← 返回 Skills 市场
90
总下载
0
收藏
0
当前安装
2
版本数
在 OpenClaw 中安装
/install openclaw-claudecode
功能描述
Control Claude Code (cc) via tmux to execute development tasks. Use for: starting CC development sessions, sending development commands, monitoring progress,...
安全使用建议
This skill appears to do what it says, but it contains several risky or under-documented actions. Before installing or running it:
- Do not blindly run curl | sh; inspect the remote install script or prefer npm install from a trusted package.
- Avoid using --dangerously-skip-permissions and automated 'y' confirmations unless you fully trust the commands Claude will run. These flags can cause destructive or network-exfiltrating actions to proceed without human review.
- The SKILL.md references ANTHROPIC_API_KEY and 'claude /login' but the registry metadata doesn't declare required env vars; ensure you provide and protect the correct API credentials and never paste secrets into commands or public logs.
- Creating system users and setting passwords via chpasswd is a privileged action; run these steps in a controlled environment (VM or container), not on production hosts.
- If you plan to allow autonomous invocation, restrict it until you confirm the install source and remove the auto-confirm behaviors.
If you want a lower-risk setup, ask the author for: a trustworthy source/release for Claude Code, explicit required environment variables, safer defaults (no --dangerously flags), and a mode that requires manual confirmation for privileged operations.
功能分析
Type: OpenClaw Skill
Name: openclaw-claudecode
Version: 1.1.0
The skill automates Claude Code via tmux, requiring high-privilege actions like package installation (apt/dnf), user creation (useradd), and the use of the '--dangerously-skip-permissions' flag which bypasses all safety confirmations within the Claude Code CLI. While these actions align with the stated goal of automated development, the combination of root-level setup and unconstrained sub-agent execution presents a significant security risk. (File: SKILL.md)
能力标签
能力评估
Purpose & Capability
The name/description (control Claude Code via tmux for development tasks) matches the runtime instructions: creating tmux sessions, sending commands, monitoring output, and managing sessions. Creating a non-root user to run CC is explained and logically consistent with the stated purpose.
Instruction Scope
The SKILL.md instructs the agent (and operator) to install packages, create system users, set passwords via chpasswd (plaintext in commands), run external installer scripts, use an explicit flag (--dangerously-skip-permissions) to bypass confirmations, and automate sending confirmation keystrokes. These actions go beyond simple orchestration of a CLI tool and grant broad ability to perform privileged system changes and to auto-accept prompts, which could cause unintended destructive or exfiltrative operations.
Install Mechanism
Although there is no formal install spec, the runtime instructions advise installing Claude Code by piping a remote script (curl -fsSL https://claude.ai/install.sh | sh) — a high-risk pattern because it executes code fetched from the network without provenance checks. npm -g install is reasonable, but the unvetted curl|sh install is disproportionate and risky for an instruction-only skill.
Credentials
requires.env is empty in registry metadata, but SKILL.md refers to authentication and an ANTHROPIC_API_KEY (and suggests running 'claude /login'), and also suggests embedding plaintext passwords in chpasswd commands. The skill implicitly needs credentials but doesn't declare them; that mismatch and the plaintext-password pattern are disproportionate and raise risk of accidental credential exposure.
Persistence & Privilege
The skill does not request always:true and does not modify other skills, which is good. However it instructs privileged operations (package installs, useradd, chpasswd, su) that require root. Also the combination of autonomous invocation (default allowed) plus instructions to auto-confirm prompts and use --dangerously-skip-permissions increases blast radius if the agent is allowed to run these steps without human supervision.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install openclaw-claudecode - 安装完成后,直接呼叫该 Skill 的名称或使用
/openclaw-claudecode触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.1.0
openclaw-claudecode 1.1.0
- removed passwordless sudo suggestion.
* Follow GitHub Updates: https://github.com/fanzhidongyzby/openclaw-claudecode.git
v1.0.0
openclaw-claudecode 1.0.0 Released
- Control Claude Code (cc) via tmux to execute development tasks.
元数据
常见问题
OpenClaw ClaudeCode Controller 是什么?
Control Claude Code (cc) via tmux to execute development tasks. Use for: starting CC development sessions, sending development commands, monitoring progress,... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 90 次。
如何安装 OpenClaw ClaudeCode Controller?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install openclaw-claudecode」即可一键安装,无需额外配置。
OpenClaw ClaudeCode Controller 是免费的吗?
是的,OpenClaw ClaudeCode Controller 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
OpenClaw ClaudeCode Controller 支持哪些平台?
OpenClaw ClaudeCode Controller 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 OpenClaw ClaudeCode Controller?
由 Florian(@fanzhidongyzby)开发并维护,当前版本 v1.1.0。
推荐 Skills