← 返回 Skills 市场
323
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install my-computer
功能描述
Desktop automation agent that uses CLI commands, application automation, and scripting to work directly with the user's local machine. Use this skill wheneve...
安全使用建议
This skill appears to do what it claims: local file and application automation implemented as shell scripts. However, it will enumerate and modify files, run AppleScript (can read Mail, Calendar, browser state), and writes manifests with absolute paths to ~/.my-computer-manifests. The reference docs show examples that post reports or files to Slack using SLACK_WEBHOOK_URL or SLACK_TOKEN — those are not declared as required env vars in the registry. Before using:
- Only run it with explicit user consent for any destructive operation (the skill's docs promise confirmations, but verify prompts are shown).
- Inspect the scripts yourself or run them in a small test directory first to confirm behavior.
- Do not supply cloud/webhook credentials unless you understand exactly what will be sent; consider creating a dedicated webhook or bot token with limited scope if you want notifications.
- Be aware manifests contain file paths; if that is sensitive, remove them or secure the manifest directory after runs.
- Backup important data before running large batch operations.
If you want higher assurance, request the skill author to declare optional env vars (e.g., SLACK_WEBHOOK_URL) in metadata and to provide stronger, interactive confirmation steps before any destructive action.
功能分析
Type: OpenClaw Skill
Name: my-computer
Version: 1.0.0
The 'my-computer' skill bundle provides powerful desktop automation capabilities, including shell execution, application scripting (AppleScript/JXA), and system persistence (launchd/cron). While these are aligned with the stated purpose of a desktop automation agent and are accompanied by extensive safety documentation (e.g., permission tiers and dry-run requirements in SKILL.md), they constitute high-risk behaviors. Additionally, 'scripts/undo_operation.sh' contains a security vulnerability where it uses 'eval()' in a Python fallback to parse JSON keys from a manifest file, which could be exploited if a manifest is maliciously crafted. No clear evidence of intentional malice or data exfiltration was found, and the bundle includes proactive safety features like undo manifests and batch previews.
能力评估
Purpose & Capability
Name/description describe local desktop automation and the included scripts (disk_report, batch_preview, batch_executor, find_duplicates, undo) directly implement that functionality. The references about macOS/Linux/Windows tooling and application automation align with the stated purpose.
Instruction Scope
SKILL.md and the reference docs explicitly instruct the agent to inspect arbitrary filesystem locations, read metadata (EXIF/mdls), run AppleScript/osascript (Mail, Calendar, Finder, browsers), and manipulate files (move/rename/delete). This is coherent for a local automation tool, but it means the skill will read potentially sensitive local data and control apps — the user should expect that level of access. The docs also include examples that send data to external endpoints (Slack webhook / Slack API) which can transmit local files or reports off-machine if credentials are supplied.
Install Mechanism
Instruction-only skill with no install spec. All code is plain shell scripts bundled in the skill; nothing is downloaded from external URLs and no archives are extracted. This minimizes install-time risk.
Credentials
Registry metadata declares no required env vars, but documentation/examples reference environment variables (e.g., SLACK_WEBHOOK_URL, SLACK_TOKEN) and the skill supports uploading reports/files to external services. The skill will create persistent manifests under ~/.my-computer-manifests containing absolute file paths. Asking for or supplying credentials for cloud endpoints is optional but not declared in metadata — that mismatch increases the risk of accidental data exfiltration if credentials are provided or used without user understanding.
Persistence & Privilege
always:false (normal). The scripts create a manifest directory in the user's home (~/.my-computer-manifests) to record actions and enable undo; this is expected for a batch executor but does mean manifests storing full paths will persist on disk. The skill does not request system-wide privilege changes or modify other skills' settings.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install my-computer - 安装完成后,直接呼叫该 Skill 的名称或使用
/my-computer触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
my-computer 1.0.0 – Initial Release
- Introduces a desktop automation agent for automating tasks directly on your local machine using CLI commands, scripting, and application automation.
- Supports intelligent file organization, batch processing, deduplication, and format conversion, leveraging metadata and content analysis.
- Provides workflows for automating desktop applications (Finder, browsers, IDEs, etc.), scheduling tasks, and utilizing local compute resources.
- Safety-first approach: includes reconnaissance, planning, dry run previews, manifest-based execution, and detailed post-operation reporting.
- Designed for both one-off and large-scale repetitive tasks with undo/rollback safety built in.
元数据
常见问题
my-computer 是什么?
Desktop automation agent that uses CLI commands, application automation, and scripting to work directly with the user's local machine. Use this skill wheneve... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 323 次。
如何安装 my-computer?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install my-computer」即可一键安装,无需额外配置。
my-computer 是免费的吗?
是的,my-computer 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
my-computer 支持哪些平台?
my-computer 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 my-computer?
由 mike wang(@mikewang817)开发并维护,当前版本 v1.0.0。
推荐 Skills