← 返回 Skills 市场
275
总下载
0
收藏
0
当前安装
4
版本数
在 OpenClaw 中安装
/install onebot
功能描述
通过 OneBot HTTP API 使用本地命令(curl)发送 QQ 私聊或群消息。
安全使用建议
This skill appears to do what it advertises (format and send OneBot curl requests), but there are a few inconsistencies you should consider before installing or using it:
- Metadata omissions: the SKILL.md requires curl and an API token, but the registry metadata does not list curl as a required binary nor declare a primary credential. Ask the author to update metadata to include 'curl' and a primaryEnv for the OneBot token.
- Network and local access: the skill will run curl against host:port values you provide (and suggests checking docker/127.0.0.1). Only provide hosts and tokens you trust; avoid giving tokens for services you don't want the agent to contact.
- Secrets handling: the skill will prompt for an Authorization token if needed. Prefer configuring tokens in a secure place rather than pasting them into chat if you are concerned about exposure.
- Local files: examples allow sending CQ file/image tokens that reference URLs or local paths — be cautious about allowing the agent to reference local file paths if you don't want local data referenced or sent.
If you proceed: ask the publisher to correct the metadata, and limit the token/host you provide to the minimum scope required. If you prefer not to allow the agent to perform outbound requests autonomously, disable model invocation for this skill or only invoke it manually.
功能分析
Type: OpenClaw Skill
Name: onebot
Version: 1.0.3
The skill instructs the AI agent to execute shell commands via 'curl' to interact with a OneBot API for sending QQ messages. While the purpose is functional, the design relies on the agent to manually construct shell strings and handle JSON escaping, which presents a high risk of command injection. Additionally, the skill includes a hardcoded example token ('jqllxew') and supports CQ codes for sending local files ('[CQ:file]'), which could be leveraged for data exfiltration if the agent is manipulated. These risks are found in SKILL.md.
能力评估
Purpose & Capability
The SKILL.md describes sending OneBot HTTP API requests via local curl, which matches the name/description. However the registry metadata does not declare curl as a required binary and does not declare any primary credential (the OneBot Authorization token is central to operation). This metadata omission is an incoherence: a legitimate OneBot sender would normally list curl and/or a primaryEnv for the token.
Instruction Scope
The instructions tell the agent to construct and run local curl commands that will contact a host:port provided by the user or discovered (127.0.0.1, docker container IP, or other). That implies arbitrary network access from the host where the agent runs. The doc also suggests validating docker container IPs and checking whether Authorization is needed — this could lead to actions beyond simply formatting a message (e.g., inspecting local docker, contacting remote hosts). The SKILL.md claims 'only generate OneBot-related curl commands' but does not technically constrain execution or local discovery steps, leaving room for scope creep or unintended data access.
Install Mechanism
This is an instruction-only skill (no install spec), which is low friction. However SKILL.md lists curl as a dependency while the registry reported no required binaries — metadata should be corrected to include curl to avoid surprises.
Credentials
The skill uses an Authorization: Bearer {token} header in examples and explicitly says to ask the user for the token when contacting non-local hosts, but the registry declares no required env vars or primary credential. Not declaring the token in primaryEnv is inconsistent and makes it unclear how the agent should obtain/secure the credential. The skill may prompt the user for a secret at runtime; that is expected, but the metadata should reflect it.
Persistence & Privilege
Skill does not request always:true, does not install or persist files, and is user-invocable. It does allow the agent to make outbound HTTP requests (via curl) when invoked, which is consistent with its purpose.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install onebot - 安装完成后,直接呼叫该 Skill 的名称或使用
/onebot触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.3
No user-visible changes in this version.
- No file changes detected from previous version.
- Version number remains as 1.0.2 in the skill description.
v1.0.2
- Added requirement to always include the Authorization header in curl commands.
- Updated curl command examples to include Authorization: Bearer jqllxew by default.
- Removed step for confirming OneBot service address and port with user; now always use the default address and authentication.
- Updated notes to clarify when to use the Authorization header depending on service IP.
- Removed the redundant _meta.json file.
v1.0.1
- Added _meta.json file for metadata support.
- Declared curl as an explicit dependency in the documentation.
v1.0.0
- Initial release of OneBot消息发送 skill.
- Supports sending QQ private or group messages via local curl commands using OneBot HTTP API.
- Handles user intent parsing: differentiates between private and group messaging, and extracts user/group IDs and message content.
- Provides example curl commands for messages, images, and file sending.
- Enforces strict command generation: only OneBot API-related curl commands, with validation of all required fields.
- If OneBot API address or IDs are missing, the skill prompts the user for details.
元数据
常见问题
onebot 是什么?
通过 OneBot HTTP API 使用本地命令(curl)发送 QQ 私聊或群消息。 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 275 次。
如何安装 onebot?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install onebot」即可一键安装,无需额外配置。
onebot 是免费的吗?
是的,onebot 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
onebot 支持哪些平台?
onebot 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 onebot?
由 jqllxew(@jqllxew)开发并维护,当前版本 v1.0.3。
推荐 Skills