← 返回 Skills 市场
125
总下载
1
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install mikrotik-routeros
功能描述
Manage MikroTik RouterOS devices via API to view status, firewall, network config, logs, users, backups, and run custom commands across multiple devices.
安全使用建议
This skill appears to implement a MikroTik API client and local network scanner, which fits the stated purpose — but there are several red flags you should consider before installing or running it:
- Network scanning: The skill actively probes local subnets (threads, TCP connects to 8728/8729) and runs system commands (ip/ipconfig/arp). Run only on isolated/test networks or with explicit admin approval to avoid alerts or policy violations.
- Credentials handling: SKILL.md suggests storing passwords in ~/.openclaw/workspace/TOOLS.md (plaintext) and/or environment variables. Do not store real admin credentials in plaintext. Prefer temporary accounts, scoped credentials, or using the CLI arguments for short-lived sessions; rotate/delete credentials after use.
- Metadata vs instructions mismatch: The manifest does not declare the environment variables or handler files documented in SKILL.md/README. That inconsistency could indicate sloppy packaging or missing integration code — review the bundled files carefully before use.
- Code quality issues: The included client/scanner code uses subprocess with shell=True and has some fragile/buggy logic (e.g., response parsing/login heuristics). These are not proof of malicious intent, but they increase risk of runtime failures or unexpected behavior; review the source and test in a safe environment.
Recommendations: review the skill's source code yourself (or have an administrator do so), test only on an isolated lab network, avoid putting production admin passwords into TOOLS.md, and prefer temporary or least-privileged accounts. If you can't audit the code or the source is untrusted, do not run the scanner or any automated scans on production networks.
功能分析
Type: OpenClaw Skill
Name: mikrotik-routeros
Version: 2026.3.30
The skill provides extensive MikroTik RouterOS management capabilities, including the execution of arbitrary commands on remote devices (client.py) and active network scanning (scanner.py). It uses subprocess to call system utilities like ipconfig, ip addr, and arp to discover local subnets and device MAC addresses. While these high-risk behaviors are documented and aligned with the tool's stated purpose, the combination of network discovery, shell-out logic, and remote command execution warrants a suspicious classification under the provided criteria.
能力评估
Purpose & Capability
Name/description match the included code: client, command wrappers, CLI and a network scanner for MikroTik RouterOS. However the SKILL.md/README describe files and behavior (e.g., handler.py, mikrotik-api/ layout, TOOLS.md integration) that aren't present in the manifest or metadata, which is an incoherence between claimed configuration mechanisms and the actual package.
Instruction Scope
SKILL.md explicitly instructs the agent to perform local network scans and to use environment variables or a TOOLS.md file for credentials. The scanner uses subprocess calls (ip/ipconfig/arp) and threaded TCP probes of the local subnet (ports 8728/8729). Network scanning is intrusive and can trigger monitoring/alerts; the README warns about this. Also SKILL.md recommends writing plaintext passwords to ~/.openclaw/workspace/TOOLS.md (which is insecure). The instructions refer to config/file locations and a handler.py that are not present in the code, indicating mismatch between runtime instructions and actual implementation.
Install Mechanism
No install spec is provided (instruction-only + bundled source files). This is lower risk than downloading arbitrary binaries. All code is included in the skill bundle (no external installs), so nothing is fetched from unknown URLs at install time.
Credentials
Registry metadata declares no required environment variables, but SKILL.md documents MIKROTIK_HOST/MIKROTIK_USER/MIKROTIK_PASS and recommends using env vars instead of TOOLS.md. That mismatch is confusing and could lead users to store credentials insecurely. The code accepts credentials at runtime (CLI args or passed to RouterOSApi) and does not require unrelated credentials. The scanner and CLI call system commands (via subprocess with shell=True in some places), which increases the attack surface if inputs are not tightly controlled.
Persistence & Privilege
The skill is not configured with always:true and does not request system-wide configuration changes in the manifest. It performs network operations and subprocess calls at runtime, but it does not request elevated persistent privileges in the metadata.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install mikrotik-routeros - 安装完成后,直接呼叫该 Skill 的名称或使用
/mikrotik-routeros触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v2026.3.30
Initial release of the MikroTik RouterOS skill.
- Connect and manage MikroTik RouterOS devices via API.
- View device status, firewall rules, and network configuration.
- Execute custom RouterOS commands.
- Support for multi-device connection.
- Configure device access via environment variables or TOOLS.md.
元数据
常见问题
Mikrotik RouterOS 是什么?
Manage MikroTik RouterOS devices via API to view status, firewall, network config, logs, users, backups, and run custom commands across multiple devices. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 125 次。
如何安装 Mikrotik RouterOS?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install mikrotik-routeros」即可一键安装,无需额外配置。
Mikrotik RouterOS 是免费的吗?
是的,Mikrotik RouterOS 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
Mikrotik RouterOS 支持哪些平台?
Mikrotik RouterOS 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Mikrotik RouterOS?
由 drodecker(@drodecker)开发并维护,当前版本 v2026.3.30。
推荐 Skills