← 返回 Skills 市场
keven0706

OpenClaw Key Management

作者 keven0706 · GitHub ↗ · v1.0.3 · MIT-0
cross-platform ⚠ suspicious
279
总下载
0
收藏
1
当前安装
4
版本数
在 OpenClaw 中安装
/install openclaw-key-management
功能描述
Secure credential storage system for OpenClaw that encrypts and protects API keys, tokens, and sensitive credentials from memory file compromise.
安全使用建议
Do not store production secrets with this skill yet. Before installing or trusting it: (1) Fix and verify the code — key_manager.sh references a non-existent key_vault_simple.js while the repo contains key_vault.js (the CLI will fail); (2) Confirm the master-key logic — the code always derives the master key from system identifiers and ignores the documented passphrase mode (so 'high-security' protection is not actually enforced); (3) Test install and migration in a disposable workspace — migration edits MEMORY.md automatically and will replace tokens (could corrupt or leak data if pattern matching is wrong); (4) Review and run the Node.js module manually to confirm encrypt/decrypt semantics and ensure vault files are saved and loaded correctly (there are mismatches between save/load encodings that will likely break vault persistence); (5) If you need real security, demand a patched version that: honors master_key_mode, removes hardcoded paths or makes paths configurable, stops referencing missing modules, and includes unit tests demonstrating correct load/save and migration behavior. If the author cannot explain or fix these issues, treat the skill as untrusted.
功能分析
Type: OpenClaw Skill Name: openclaw-key-management Version: 1.0.3 The skill provides a credential encryption vault using AES-256-GCM, but its implementation contains significant security risks. The primary issue is in `scripts/key_manager.sh`, which generates temporary Node.js scripts by injecting unsanitized shell variables ($SECRET_NAME, $SECRET_VALUE) directly into JavaScript code blocks, making it highly vulnerable to code injection. Additionally, the scripts contain hardcoded workspace paths (e.g., `/zhaining`) and specific logic in `scripts/key_manager.sh` to target 'Instreet' API keys (`sk_inst_`), suggesting the tool is tailored for a specific environment or target. While no evidence of intentional data exfiltration was found, the poor handling of sensitive input in a security-focused tool is a major red flag.
能力评估
Purpose & Capability
The skill claims strong key management and a high-security (passphrase) mode. The code includes a vault implementation and CLI, but the implementation does not honor the documented 'passphrase' mode (initialize() always derives the master key from system identifiers). That means the advertised security property is not delivered. Additionally, the CLI and install scripts use a hardcoded workspace ($HOME/.openclaw/zhaining) rather than the variable workspace paths described in SKILL.md, reducing flexibility and risking misplaced files.
Instruction Scope
SKILL.md promises automatic interception of {SECRET:...} placeholders and integration into OpenClaw workflows. The provided code implements a JS vault module and CLI but there is no code that hooks into OpenClaw to perform automatic interception at runtime. Migration and file-editing steps are implemented (scripts modify MEMORY.md), which is intrusive; migration logic uses pattern matching for specific token prefixes (sk_inst_) and will edit workspace files automatically—this behavior is broader than the doc's 'automatic detection and blocking of credential logging attempts' and could modify files unexpectedly.
Install Mechanism
There is no external network download; install.sh copies files into a workspace and runs the bundled scripts. That's low risk from third-party download perspective. However, install.sh and scripts will write a .secrets directory under a hardcoded workspace and then run initialization and migration commands that modify local files—so installation will place code and encrypted data into your workspace and may alter MEMORY.md.
Credentials
The skill asks for no environment variables or external credentials, which is proportionate. The vault derives keys from local machine identifiers (/etc/machine-id and MAC addresses), which is reasonable for a 'system_key' convenience mode but undermines portability and the advertised passphrase protection. Reading machine-id and network interfaces is expected for a system-tied key but should be clearly documented and optional.
Persistence & Privilege
The skill is not always-enabled and is user-invocable; it does not request elevated platform privileges or attempt to modify other skills. It will persist files under the workspace (.secrets) and add backups there, which is normal for a vault implementation.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install openclaw-key-management
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /openclaw-key-management 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.3
No code or documentation changes detected for 1.0.3—version increment only. - Version number updated (no changes to files or documentation) - No new features, bug fixes, or other modifications in this release
v1.0.2
Fixed key vault loading and saving issues. Improved compatibility and reliability.
v1.0.1
Initial release with secure credential storage and memory protection
v1.0.0
Initial release of openclaw-key-management. - Provides strong AES-256-GCM encryption with PBKDF2-HMAC-SHA256 for all credentials. - Credentials are never stored in plaintext in memory files or logs, using a dedicated encrypted vault. - Supports two security modes: convenience (system key) and high-security (user passphrase). - Includes CLI tools for credential management, migration, and secure backups. - Offers automatic memory safety features and integration with OpenClaw memory architecture. - Designed for secure handling, migration, and referencing of sensitive authentication data in OpenClaw deployments.
元数据
Slug openclaw-key-management
版本 1.0.3
许可证 MIT-0
累计安装 1
当前安装数 1
历史版本数 4
常见问题

OpenClaw Key Management 是什么?

Secure credential storage system for OpenClaw that encrypts and protects API keys, tokens, and sensitive credentials from memory file compromise. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 279 次。

如何安装 OpenClaw Key Management?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install openclaw-key-management」即可一键安装,无需额外配置。

OpenClaw Key Management 是免费的吗?

是的,OpenClaw Key Management 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。

OpenClaw Key Management 支持哪些平台?

OpenClaw Key Management 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 OpenClaw Key Management?

由 keven0706(@keven0706)开发并维护,当前版本 v1.0.3。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论