← 返回 Skills 市场
Nginx Proxy Manager
作者
weird-aftertaste
· GitHub ↗
· v1.0.0
2201
总下载
2
收藏
6
当前安装
1
版本数
在 OpenClaw 中安装
/install npm-proxy
功能描述
Manage Nginx Proxy Manager (NPM) hosts, certificates, and access lists. Use when the user wants to add a new domain, point a domain to a server/port, enable SSL, or check the status of proxy hosts.
安全使用建议
This skill appears to do what it says (manage Nginx Proxy Manager) but has some problematic choices you should consider before installing:
- Verify metadata: the registry didn't declare required env vars. SKILL.md and the script require NPM_URL, NPM_EMAIL, and NPM_PASSWORD — ensure you are comfortable providing those credentials.
- Prefer token-based or scoped credentials: instead of using a full admin password, create a scoped API token (if NPM supports it) to limit exposure.
- Review and/or change TOKEN_FILE: the script writes a token to /root/.npm-token.json (undocumented). If you install/run this, change TOKEN_FILE to a non-root path with strict permissions or remove on-exit persistence to avoid leaving credentials on disk.
- Run in a least-privilege context: run the script under a dedicated, limited user account, and ensure the agent runtime cannot expose disk content or network access beyond NPM.
- Confirm network targets: the script calls only NPM_URL; ensure that URL is the real admin endpoint you intend to manage and not a malicious redirect.
- Ask the author to update metadata and docs: the SKILL registry should declare required env vars and document the token file location and retention policy.
If you cannot verify or change these items, treat this skill cautiously (do not supply admin credentials to unknown or untrusted skills).
功能分析
Type: OpenClaw Skill
Name: npm-proxy
Version: 1.0.0
The skill is classified as suspicious due to two main indicators. First, the `scripts/npm_client.py` script stores the Nginx Proxy Manager API token in `/root/.npm-token.json`. While this is for session persistence, storing tokens on disk, especially in a potentially privileged directory like `/root/`, is a security risk. Second, the `SKILL.md` file explicitly instructs the AI agent to use `curl` directly for adding new proxy hosts, providing a full example command and payload. Although this command is scoped to the skill's purpose, it represents a direct command execution instruction to the agent, which is a powerful capability that could be misused if the instructions were less constrained.
能力评估
Purpose & Capability
The skill name/description and included Python client align with managing NPM via its REST API and therefore legitimately require an NPM URL and admin credentials. However, the registry metadata declares no required environment variables while SKILL.md and the script require NPM_URL, NPM_EMAIL, and NPM_PASSWORD. That registry omission is an inconsistency that reduces transparency and is a security concern.
Instruction Scope
SKILL.md limits actions to NPM API calls (listing hosts/certs, enabling/disabling, deleting). The included script only talks to the provided NPM_URL. However, the script reads/writes a token file at a fixed path (/root/.npm-token.json) that is not documented in SKILL.md, and will persist tokens to disk. Writing under /root is surprising and may be inappropriate if the agent is not intended to run as root.
Install Mechanism
There is no install spec (instruction-only plus an included .py script). No external downloads or package installs are performed. Risk is limited to executing the included script, which should be reviewed prior to use.
Credentials
The script legitimately needs NPM_URL, NPM_EMAIL, and NPM_PASSWORD to authenticate, but the skill registry did not declare these required env vars. Additionally, the script stores an auth token on disk in /root/.npm-token.json — a sensitive artifact. Requesting admin credentials is proportional for full admin tasks, but preserving them in an undocumented file and not declaring them in metadata is disproportionate to a transparent design.
Persistence & Privilege
always:false (good) and the skill doesn't request elevated platform privileges, but it creates persistent state by writing /root/.npm-token.json. Persisting tokens in /root increases the blast radius (token reuse, discovery by other processes, or exposure if backups are made). The skill also enables autonomous invocation by default (normal), which combined with stored credentials raises risk if the skill is later invoked without user supervision.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install npm-proxy - 安装完成后,直接呼叫该 Skill 的名称或使用
/npm-proxy触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release: manage proxy hosts and certs via NPM API
元数据
常见问题
Nginx Proxy Manager 是什么?
Manage Nginx Proxy Manager (NPM) hosts, certificates, and access lists. Use when the user wants to add a new domain, point a domain to a server/port, enable SSL, or check the status of proxy hosts. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 2201 次。
如何安装 Nginx Proxy Manager?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install npm-proxy」即可一键安装,无需额外配置。
Nginx Proxy Manager 是免费的吗?
是的,Nginx Proxy Manager 完全免费(开源免费),可自由下载、安装和使用。
Nginx Proxy Manager 支持哪些平台?
Nginx Proxy Manager 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Nginx Proxy Manager?
由 weird-aftertaste(@weird-aftertaste)开发并维护,当前版本 v1.0.0。
推荐 Skills