← 返回 Skills 市场
djc00p

OpenClaw Docker Setup

作者 Deonte Cooper · GitHub ↗ · v1.0.4 · MIT-0
linux ⚠ suspicious
174
总下载
0
收藏
0
当前安装
5
版本数
在 OpenClaw 中安装
/install openclaw-docker-linux
功能描述
Run OpenClaw inside Docker on Linux with Tailscale remote access. Complete setup guide covering installation, configuration, and critical gotchas. Trigger ph...
安全使用建议
This skill appears to be a legitimate Docker + Tailscale setup for OpenClaw, but several issues warrant caution: - Metadata mismatch: the registry lists no required env vars, but the included files and SKILL.md clearly expect ANTHROPIC_API_KEY or OPENAI_API_KEY and an OPENCLAW_GATEWAY_TOKEN. Confirm which env vars you must supply before installing. - Inspect the included scripts before running. references/docker-setup.sh reads your .env and ~/.openclaw config and prints access URLs. The tailscale command path echoes the full gateway token (not masked) — that can leak the token to your terminal or logs. Consider editing the script to never print full tokens. - Be careful with optional volume mounts. The docker-compose template shows optional mounts for ~/.config/gh, /home/linuxbrew, and other host paths. Mounting those will expose host credentials and tokens to the container — only enable mounts you absolutely trust and understand. - Tailscale and package instructions: the skill targets Linux/Ubuntu but sometimes suggests 'brew install tailscale' — use apt on Ubuntu and verify commands before running. The tailscale package URLs used are the official pkgs.tailscale.com domain, which is expected, but double-check commands you copy/paste. - Image provenance: the compose references ghcr.io/openclaw/openclaw:latest. If you do not trust that image, build from source or pin a specific trusted digest instead of :latest. If you want this skill to be safer: ask the author (or check the homepage/repo) to fix metadata (declare required envs), avoid printing secrets in scripts, and provide a versioned/pinned image and clearer notes about which host mounts are strictly needed. If you proceed, don't expose port 18789 to the public internet, avoid mounting host credential directories, and rotate tokens if they are ever printed to shared logs.
功能分析
Type: OpenClaw Skill Name: openclaw-docker-linux Version: 1.0.4 The skill bundle provides legitimate documentation and scripts for setting up OpenClaw in a Docker environment on Linux. It includes a management script (docker-setup.sh) and detailed configuration templates (docker-config.md) that follow standard practices for containerized applications. While the setup involves elevated privileges (sudo) and remote access (Tailscale), these are clearly documented with appropriate security warnings regarding credential mounting and network exposure. No evidence of malicious intent, data exfiltration, or obfuscation was found.
能力标签
crypto
能力评估
Purpose & Capability
The skill's name/description (running OpenClaw in Docker with Tailscale) matches the content: docker-compose templates, management script, and Tailscale instructions. Required binaries (docker, docker-compose) are appropriate. The docker image is pulled from ghcr.io which fits the stated purpose.
Instruction Scope
Runtime instructions and the included management script read local config files (~/.openclaw/openclaw.json, .env), run privileged operations (docker-compose, tailscale up), and suggest optionally mounting host credential directories (e.g., ~/.config/gh, /home/linuxbrew). The script sometimes prints or outputs the full gateway token (unmasked in the tailscale path), which is sensitive. These actions are related to the stated purpose but involve sensitive host data and token exposure; that scope should be explicitly documented and minimized.
Install Mechanism
No install spec (instruction-only) — lowest filesystem risk. The only external downloads are standard package steps (apt install docker.io, apt install tailscale via pkgs.tailscale.com). This is reasonable. Minor inconsistency: the script/docs sometimes suggest 'brew install tailscale' even though the skill is Linux-targeted, which is sloppy but not malicious.
Credentials
There is an incoherence between registry metadata (which lists no required env vars) and the SKILL.md/compose templates which expect ANTHROPIC_API_KEY and OPENCLAW_GATEWAY_TOKEN (and hint at OPENAI_API_KEY). The docker-compose template exposes many optional provider tokens (GITHUB_TOKEN, TELEGRAM_BOT_TOKEN, GEMINI_API_KEY, etc.) — reasonable for a multi-provider app but increases the blast radius if you mount credential directories into the container. The script reads .env and will warn/mask some tokens but also prints the full token in certain outputs (tailscale access), which risks leaking secrets to local logs or terminal history.
Persistence & Privilege
The skill does not request always:true, does not persistently modify other skills or system-wide agent settings, and is user-invocable. It requires running Docker/Tailscale and may need sudo for package installation or group changes, but that is expected for the described function.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install openclaw-docker-linux
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /openclaw-docker-linux 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.4
Add security considerations section addressing elevated privilege, Tailscale access, and credential mount risks
v1.0.3
Fix: replace bare code blocks with ```text for consistent rendering
v1.0.2
Security: comment out sensitive host volume mounts by default (gh config, npm-global, linuxbrew) — users must explicitly uncomment only what they need
v1.0.1
Fix vetter findings: add env var declarations to metadata, add homepage, warn about optional host mounts exposing credentials, mask gateway token in show_info output
v1.0.0
Initial release — guide for running OpenClaw in Docker on Linux with Tailscale HTTPS access via MagicDNS
元数据
Slug openclaw-docker-linux
版本 1.0.4
许可证 MIT-0
累计安装 0
当前安装数 0
历史版本数 5
常见问题

OpenClaw Docker Setup 是什么?

Run OpenClaw inside Docker on Linux with Tailscale remote access. Complete setup guide covering installation, configuration, and critical gotchas. Trigger ph... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 174 次。

如何安装 OpenClaw Docker Setup?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install openclaw-docker-linux」即可一键安装,无需额外配置。

OpenClaw Docker Setup 是免费的吗?

是的,OpenClaw Docker Setup 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。

OpenClaw Docker Setup 支持哪些平台?

OpenClaw Docker Setup 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(linux)。

谁开发了 OpenClaw Docker Setup?

由 Deonte Cooper(@djc00p)开发并维护,当前版本 v1.0.4。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191113 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论