← 返回 Skills 市场
wu-uk

modora

作者 wu-uk · GitHub ↗ · v0.1.3 · MIT-0
cross-platform ✓ 安全检测通过
215
总下载
0
收藏
0
当前安装
4
版本数
在 OpenClaw 中安装
/install modora-http
功能描述
Use this skill to analyze PDFs with a remote MoDora HTTP service. Credentials are managed through declared environment variables and are not stored in the se...
安全使用建议
This skill is internally consistent for its stated purpose. Before installing: (1) only use it if you trust the remote MoDora operator — the skill will transmit your MODORA_USER_API_KEY and related model info to that server; (2) follow the requirement to supply a user-owned settings.json that contains no secrets; (3) you must explicitly opt into remote credential use (--allow-remote-credentials or MODORA_ALLOW_REMOTE_CREDENTIALS=1) to run upload/chat; (4) prefer testing with an ephemeral or scoped API key and confirm the base URL uses HTTPS; (5) if you do not trust the operator, deploy MoDora locally instead or do not use the skill. The code is straightforward and readable; inspect it yourself if you need further assurance.
功能分析
Type: OpenClaw Skill Name: modora-http Version: 0.1.3 The MoDora skill bundle is a well-structured tool for interacting with a remote PDF analysis service. It includes several security-conscious features, such as enforcing HTTPS for remote endpoints, scanning user-provided settings files to prevent accidental secret leakage (via find_forbidden_settings_keys in common.py), and requiring an explicit opt-in flag (--allow-remote-credentials) before transmitting data. The scripts use standard Python libraries and align strictly with the stated purpose of document upload and querying without any signs of malicious intent or unauthorized data access.
能力评估
Purpose & Capability
Name/description (PDF analysis via remote MoDora) aligns with requested artifacts: python3, scripts for upload/health/wait/chat, and environment variables for base URL, API key, endpoint, and model. The requested env vars are consistent with a design where the remote service uses user-managed model credentials.
Instruction Scope
SKILL.md and the scripts limit actions to: validating a user-owned settings.json (for routing), enforcing absolute file paths, requiring explicit acknowledgement before remote operations, performing health/upload/status/chat calls to the configured MoDora base URL, and refusing to fall back to server defaults. The instructions do not read unrelated files, system state, or other credentials.
Install Mechanism
No install spec or external downloads; the skill is provided as included Python scripts that run with python3. No remote installers or package downloads are invoked, lowering install-time risk.
Credentials
The required env vars (MODORA_BASE_URL, MODORA_USER_API_KEY, MODORA_USER_ENDPOINT, MODORA_USER_MODEL) are consistent with the skill's design, but they are highly sensitive: the scripts send the API key and endpoint to the remote MoDora service (Authorization and X-Modora-Endpoint headers). The SKILL.md warns and requires explicit user acknowledgement, which is appropriate, but users must understand this means their model credentials are transmitted to and used by that remote operator.
Persistence & Privilege
The skill does not request always:true, does not modify other skills or system-wide configs, and has no install-time persistence beyond the provided scripts. Autonomous invocation is allowed (platform default) but there are no additional privileges requested.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install modora-http
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /modora-http 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v0.1.3
Declare OpenClaw credential metadata, move credentials to environment variables and headers, require HTTPS for remote endpoints, and reject secrets in settings files.
v0.1.2
Declare OpenClaw credential metadata, move credentials to environment variables and headers, require HTTPS for remote endpoints, and reject secrets in settings files.
v0.1.1
Add explicit security disclosure and require acknowledgement before sending remote model credentials.
v0.1.0
Initial release. Supports authenticated MoDora frontend separation, requires user-owned settings.json, and uses multimodal model configuration for HTTP-based document QA.
元数据
Slug modora-http
版本 0.1.3
许可证 MIT-0
累计安装 0
当前安装数 0
历史版本数 4
常见问题

modora 是什么?

Use this skill to analyze PDFs with a remote MoDora HTTP service. Credentials are managed through declared environment variables and are not stored in the se... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 215 次。

如何安装 modora?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install modora-http」即可一键安装,无需额外配置。

modora 是免费的吗?

是的,modora 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。

modora 支持哪些平台?

modora 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 modora?

由 wu-uk(@wu-uk)开发并维护,当前版本 v0.1.3。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论