← 返回 Skills 市场
106
总下载
0
收藏
1
当前安装
1
版本数
在 OpenClaw 中安装
/install nm-leyline-authentication-patterns
功能描述
Authentication patterns for external services: API keys, OAuth, token management, verification. authentication, API keys, OAuth, token management, credentials.
安全使用建议
This is a documentation-only skill that outlines patterns for API keys, OAuth, token refresh, and an interactive shell helper that caches tokens locally. Before installing or using it: 1) Understand it expects and may prompt you to enter sensitive credentials (GitHub/GitLab/AWS/GCP tokens) and will cache them under ~/.cache/claude-auth or standard CLI config paths — use ephemeral tokens where possible and inspect/delete caches after use. 2) It runs local CLIs (gh, glab, aws, gcloud and arbitrary binaries named by a 'service' parameter) — ensure those CLIs are trusted and present; malicious or misconfigured binaries with the same name could be invoked. 3) The skill references a script path to source (plugins/leyline/scripts/interactive_auth.sh) that is not included here; review or provide the actual script before sourcing. 4) In CI use secrets management (GitHub Actions secrets, etc.) rather than interactive credential entry. If you need higher assurance, ask the author for the interactive_auth.sh script and for explicit explanation of the declared config path (night-market.error-patterns) and confirm where on disk tokens are stored and how they are secured/rotated.
功能分析
Type: OpenClaw Skill
Name: nm-leyline-authentication-patterns
Version: 1.0.0
The skill bundle provides a comprehensive set of patterns and utilities for managing authentication with external services like GitHub, GitLab, and AWS. It includes documentation and code snippets for API key verification, OAuth flows, token caching, and session management. The functionality is clearly aligned with its stated purpose of credential management, using standard CLI tools (gh, glab, aws) and local caching (e.g., ~/.cache/claude-auth), with no evidence of malicious intent or data exfiltration.
能力标签
能力评估
Purpose & Capability
Name/description match the content: the files document API-key, OAuth, and token flows and give shell/python patterns for verification and caching. One minor mismatch: the metadata declares a required config path (night-market.error-patterns) that is not explained in the description or modules and appears unrelated to core auth functionality.
Instruction Scope
SKILL.md and modules instruct the agent/workflow to read environment variables, prompt for secrets, run local CLIs (gh, glab, aws, gcloud, arbitrary <service> binaries via subprocess), and store tokens in ~/.cache/claude-auth/. Those behaviors are coherent for an authentication helper, but they do grant the skill the ability to run arbitrary local commands (dependent on the 'service' value) and to persist secrets to disk — both of which the user should be aware of.
Install Mechanism
Instruction-only skill with no install spec and no code files to write to disk. Low install-surface risk.
Credentials
The skill declares no required env vars but its instructions and examples read and suggest setting many sensitive environment variables (GITHUB_TOKEN, AWS_ACCESS_KEY_ID, AWS_SECRET_ACCESS_KEY, GOOGLE_APPLICATION_CREDENTIALS, etc.). This is proportionate to an auth helper, but the metadata omission (no required envs) means the skill will attempt to access secrets at runtime without having declared them up front.
Persistence & Privilege
The documentation instructs caching tokens and session files under ~/.cache/claude-auth and references token storage locations under ~/.config/{service}. This is expected for convenience but results in persistent sensitive data on disk; the skill does not request always:true and does not modify other skills.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install nm-leyline-authentication-patterns - 安装完成后,直接呼叫该 Skill 的名称或使用
/nm-leyline-authentication-patterns触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
- Initial release of authentication-patterns skill, ported from claude-night-market/leyline.
- Provides common authentication methods: API keys, OAuth, token management.
- Includes guides for credential verification, error handling, and integration patterns.
- Features sample code for smoke testing and interactive authentication workflows.
- Supports multiple services with token caching and session management.
- Documentation includes troubleshooting steps and resource links.
元数据
常见问题
Nm Leyline Authentication Patterns 是什么?
Authentication patterns for external services: API keys, OAuth, token management, verification. authentication, API keys, OAuth, token management, credentials. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 106 次。
如何安装 Nm Leyline Authentication Patterns?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install nm-leyline-authentication-patterns」即可一键安装,无需额外配置。
Nm Leyline Authentication Patterns 是免费的吗?
是的,Nm Leyline Authentication Patterns 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
Nm Leyline Authentication Patterns 支持哪些平台?
Nm Leyline Authentication Patterns 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Nm Leyline Authentication Patterns?
由 athola(@athola)开发并维护,当前版本 v1.0.0。
推荐 Skills