← 返回 Skills 市场
OpenClaw Config Ops
作者
AstralWave
· GitHub ↗
· v1.0.0
· MIT-0
95
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install openclaw-config-ops
功能描述
Safe OpenClaw gateway configuration operations. Use when reading, analyzing, or modifying openclaw.json. Enforces schema validation + official documentation...
安全使用建议
This skill appears to implement a reasonable, conservative process for editing OpenClaw gateway config, but there are a few red flags to consider before installing or running it:
- Mismatch in declared vs actual requirements: the registry metadata claims no required config paths, yet the instructions read/write ~/.openclaw/openclaw.json and create backups/logs under ~/.openclaw. Confirm you are comfortable giving an agent filesystem and CLI access to that path.
- Unknown provenance: no homepage and an opaque owner ID. Prefer skills from known authors or with source links; ask the publisher for a repo or documentation before granting access.
- Sensitive data risk: gateway config files often include tokens, keys, or provider settings. Treat backups and logs produced by the skill as sensitive and verify their storage/retention policy.
- Exec usage: the skill may call the local openclaw CLI and fall back to executing Python for JSON edits; ensure the openclaw binary on your system is trusted and that executing commands is acceptable in your environment.
Recommended actions:
- Request the skill author to update registry metadata to declare required config paths (e.g., ~/.openclaw/openclaw.json) and any CLI dependencies.
- Inspect a copy of openclaw.json yourself and remove or redact secrets before allowing automated changes, or run the skill in a sandboxed environment with limited file access.
- Require user-invocation (do not grant broad autonomous invocation) until you verify the skill's source and behavior.
If the author provides a public repository or the registry metadata is corrected to declare the config paths and CLI dependency, my confidence that the skill is coherent would increase and the rating could move to benign.
功能分析
Type: OpenClaw Skill
Name: openclaw-config-ops
Version: 1.0.0
The skill bundle provides a structured and safety-oriented framework for managing OpenClaw gateway configurations (openclaw.json). It mandates schema validation, documentation verification, user confirmation, and automated backups (via 'cp' in SKILL.md) before any changes are applied. No indicators of data exfiltration, unauthorized execution, or malicious prompt injection were found; the use of shell commands is limited to standard administrative tasks like backups and config validation.
能力评估
Purpose & Capability
The SKILL.md describes tools and steps you'd expect for safe editing of openclaw.json (schema lookups, doc verification, backups, config.patch/apply, validation). However the package metadata declares no required config paths even though the instructions explicitly read/write ~/.openclaw/openclaw.json and write backups/logs. This is an inconsistency between claimed requirements and actual behavior.
Instruction Scope
Instructions stay on-topic: schema lookup, doc verification (qmd__query, web_fetch, fallback to exec help), explicit Mode A/Mode B flows, mandatory confirmation, backup-before-change, apply/verify/log. The skill instructs executing local commands (cp, openclaw CLI, Python JSON edit when needed) and performing web fetches for docs — all expected for a config-management skill. Note: these operations access and persist local config and logs which may contain secrets.
Install Mechanism
Instruction-only skill with no install spec and no code files. This minimizes install-time risk because nothing is downloaded or written by an installer step.
Credentials
Metadata lists no required environment variables or config paths, but SKILL.md prescribes reading and writing files under ~/.openclaw (openclaw.json, backups, logs) and invoking the openclaw CLI. The skill therefore requires filesystem and CLI access not declared in the registry metadata; that discrepancy is a proportionality and transparency issue. Also, openclaw.json may contain secrets/configuration that you should treat as sensitive.
Persistence & Privilege
always:false and user-invocable:true (normal). The skill will create backups and append to a local log file in the user's home directory, which is appropriate for config tools. It does not request permanent platform-wide privileges in the metadata.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install openclaw-config-ops - 安装完成后,直接呼叫该 Skill 的名称或使用
/openclaw-config-ops触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release: safe gateway config operations with schema validation, doc verification, backup, change logging, and two-mode workflow (analysis + modification)
元数据
常见问题
OpenClaw Config Ops 是什么?
Safe OpenClaw gateway configuration operations. Use when reading, analyzing, or modifying openclaw.json. Enforces schema validation + official documentation... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 95 次。
如何安装 OpenClaw Config Ops?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install openclaw-config-ops」即可一键安装,无需额外配置。
OpenClaw Config Ops 是免费的吗?
是的,OpenClaw Config Ops 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
OpenClaw Config Ops 支持哪些平台?
OpenClaw Config Ops 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 OpenClaw Config Ops?
由 AstralWave(@astralwaveorg)开发并维护,当前版本 v1.0.0。
推荐 Skills