← 返回 Skills 市场
Max Auth
作者
Felipe Matos
· GitHub ↗
· v2.2.0
· MIT-0
441
总下载
1
收藏
2
当前安装
6
版本数
在 OpenClaw 中安装
/install max-auth
功能描述
Security authentication gate for OpenClaw sensitive actions. Deploys a local Node.js auth server with biometric passkeys (WebAuthn/Touch ID/Face ID) and mast...
安全使用建议
This skill appears to implement a local auth server that needs Node.js and npm, but the registry metadata omitted the Node requirement — don't rely on the metadata alone. Before installing: (1) review the full auth-server.js (the listing was truncated) to confirm one-time secrets truly stay in memory and are not written to disk; (2) be cautious about exposing the server externally (reverse proxy or Tailscale examples) — only expose it with correct HTTPS and access controls; (3) note the code runs a local shell command ('tailscale status') if available — ensure your PATH and local binaries are trusted; (4) run npm install in an isolated environment (container or dedicated user) if you want to limit blast radius; (5) confirm you are comfortable with files created in ~/.max-auth (password hash, passkeys, audit log). If anything looks unexpected in the missing portions of auth-server.js, do not install or run it until clarified.
功能分析
Type: OpenClaw Skill
Name: max-auth
Version: 2.2.0
The max-auth skill bundle provides a legitimate local authentication server designed to protect sensitive agent actions using master passwords and biometric passkeys (WebAuthn). The implementation in auth-server.js follows security best practices, including PBKDF2 password hashing with salts, rate limiting to prevent brute-force attacks, and audit logging. A notable security-enhancing feature is the 'secure secret handoff,' which allows users to provide credentials via a one-time browser form that stores data in memory only, preventing sensitive keys from appearing in chat transcripts. No evidence of data exfiltration, malicious execution, or unauthorized persistence was found.
能力标签
能力评估
Purpose & Capability
The SKILL.md and package.json clearly require Node.js (and instruct running npm install), but the registry metadata lists no required binaries; that is an incoherence. The declared purpose (local auth server with WebAuthn and one-time secret forms) does explain the files present and the npm dependency, but the metadata omission could mislead automatic guards or users.
Instruction Scope
Runtime instructions are focussed on deploying a local auth server: copying files to ~/.max-auth, running npm install, setting a master password, and starting the server. The instructions intentionally write persistent files under ~/.max-auth (password hash, session, passkeys, audit log) which is consistent with an auth server. The docs also show examples to expose the server via reverse proxies and Tailscale — exposing the server to networks increases risk and requires careful configuration. SKILL.md claims one-time secret values are memory-only; I could not fully verify this because the bundled JS was truncated in the listing.
Install Mechanism
There is no formal install spec; installation is manual (copy files, npm install). The package.json pulls @simplewebauthn/server from npm — a normal dependency for WebAuthn. Because installation is user-run (npm install), there is no direct download-from-arbitrary-URL risk, but users must be aware npm will fetch packages from the registry.
Credentials
The skill declares no required environment variables in registry metadata, yet the code reads optional env vars (AUTH_PORT, RP_ID, RP_ORIGIN). No unrelated credential values are requested. However, code attempts to run a child_process to call 'tailscale status --json' to determine RP_ID: this probes system state outside the described auth-server core (it’s a convenience for auto-detecting an origin but is an unexpected side-effect).
Persistence & Privilege
The server persists configuration and logs under the user's home (~/.max-auth) and the documentation includes a systemd example for persistent running under the user account. It does not request system-wide privileges by default (no always: true). Running it as a system service or exposing it through a reverse proxy/Tailscale raises additional risk but is an explicit operator choice in the docs.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install max-auth - 安装完成后,直接呼叫该 Skill 的名称或使用
/max-auth触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v2.2.0
Add Spanish UI, document session-scoped auth, and align secure one-time secret handoff flow with the live local server.
v2.1.0
Add request_secret + retrieve_secret tools for secure one-time URL secret submission (v2.1.0).
v2.0.0
v2: Session-scoped auth — each channel/session gets its own independent token. check_auth now accepts sessionKey param. Auth URL includes ?session= for channel-specific login. Backward compatible with v1 via global key.
v1.2.0
v1.2.0: Removed Tailscale dependency — works with any HTTPS reverse proxy (nginx, Caddy, Cloudflare Tunnel, ngrok, etc.). Updated docs with setup examples for all options.
v1.1.0
v1.1.0: Security fixes (removed shell exec + env credential reads), config via file/CLI args, new 'configure' command, complete documentation
v1.0.0
Initial release: biometric passkeys (WebAuthn), master password, session tokens, rate limiting, audit trail, i18n (pt-BR/en), OpenClaw plugin integration
元数据
常见问题
Max Auth 是什么?
Security authentication gate for OpenClaw sensitive actions. Deploys a local Node.js auth server with biometric passkeys (WebAuthn/Touch ID/Face ID) and mast... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 441 次。
如何安装 Max Auth?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install max-auth」即可一键安装,无需额外配置。
Max Auth 是免费的吗?
是的,Max Auth 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
Max Auth 支持哪些平台?
Max Auth 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Max Auth?
由 Felipe Matos(@felipematos)开发并维护,当前版本 v2.2.0。
推荐 Skills