存储多个账号
  • 📅 时间记录:记录密码创建时间和最后修改时间
  • 📝 备注支持:支持存储 URL 或备注信息
  • 👤 姓名支持:支持存储中文名(可选)
  • 🔍 全字段搜索:支持按服务名、账号、姓名、备注搜索
  • ✏️ 修改密码:支持更新已有密码
  • 📤 导入/导出:支持 CSV 批量导入导出
  • 🏷️ 标签分类:支持给密码加标签,方便筛选
  • 原子写入:防止并发覆盖

存储字段

字段 必填 说明
username 账号/用户名
password 加密后的密码
name 可选 中文姓名
note 可选 备注/URL
tags 可选 标签数组,如 ["VPN", "服务器"]
created_at 创建时间
updated_at 最后修改时间

使用方式

记住密码

python3 scripts/password_manager.py add \x3C服务名> \x3C账号> \x3C密码> [备注] [姓名] [标签]

示例:

# 基本用法
python3 scripts/password_manager.py add GitHub [email protected] 123456

# 带备注
python3 scripts/password_manager.py add 首都之窗VPN wangteng wangteng@123 https://example.com

# 带备注、姓名和标签
python3 scripts/password_manager.py add 腾讯云 admin pass123 "" "" "云服务,生产环境,重要"

查询密码

# 查询某服务的所有账号
python3 scripts/password_manager.py get \x3C服务名>

# 查询指定账号
python3 scripts/password_manager.py get \x3C服务名> \x3C账号>

搜索密码(全字段)

支持精确搜索和模糊搜索:

# 精确搜索(默认)
python3 scripts/password_manager.py search \x3C关键词>

# 模糊搜索(支持输错字,比如输入 "wy" 能搜到 "wangyi")
python3 scripts/password_manager.py search \x3C关键词> --fuzzy

示例:

# 搜索包含 "wangyi" 的所有记录
python3 scripts/password_manager.py search wangyi

# 搜索包含 "李" 的姓名
python3 scripts/password_manager.py search 李

# 搜索备注中包含 "dify" 的记录
python3 scripts/password_manager.py search dify

修改密码

python3 scripts/password_manager.py update \x3C服务名> \x3C账号> \x3C新密码>

示例:

python3 scripts/password_manager.py update GitHub [email protected] newpass123

删除密码

# 删除指定账号
python3 scripts/password_manager.py delete \x3C服务名> \x3C账号>

# 删除整个服务
python3 scripts/password_manager.py delete \x3C服务名>

列出所有密码

# 列出所有
python3 scripts/password_manager.py list

# 按标签筛选
python3 scripts/password_manager.py list --tag VPN

# 查看所有标签
python3 scripts/password_manager.py tags

导出密码

导出所有密码为 CSV 文件:

python3 scripts/password_manager.py export

生成文件:passwords_export_YYYYMMDD_HHMMSS.csv

导入密码

从 CSV 文件导入密码:

python3 scripts/password_manager.py import \x3CCSV文件>

CSV 格式要求:

服务,账号,密码,姓名,备注,标签,创建时间,更新时间
GitHub,[email protected],123456,,,云服务,,
测试服务,test,testpass,测试用户,备注,VPN;服务器,2024-01-01,2024-01-01

注意:导入时会追加到现有数据,不会覆盖 标签用逗号分隔,如 VPN,服务器

命令行示例

# 添加密码
python3 scripts/password_manager.py add GitHub [email protected] 123456

# 添加密码(带备注、姓名和标签)
python3 scripts/password_manager.py add 腾讯云 admin pass123 "" "" "云服务,生产环境,重要"

# 查询所有账号
python3 scripts/password_manager.py get \x3C服务名>

# 查询指定账号(可复制密码)
python3 scripts/password_manager.py get \x3C服务名> \x3C账号> --copy

# 搜索(精确匹配)
python3 scripts/password_manager.py search wangyi

# 模糊搜索(支持输错字)
python3 scripts/password_manager.py search wy --fuzzy

# 列出所有密码
python3 scripts/password_manager.py list

# 按标签筛选
python3 scripts/password_manager.py list --tag VPN

# 查看所有标签
python3 scripts/password_manager.py tags

# 批量添加标签(给某服务所有账号加标签)
python3 scripts/password_manager.py add-tag \x3C服务名> \x3C标签>

# 批量添加标签(给搜索结果加标签)
python3 scripts/password_manager.py add-tag --search \x3C关键词> \x3C标签>

# 移除标签
python3 scripts/password_manager.py remove-tag \x3C服务名> \x3C账号> \x3C标签>

# 批量删除(搜索结果)
python3 scripts/password_manager.py delete --search \x3C关键词>

# 批量删除(按标签)
python3 scripts/password_manager.py delete --tag \x3C标签>

# 批量删除(无标签的记录)
python3 scripts/password_manager.py delete --empty-tags

# 修改密码
python3 scripts/password_manager.py update GitHub [email protected] newpass123

# 删除指定账号
python3 scripts/password_manager.py delete GitHub [email protected]

# 导出为 CSV
python3 scripts/password_manager.py export

# 从 CSV 导入
python3 scripts/password_manager.py import passwords.csv

数据格式

passwords.json 格式:

{
  "服务名": [
    {
      "username": "账号",
      "password": "加密后的密码",
      "name": "中文姓名(可选)",
      "note": "备注/URL(可选)",
      "created_at": "2024-01-01T12:00:00",
      "updated_at": "2024-01-02T12:00:00"
    }
  ]
}

依赖

pip install cryptography
  • cryptography:用于密码加密(必需)

测试说明

开发新功能时,使用独立的测试数据:

# 1. 创建测试数据
python3 scripts/password_manager.py add "测试服务" "testuser" "testpass123"

# 2. 测试功能
python3 scripts/password_manager.py get "测试服务"
python3 scripts/password_manager.py update "测试服务" "testuser" "newpass"
python3 scripts/password_manager.py search test

# 3. 测试完成后删除
python3 scripts/password_manager.py delete "测试服务"
安全使用建议
Key issues to consider before installing/using: - Path mismatch: SKILL.md commands reference scripts/password_manager.py but the included file is password_manager.py. Confirm the correct entrypoint before running. This mismatch could cause confusion or lead you to run an unintended script. - Likely runtime bugs: the source contains an apparent stray character and truncated code section (e.g., a stray 'i' in add_tag) which will cause Python syntax/runtime errors. The skill may not work as described until fixed. - Encryption fallback: if the cryptography package is missing, the code will store passwords in plaintext (it prints a warning). Make sure cryptography is installed and test that encryption/decryption works before trusting it with real secrets. - Data exposure: the CLI prints decrypted passwords to stdout. If an agent runs this skill autonomously, outputs may be logged or sent to other systems. Consider how outputs are handled and avoid automated exposure of plaintext secrets. - Local key handling: the symmetric key is stored in ~/.openclaw/workspace/.password_key with permissions set to 600 — this is expected for a simple local manager but store/backup policies are your responsibility. If an attacker can read that file they can decrypt all entries. Recommendations: 1) Do not import or store high-value secrets until the path mismatch and code errors are resolved. 2) Ask the publisher to fix the scripts path and any syntax/runtime bugs, and to implement/clarify clipboard/export behaviors. 3) Run the script in an isolated/test environment first, inspect the created files (~/.openclaw/workspace/passwords.json and .password_key), and verify that passwords are encrypted and decrypted correctly. 4) Review the full import/export implementation (CSV handling) to ensure it encrypts stored passwords on import. 5) If you need a production-grade password manager, prefer a well-audited, actively maintained solution.
功能分析
Type: OpenClaw Skill Name: local-passwords-manager Version: 1.0.0 The skill bundle implements a legitimate local password manager with encryption, search, and import/export functionality. It uses the 'cryptography' library (Fernet) for symmetric encryption and stores data locally in the user's home directory (~/.openclaw/workspace/). Analysis of password_manager.py and SKILL.md reveals no evidence of data exfiltration, unauthorized network calls, or malicious prompt injection; the code logic is transparent and aligns strictly with the stated purpose of managing credentials locally.
能力评估
Purpose & Capability
The name/description match the included code: a local password manager storing data under ~/.openclaw/workspace and using cryptography.Fernet. Requested dependencies (cryptography) are appropriate. However, the SKILL.md repeatedly instructs running 'python3 scripts/password_manager.py' while the repository contains 'password_manager.py' at the top level — a packaging/path mismatch that is unexpected and unnecessary for the stated purpose.
Instruction Scope
SKILL.md instructs the agent/user to run a script at scripts/password_manager.py, but the actual file is password_manager.py. The docs promise features (clipboard copy, CSV import/export) that are either not implemented as described or not verifiable from the provided code fragment. The code prints decrypted passwords to stdout — expected for a CLI but means any automated agent invoking this skill could expose plaintext to logs. SKILL.md and code also indicate the module will write both passwords.json and a .password_key file in the user's home — this is consistent but expands the agent's filesystem access surface (writes under ~/.openclaw).
Install Mechanism
No install spec; SKILL.md lists a single pip dependency (cryptography). This is proportionate and standard for local encryption. No remote downloads or obscure install URLs are used.
Credentials
The skill requests no environment variables or external service credentials. It only reads/writes files under the user's home (~/.openclaw/workspace). That file access is consistent with a local password manager.
Persistence & Privilege
The skill is not marked always:true and does not request elevated platform privileges. It writes its own files under ~/.openclaw/workspace, which is normal for local state. There is no evidence it tries to modify other skills or system-wide agent configs.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install local-passwords-manager
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /local-passwords-manager 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release of local password manager. - Securely store, query, update, and delete account passwords locally with encryption (Fernet). - Supports multiple accounts per service, record creation/update time, notes/URLs, Chinese name fields, and tagging. - Powerful search: full-field exact and fuzzy matching. - Bulk import/export via CSV, atomic file writes to prevent data corruption. - Command-line interface for all operations, including tag management and batch actions.
元数据
Slug local-passwords-manager
版本 1.0.0
许可证 MIT-0
累计安装 1
当前安装数 1
历史版本数 1
常见问题

Local-Passwords-Manager 是什么?

本地密码管理器,用于存储、查询、修改和删除账号密码。当用户要求记住密码、查询密码、修改密码、删除密码时使用。 存储文件:~/.openclaw/workspace/passwords.json 特性:密码加密存储、支持多账号、记录创建/修改时间、支持备注/URL、支持姓名、全字段搜索 触发词:记住xxx密码、查一... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 219 次。

如何安装 Local-Passwords-Manager?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install local-passwords-manager」即可一键安装,无需额外配置。

Local-Passwords-Manager 是免费的吗?

是的,Local-Passwords-Manager 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。

Local-Passwords-Manager 支持哪些平台?

Local-Passwords-Manager 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 Local-Passwords-Manager?

由 wangyieleven11(@wangyieleven11)开发并维护,当前版本 v1.0.0。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论