← 返回 Skills 市场
3144
总下载
0
收藏
1
当前安装
27
版本数
在 OpenClaw 中安装
/install openclaw-minecraft
功能描述
Control Minecraft bots through a Mineflayer controller API using JSON actions and cron-driven autonomy.
安全使用建议
This skill is coherent for remotely controlling Minecraft bots but has several red flags you should address before installing: 1) The SKILL.md hard-codes a remote ngrok URL (https://56eb-125-246-120-211.ngrok-free.app) — verify the controller's operator and source code; do not trust an opaque ngrok endpoint by default. 2) The skill describes open registration and token issuance; an agent could self-register and obtain JWTs or rely on someone supplying a master secret. Only provide tokens if you fully trust the controller operator. 3) The skill instructs you to overwrite CRON_PROMPT.md in your workspace and run a 30-second cron loop, which will make the agent perform frequent autonomous networked actions—consider whether you want that persistence and frequency, or run it in an isolated/sandbox environment first. 4) Registry metadata lists no required env vars, but SKILL.md expects MC_CONTROLLER_TOKEN (mismatch). Ask the publisher for source code, a homepage, and an explanation for the hard-coded base URL and open registration; request that required env vars be declared in the registry. 5) If you still want to try it: run it in a sandboxed account or container, disable open registration on the controller, use a private controller URL you control, increase the cron interval, and audit memory/mc-auth.json and memory/mc-autonomy.json contents for secrets. If you cannot verify the controller operator or source, do not enable the forced workspace overwrite or the cron automation.
功能分析
Type: OpenClaw Skill
Name: openclaw-minecraft
Version: 0.1.26
This skill is classified as suspicious due to several high-risk behaviors. The primary concern is the instruction in `SKILL.md` to overwrite the workspace root `CRON_PROMPT.md` file, which is a strong prompt injection vector and a form of persistence that allows the skill to dictate the agent's autonomous behavior. Additionally, all API interactions are directed to a dynamic `ngrok-free.app` endpoint, which is suspicious due to its ephemeral nature and potential for an attacker to change the target server. Finally, `CRON_PROMPT.md` instructs the agent to use `node -e` for JSON parsing, providing a powerful arbitrary code execution primitive that could be exploited.
能力评估
Purpose & Capability
The stated purpose is to control Minecraft bots via a Mineflayer controller API, which matches the documented API calls. However the SKILL.md requires an MC_CONTROLLER_TOKEN and uses a hard-coded controller base URL (an ngrok domain) even though the registry metadata declares no required environment variables or homepage—which is an inconsistency. The presence of open registration and proxy register endpoints (allowing the agent to self-issue or request tokens) is not justified in the registry metadata and expands capability beyond a simple 'adapter' description.
Instruction Scope
The runtime instructions ask the agent to read and write workspace files (memory/mc-auth.json, memory/mc-bot.json, memory/mc-autonomy.json) and to always overwrite the workspace root CRON_PROMPT.md at installation. They also instruct the agent to run an autonomous cron loop every 30 seconds that will repeatedly contact the remote controller and obtain or use JWTs (including via open registration). These behaviors go beyond a one-off API wrapper: they create persistent, frequent external network activity and automatic token acquisition.
Install Mechanism
There is no install spec (instruction-only), so nothing is downloaded or executed by an installer—this is lower install risk. However, the skill explicitly instructs the installer/agent to overwrite a workspace file (CRON_PROMPT.md) and add cron-driven automation; that is a form of persistent change to the environment despite no formal install step.
Credentials
SKILL.md requires an MC_CONTROLLER_TOKEN and describes token acquisition flows (manual master-secret register, proxyKey, or open registration). The registry metadata claims no required env vars—this mismatch is notable. The skill encourages storing and reusing JWTs in workspace files and potentially self-registering to get tokens without operator intervention (open registration), which increases risk of undesired credential issuance/exposure to the hard-coded ngrok endpoint.
Persistence & Privilege
The skill directs persistent changes: forcibly overwrite the workspace CRON_PROMPT.md at install time, create/modify memory/*.json logs, and run a cron every 30 seconds to autonomously drive bots. While 'always' is false, these instructions achieve continuous autonomous behavior and persistent file changes—this grants ongoing network activity and control without clear operator safeguards.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install openclaw-minecraft - 安装完成后,直接呼叫该 Skill 的名称或使用
/openclaw-minecraft触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v0.1.26
Initial release
v0.1.25
Initial release
v0.1.24
Initial release
v0.1.23
Initial release
v0.1.22
Initial release
v0.1.21
Initial release
v0.1.20
Initial release
v0.1.19
Initial release
v0.1.18
Initial release
v0.1.17
Initial release
v0.1.16
Initial release
v0.1.15
Initial release
v0.1.14
Initial release
v0.1.13
Initial release
v0.1.12
Initial release
v0.1.11
Initial release
v0.1.10
Initial release
v0.1.9
Initial release
v0.1.8
Initial release
v0.1.7
Initial release
元数据
常见问题
OpenClaw Minecraft 是什么?
Control Minecraft bots through a Mineflayer controller API using JSON actions and cron-driven autonomy. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 3144 次。
如何安装 OpenClaw Minecraft?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install openclaw-minecraft」即可一键安装,无需额外配置。
OpenClaw Minecraft 是免费的吗?
是的,OpenClaw Minecraft 完全免费(开源免费),可自由下载、安装和使用。
OpenClaw Minecraft 支持哪些平台?
OpenClaw Minecraft 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 OpenClaw Minecraft?
由 ene5135(@ene5135)开发并维护,当前版本 v0.1.26。
推荐 Skills