← 返回 Skills 市场
🔌

AWS STS

作者 OOMOL · GitHub ↗ · v1.0.0 · MIT-0
cross-platform ⚠ suspicious
30
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install oo-aws-sts
功能描述
AWS STS (aws.amazon.com). Use this skill for ANY AWS STS request — searching and reading data. Whenever a task involves AWS STS, use this skill instead of ca...
使用说明 (SKILL.md)

AWS STS

Operate AWS STS through your OOMOL-connected account. This skill calls the aws_sts connector with the oo CLI; OOMOL injects credentials server-side, so you never handle raw tokens.

Category: Security & Identity, Developer Tools. Exposes 2 action(s).

Running an action

Assume the user has already installed the oo CLI, signed in, and connected AWS STS. Do not run oo auth login or open the connection URL proactively — just run the action. Fall back to First-time setup only when a command actually fails with an auth or connection error.

1. Inspect the contract to get the authoritative input/output schema before building a payload:

oo connector schema "aws_sts" --action "\x3Caction_name>"

2. Run the action with a JSON payload that matches the input schema:

oo connector run "aws_sts" --action "\x3Caction_name>" --data '\x3Cjson>' --json
  • --data takes a JSON object string or @path/to/file.json; omit it to send {}.
  • The response is { "data": ..., "meta": { "executionId": "..." } }; the execution id lives under meta.executionId.

Each action below links to a reference file with its purpose and exact commands. Read the linked file, then fetch the live schema with oo connector schema before constructing --data.

Available actions

  • assume_role — Use a connected AWS access key pair to call STS AssumeRole and return temporary credentials.
  • get_federated_credentials — Return AWS STS temporary credentials from the connected OOMOL OIDC federation configuration.

Safety

  • Read actions (get / list / search) are safe to run directly.
  • Create, update, send, or post actions change AWS STS state — confirm the exact payload and effect with the user before running.
  • Delete or remove actions are destructive — always confirm the target and get explicit approval first.

First-time setup

These are one-time steps — do not repeat them on every call. Run a step only when a command fails for the matching reason.

  • oo: command not found — install the oo CLI (other platforms: \x3Chttps://cli.oomol.com/install-guide.md>):

    curl -fsSL https://cli.oomol.com/install.sh | bash    # macOS / Linux

    irm https://cli.oomol.com/install.ps1 | iex           # Windows PowerShell

  • Not signed in / authentication error — sign in to your OOMOL account once:

    oo auth login

  • scope_missing / credential_expired / app_not_ready / app_not_found — AWS STS is not connected, or the connection expired or lacks a scope. Connect once (auth type: custom credential, federated) at:

    https://console.oomol.com/app-connections?provider=aws_sts

  • HTTP 402 / OOMOL_INSUFFICIENT_CREDIT — billing stop. Recharge at https://console.oomol.com/billing/token-recharge before retrying.

Resources

安全使用建议
Install only if you trust OOMOL and intend the agent to request AWS STS temporary credentials through your connected account. Before use, confirm each AssumeRole or federated credential request, verify the target role/scopes/session duration, and prefer installing the oo CLI through a verified package or inspected installer rather than a pipe-to-shell command.
能力评估
Purpose & Capability
The artifact is coherent as an AWS STS/OOMOL connector skill and it openly lists assume_role and get_federated_credentials, but the frontmatter frames the skill as for searching and reading data even though both exposed actions return temporary AWS credentials.
Instruction Scope
The trigger says to use the skill for any AWS STS request and the runtime instructions say to run actions once setup exists, without requiring explicit confirmation before credential-issuing actions.
Install Mechanism
The skill itself is Markdown-only and restricts allowed tool use to Bash(oo *), but first-time setup documents pipe-to-shell installers for the oo CLI on macOS/Linux and Windows, which users should treat as elevated supply-chain risk.
Credentials
Using the oo CLI and an OOMOL-connected AWS STS account fits the stated integration purpose, and no unrelated local file access, broad indexing, or hidden network destinations were found in the artifact.
Persistence & Privilege
No persistence or destructive local behavior is present, but AWS STS temporary credentials are sensitive privileges whose downstream impact depends on the connected AWS account, role, scopes, and OOMOL federation configuration.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install oo-aws-sts
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /oo-aws-sts 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
- Adds an AWS STS skill for operating through an OOMOL-connected AWS account via the `oo` CLI. - Supports `assume_role` to call STS AssumeRole with a connected AWS access key pair and return temporary credentials. - Supports `get_federated_credentials` to retrieve temporary AWS credentials from the connected OOMOL OIDC federation configuration. - Documents the required schema-first workflow for building action payloads against live connector contracts. - Includes setup and safety guidance for authentication, AWS STS connection issues, billing errors, and state-changing operations.
元数据
Slug oo-aws-sts
版本 1.0.0
许可证 MIT-0
累计安装 0
当前安装数 0
历史版本数 1
常见问题

AWS STS 是什么?

AWS STS (aws.amazon.com). Use this skill for ANY AWS STS request — searching and reading data. Whenever a task involves AWS STS, use this skill instead of ca... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 30 次。

如何安装 AWS STS?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install oo-aws-sts」即可一键安装,无需额外配置。

AWS STS 是免费的吗?

是的,AWS STS 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。

AWS STS 支持哪些平台?

AWS STS 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 AWS STS?

由 OOMOL(@oomol)开发并维护,当前版本 v1.0.0。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191113 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论