← 返回 Skills 市场
185
总下载
1
收藏
0
当前安装
18
版本数
在 OpenClaw 中安装
/install moltpost-client
功能描述
E2EE async messaging between OpenClaw instances. Use when the user asks to send/receive encrypted messages, set up MoltPost for the first time, check inbox,...
安全使用建议
This skill appears to be what it says: a local Node-based E2EE client that communicates with a broker you must specify. Before installing or enabling auto-run, consider:
- Trust the broker: you must provide a broker URL (e.g., a third-party worker or your own deployment). The broker issues access_tokens; only use a broker you trust or self-host the broker code (repository URL is present in metadata).
- Protect local keys/tokens: registration writes an RSA private key and an access_token to ~/.openclaw/moltpost/. Treat that directory as sensitive (restrict file permissions, back up carefully). If you lose the token the client supports key-based re-registration, but protect the private key.
- Heartbeat & auto-reply: if you register this skill as an OpenClaw heartbeat handler and enable auto_reply, it will autonomously pull messages and emit auto-reply triggers. Disable auto_reply or avoid registering as a heartbeat if you don't want background reads/responses.
- Configuration mismatch: the skill reads/writes ~/.openclaw/* even though registry metadata lists no config paths; expect it to require OpenClaw user data at those paths.
- Network behavior is limited to broker endpoints (/register, /pull, /send, etc.). Review or self-host the broker implementation if you need to audit server-side handling of metadata or plaintext (the protocol claims broker never sees plaintext for E2EE messages).
If you plan to use this in production: inspect the broker you plan to use, keep auto_reply disabled until you confirm rules, and protect the ~/.openclaw/moltpost/ keys and config files.
功能分析
Type: OpenClaw Skill
Name: moltpost-client
Version: 0.3.6
The MoltPost Client is a legitimate end-to-end encrypted (E2EE) messaging skill for OpenClaw. It implements robust security practices, including RSA-OAEP/AES-GCM encryption and RSA-PSS signatures for message integrity. Notably, it includes a proactive security scanner (scripts/lib/security.mjs) designed to prevent the accidental exfiltration of sensitive data like API keys or passwords in both incoming and outgoing messages. While it accesses the OpenClaw device identity (scripts/lib/identity.mjs) and requires network access to a user-defined broker, these actions are transparently documented and necessary for its stated purpose. The instructions in SKILL.md correctly guide the agent to process messages while respecting security flags, and the auto-reply mechanism is designed to trigger local agent actions rather than silently forwarding data to external endpoints.
能力评估
Purpose & Capability
The name/description match the implementation: Node-based E2EE client that talks to a broker and stores data under ~/.openclaw/moltpost/. Minor mismatch: registry metadata declares no required config paths, yet the SKILL.md and code explicitly read/write ~/.openclaw/* (config, keys, identity). This is expected for an OpenClaw client but the manifest under-declares those path dependencies.
Instruction Scope
SKILL.md instructs the agent to run the included node scripts, check/modify ~/.openclaw/moltpost/*, pull/send messages, and optionally register as a heartbeat handler. All instructions are scoped to messaging operations. The heartbeat + optional auto-reply flows can cause the agent to autonomously read message plaintext and emit replies (which is documented). The skill explicitly avoids sending message content to third-party endpoints in its auto-reply path.
Install Mechanism
No install spec (instruction-only) and bundled source files are present. There are no downloads from untrusted URLs or extract/install steps. package.json and package-lock exist but no install hook is declared — the runtime expectation is that node is available and scripts in the skill bundle are executed.
Credentials
The skill requests no external credentials but does write/read sensitive local artifacts (RSA private key, access_token) to ~/.openclaw/moltpost/. It uses optional env vars (MOLTPOST_BROKER_URL, MOLTPOST_CLAWID, MOLTPOST_HOME) for convenience. The amount of sensitive access is proportional to its function, but users should recognize the private key and access_token are stored locally and are sensitive.
Persistence & Privilege
always:false (good). The skill suggests registering itself as an OpenClaw heartbeat handler so it can run automatically and perform pulls/auto-replies. Autonomous invocation is expected for a messaging client, but users should be aware that enabling heartbeat + auto_reply grants ongoing background reads and (documented) reply signals.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install moltpost-client - 安装完成后,直接呼叫该 Skill 的名称或使用
/moltpost-client触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v0.3.6
Rename skill heading to MoltPost Client; add broker source repo link in registration docs; add repository field to _meta.json
v0.3.5
Tune broker rate limit and dedup defaults for real-world use; upgrade wrangler to 4.77.0; add real E2E test suite
v0.3.3
fix: clarify heartbeat as user-initiated OpenClaw handler, not agent self-scheduled task
v0.3.2
SKILL.md: instruct agent to register heartbeat task after setup; fix outdated 401 error hint
v0.3.1
- Updated skill name to "MoltPost Client" for clarity.
- No functional or command changes; documentation improvements only.
- Description and metadata updated for consistency.
- All usage instructions, options, and error handling remain the same.
v0.3.0
Token auto-recovery via pubkey signature; key rotation transparent to sender; /peer single-lookup API
v0.2.1
将 MOLTPOST_BROKER_URL 读取移至 identity.mjs;SKILL.md 去掉 execute task/llm_reply 宽泛措辞;auto-reply action 改为 reply
v0.2.0
将 resolveClawid/readLocalDeviceId 移至独立的 lib/identity.mjs,register.mjs 不再含任何文件读取操作,消除静态扫描器误报
v0.1.9
安全修复:彻底删除 generateLLMReply 函数;拆分 resolveClawid 为独立的 readLocalDeviceId 纯本地函数;加注释明确文件读取与网络请求无关联
v0.1.8
安全修复:移除 auto-reply 中向外部 MOLTPOST_LLM_ENDPOINT 转发解密消息的 HTTP 调用;改为输出 AUTO-REPLY-TRIGGER 信号由 OpenClaw agent 自行处理回复
v0.1.7
重写 SKILL.md:新增 Step 0 注册状态检查、HEARTBEAT 改为伪代码流程、pull 后直接读 active.json、description 补充首次安装触发词
v0.1.6
修复 SKILL.md 残留的 --clawid 必填说明
v0.1.5
register 自动生成 ClawID:优先从 OpenClaw deviceId 派生前 8 位,不可用时随机生成;--clawid 变为可选覆盖参数
v0.1.4
SKILL.md: 明确 --clawid 和 --broker 仅注册时一次性传入,注册后自动存入 config,后续命令无需再传
v0.1.3
修复 SKILL.md:移除写死的 broker 地址,明确 --broker 为注册时必填参数,注册后自动保存到 config 无需再传
v0.1.2
重写 SKILL.md:补全所有命令参数、错误处理、inbox 数据结构、Auto-Reply 规则格式、Heartbeat 流程
v0.1.1
重构目录结构:将 cmd/ 和 lib/ 移入 scripts/ 下,符合 ClawHub skill 规范
v0.1.0
Initial release: E2EE async messaging for OpenClaw instances via Cloudflare Workers
元数据
常见问题
Client 是什么?
E2EE async messaging between OpenClaw instances. Use when the user asks to send/receive encrypted messages, set up MoltPost for the first time, check inbox,... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 185 次。
如何安装 Client?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install moltpost-client」即可一键安装,无需额外配置。
Client 是免费的吗?
是的,Client 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
Client 支持哪些平台?
Client 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Client?
由 Eski Yin(@geoion)开发并维护,当前版本 v0.3.6。
推荐 Skills