← 返回 Skills 市场
778
总下载
0
收藏
0
当前安装
4
版本数
在 OpenClaw 中安装
/install openbot-esxi
功能描述
Zero-touch Debian 13 VM deployment on VMware ESXi 8. Builds custom preseed ISO, creates NVMe+vmxnet3 VM with serial console, and runs unattended installation...
安全使用建议
This skill largely does what it claims, but review and operationally harden before using: 1) Fix the packaging metadata: the registry incorrectly lists no required env vars while the scripts require ESXI_HOST and ESXI_PASS (and VM_PASS for resize). 2) Audit the scripts yourself (they will run commands as root on your ESXi host and VMs). 3) Prefer SSH key-based access instead of passing ESXi root password via sshpass where possible. 4) Be aware that the generated VM password is printed to stdout and embedded in the preseed ISO uploaded to your datastore — remove the ISO and clear logs after deployment; consider modifying the preseed to force password reset on first boot or use SSH keys for guests. 5) Serial console uses telnet (unencrypted) — restrict ESXi network access or disable the serial port after use. 6) Run first in an isolated/test ESXi environment to confirm behavior (including the truncated parts of the script you should inspect for full commands like vmkfstools usage). If you need to proceed in production, require minimal privileged credentials, keep them ephemeral, and manually verify the uploaded ISO and generated VM configuration before powering on VMs.
功能分析
Type: OpenClaw Skill
Name: openbot-esxi
Version: 0.1.3
The skill bundle is classified as suspicious due to several significant security vulnerabilities and insecure practices, primarily found in `scripts/esxi-deploy.sh` and `scripts/esxi-vm-resize-disk.sh`. These include the use of `sshpass` to handle sensitive `ESXI_PASS` and `VM_PASS` credentials, disabling SSH host key verification (`StrictHostKeyChecking=no`), and disabling SSL certificate validation for `govc` (`GOVC_INSECURE=true`), all of which expose the agent to potential Man-in-the-Middle (MITM) attacks and credential exposure. Additionally, the VM root password is embedded in plaintext within the preseed ISO, and the deployed VMs are configured with `PermitRootLogin yes` and `PasswordAuthentication yes` over SSH. While these practices introduce considerable risk, they are explicitly documented in `SKILL.md` as necessary for the 'zero-touch' automation goal, and there is no clear evidence of intentional malicious behavior such as data exfiltration to unauthorized endpoints or stealthy backdoors.
能力评估
Purpose & Capability
The scripts and SKILL.md implement zero-touch Debian installs on ESXi (building a preseed ISO, uploading it, creating a VMX with NVMe/vmxnet3 and telnet serial, and resizing disks). Those capabilities match the name and description. However, the registry metadata claims no required environment variables while the SKILL.md and scripts clearly require ESXI_HOST, ESXI_PASS (and VM_PASS for resizing) — a packaging/metadata mismatch that should be corrected.
Instruction Scope
Runtime instructions and included scripts stay within the deployment domain: they download the official Debian ISO, build a preseeded ISO, upload it to the ESXi datastore, SSH into the ESXi host to create VM files, and SSH into deployed VMs for resize operations. No unexpected external endpoints or obfuscated network calls are present. Notable scope-relevant behaviors: the preseed enables root login and password authentication on the guest, the generated VM password is printed to stdout and embedded in the uploaded ISO, and serial consoles are configured over unencrypted telnet — all intentional for this use-case but sensitive and should be considered before running in production.
Install Mechanism
This is instruction-only with included scripts; there is no installer that downloads arbitrary code. The only remote download is the Debian ISO from an official debian cdimage URL. Required external tooling (govc, xorriso, isolinux, sshpass) are standard and explicitly documented. No high-risk arbitrary URL downloads or archive extraction from unknown hosts were observed.
Credentials
The environment variables used (ESXI_HOST, ESXI_PASS, ESXI_USER, ESXI_DATASTORE, NETWORK, DOMAIN, VM_PASS) are relevant to the stated purpose and the scripts actually use them. That said, the metadata did not declare these requirements which is inconsistent. The script requires the ESXi root password (sensitive) and uses sshpass/GOVC_PASSWORD via environment variables. The VM root password is generated and both printed to stdout and written into the preseed ISO that gets uploaded to your datastore — a significant sensitive-data exposure risk if left on the host or logs.
Persistence & Privilege
The skill does not request permanent platform-level privileges (always:false) and does not modify other skills or agent configuration. It performs privileged operations on the remote ESXi host and VMs (via SSH/govc), which is expected for VM provisioning but requires that you trust the scripts and limit credentials accordingly.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install openbot-esxi - 安装完成后,直接呼叫该 Skill 的名称或使用
/openbot-esxi触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v0.1.3
- Initial release under new name `openbot-esxi` (version 0.1.3)
- Added `README.md` with complete deployment and usage instructions
- Added `scripts/esxi-deploy.sh` for zero-touch Debian 13 VM creation on ESXi 8
- Added `scripts/esxi-vm-resize-disk.sh` for online VM disk resizing without shutdown
v0.1.2
- Major cleanup: deprecated documentation and scripts removed.
- Simplified SKILL.md with a new "Required Environment Variables" table for easier setup.
- README.md and disk management scripts (esxi-deploy.sh, esxi-vm-resize-disk.sh) removed from the repository.
- Security warning about VM password exposure and ISO cleanup added.
- No functional changes to deployment workflow; documentation is now slimmer and easier to follow.
v0.1.1
**This release improves security by removing all hardcoded credential storage and switching to environment variables.**
- All ESXi and VM credentials are now passed via environment variables—never hardcoded or embedded in command arguments.
- Updated documentation to reflect environment-variable-based configuration and usage.
- Removed dependency on credential stores or external secret resolvers.
- Added security section in docs highlighting credential handling and serial console considerations.
v0.1.0
Initial release: zero-touch Debian 13 VM deployment on ESXi 8
- Automates building a custom preseed ISO and fully unattended Debian install.
- Creates VMs with NVMe disk, dual network interfaces (E1000+vmxnet3), and serial console access via telnet.
- Outputs SSH and serial access credentials upon completion.
- Includes online disk resize support and customizable configuration.
- Enables ESXi firewall rules for remote serial port connectivity automatically.
元数据
常见问题
Esxi Debian Deploy 是什么?
Zero-touch Debian 13 VM deployment on VMware ESXi 8. Builds custom preseed ISO, creates NVMe+vmxnet3 VM with serial console, and runs unattended installation... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 778 次。
如何安装 Esxi Debian Deploy?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install openbot-esxi」即可一键安装,无需额外配置。
Esxi Debian Deploy 是免费的吗?
是的,Esxi Debian Deploy 完全免费(开源免费),可自由下载、安装和使用。
Esxi Debian Deploy 支持哪些平台?
Esxi Debian Deploy 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Esxi Debian Deploy?
由 cepheiden(@cepheiden)开发并维护,当前版本 v0.1.3。
推荐 Skills