← 返回 Skills 市场
Npjames 1password
作者
npjameszheng1125-netizen
· GitHub ↗
· v1.0.0
· MIT-0
246
总下载
0
收藏
1
当前安装
1
版本数
在 OpenClaw 中安装
/install npjames-1password
功能描述
Set up and use 1Password CLI (op). Use when installing the CLI, enabling desktop app integration, signing in (single or multi-account), or reading/injecting/...
安全使用建议
This skill mostly does what it says (install and run the 1Password CLI), but there are important inconsistencies and potential risks to consider before installing:
- Missing tmux declaration: The runtime instructions require tmux, create sockets, and manage sessions, yet the skill metadata does not list tmux as a required binary. Ask the publisher to explicitly require 'tmux' (and any other needed tools) so the agent can validate runtime dependencies.
- Captured terminal output may contain secrets: The example captures tmux pane output. Ensure the skill will never capture or persist secret values (and that any captured output is sanitized and not sent to logs, chat, or external endpoints). Prefer returning only success/error status rather than raw pane contents.
- Environment/paths mismatch: The SKILL.md references CLAWDBOT_TMUX_SOCKET_DIR and TMPDIR conventions not declared in requires.env. Confirm whether the agent must set these env vars and whether socket files under /tmp are acceptable in your environment.
- Install is reasonable: Brew formula is an expected install mechanism for the 1Password CLI. Still verify the brew formula source if you require a high-assurance provenance.
Recommendations before enabling or giving this skill autonomous access:
- Request the publisher add 'tmux' to required binaries and declare any env vars the runtime uses.
- Ask for explicit rules about what is captured from tmux panes and how that output is handled, filtered, and stored.
- Test the workflow in a sandbox account/VM to confirm no secret values are leaked into logs or agent context.
- If you need stronger assurance, prefer manual signin or require the skill to use op run/op inject primitives that avoid printing secrets to stdout.
功能分析
Type: OpenClaw Skill
Name: npjames-1password
Version: 1.0.0
The skill bundle provides a legitimate interface for managing the 1Password CLI (op), including installation via Homebrew and standard usage examples. The instructions in SKILL.md mandate the use of tmux to handle interactive authentication sessions and TTY persistence, which is a common requirement for CLI tools in agentic environments. The bundle includes explicit security guardrails to prevent secrets from being logged or written to disk unnecessarily.
能力评估
Purpose & Capability
Name/description and the brew install for 1password-cli (op) are coherent: the skill is about installing and using the 1Password CLI. However, the SKILL.md mandates running everything inside tmux but the skill's declared requirements do not list tmux as a required binary or document the CLAWDBOT_TMUX_SOCKET_DIR env var. That is an internal inconsistency.
Instruction Scope
The instructions explicitly instruct the agent to create a dedicated tmux socket/session, send signin commands into that session, capture the pane output, and kill the session. Capturing pane output can include prompts or secret values depending on what commands are run; the SKILL.md does not specify filtering or sanitization of captured output. The doc also references an external 'tmux' skill for socket conventions but does not constrain how captured data is used. These steps grant the agent broad discretion to run interactive auth and collect terminal output — reasonable for automating signin, but risky without clearer safeguards.
Install Mechanism
Install is a Homebrew formula '1password-cli' which is a standard, low-risk install path for macOS/Linux when Homebrew is available. No arbitrary URL downloads or exec/install scripts are present in the manifest.
Credentials
The skill does not request any credentials or env vars in its registry metadata, yet the instructions reference CLAWDBOT_TMUX_SOCKET_DIR and use OP_ACCOUNT optionally. The implicit dependency on a tmux socket directory and on tmux itself is not declared. While the skill doesn't ask for secrets directly, the mismatch between declared env requirements and referenced envs/paths is concerning.
Persistence & Privilege
The skill is not always-enabled and does not request persistent privileges. It installs via brew (normal) and does not modify other skills or global agent configuration in the manifest.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install npjames-1password - 安装完成后,直接呼叫该 Skill 的名称或使用
/npjames-1password触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release of the 1Password CLI skill.
- Provides setup and usage guidance for 1Password CLI (`op`), including installation and desktop app integration.
- Enforces all `op` commands to run inside a fresh, dedicated tmux session for reliable authentication.
- Includes official references and step-by-step workflow for sign-in, account handling, and secret management.
- Adds guardrails to prevent secret leakage and outlines preferred methods for secure secret injection.
- Offers direct support for multiple accounts and detailed tmux setup examples.
元数据
常见问题
Npjames 1password 是什么?
Set up and use 1Password CLI (op). Use when installing the CLI, enabling desktop app integration, signing in (single or multi-account), or reading/injecting/... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 246 次。
如何安装 Npjames 1password?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install npjames-1password」即可一键安装,无需额外配置。
Npjames 1password 是免费的吗?
是的,Npjames 1password 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
Npjames 1password 支持哪些平台?
Npjames 1password 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Npjames 1password?
由 npjameszheng1125-netizen(@npjameszheng1125-netizen)开发并维护,当前版本 v1.0.0。
推荐 Skills