← 返回 Skills 市场
jason141123-sys

OpenClaw Mobile Gateway Installer

作者 jason141123-sys · GitHub ↗ · v1.0.4 · MIT-0
cross-platform ⚠ suspicious
300
总下载
0
收藏
0
当前安装
5
版本数
在 OpenClaw 中安装
/install openclaw-mobile-gateway-installer
功能描述
Installs and manages OpenClaw mobile gateway as a system service. Invoke when users need one-command deploy, start, stop, upgrade, or uninstall.
安全使用建议
Before installing, consider the following: (1) The package requires OPENCLAW_API_BASE_URL and (optionally) an auth token, but the registry metadata did not declare those—treat that as a red flag. (2) The installer writes the auth header value to /etc/openclaw-mobile-gateway/env; verify file permissions and consider avoiding embedding long-lived secrets in a world-readable file. (3) The backend exposes many admin endpoints and appears to load ~/.openclaw/openclaw.json and runtime skill directories — it can therefore access local OpenClaw config and any API keys stored there. (4) The code imports child-process execution (execFileSync) — confirm how it is used and whether any exposed endpoint can trigger arbitrary command execution. (5) The service listens on the configured PORT (defaults to 4800) and is intended to be reachable externally (APK URL example); ensure network exposure is restricted (firewall, binding to localhost, or run behind a reverse proxy with auth). (6) Recommended actions: audit the backend code (services.ts) especially uses of execFileSync and any endpoints that mutate system state; run the installer in an isolated VM/container first; set a dedicated unprivileged RUN_USER and tighten /etc/openclaw-mobile-gateway/env permissions; set up authentication (securityConfig) before exposing to untrusted networks; update registry metadata to declare required envs so users know what secrets will be needed. If you cannot audit the code, avoid installing it on sensitive/production hosts.
功能分析
Type: OpenClaw Skill Name: openclaw-mobile-gateway-installer Version: 1.0.4 The bundle installs a system-level gateway service that manages OpenClaw instances via a Node.js backend. While the behavior aligns with the stated purpose, it exhibits high-risk capabilities, including extensive use of 'sudo' in 'install.sh' and 'check.sh' to manipulate systemd services and environment files. The backend ('services.ts') uses 'execFileSync' to execute shell commands like 'systemctl', 'journalctl', and the 'openclaw' CLI based on API requests, which could lead to privilege escalation or unauthorized system control if the API is exposed without proper authentication.
能力评估
Purpose & Capability
The files and scripts match the stated purpose: install a Node.js HTTP admin/gateway as a systemd service. However the registry metadata claims 'no required env vars' while install.sh requires OPENCLAW_API_BASE_URL (and the README/SKILL.md recommend OPENCLAW_AUTH_HEADER_VALUE). That metadata mismatch is an incoherence that should be corrected.
Instruction Scope
SKILL.md instructs the user to provide an auth header value and run install.sh, which writes those values into /etc/openclaw-mobile-gateway/env. The backend exposes many management endpoints (models, skills, channels, agents, memory, cron jobs, routing, 'probe' and chat proxying, etc.). The code reads local config (~/.openclaw/openclaw.json) and runtime skill directories, and imports child-process functionality (execFileSync). There is no obvious authentication middleware in the visible code and securityConfig.accessPasswordSet defaults to false — so the service could expose powerful admin operations and local config/credentials if reachable.
Install Mechanism
This is instruction-only (no remote download in install spec). The install script rsyncs local backend files to /opt and runs 'npm install', which will fetch packages from npm registry. That is expected for a Node.js app but still pulls third-party packages at install time (moderate risk). No external arbitrary binary downloads are present in the bundle.
Credentials
The skill bundle metadata lists no required env vars, but install.sh and SKILL.md require OPENCLAW_API_BASE_URL and recommend OPENCLAW_AUTH_HEADER_VALUE (a bearer token). The installer writes these values into /etc/openclaw-mobile-gateway/env (as root, without explicit restrictive permissions), and the backend will use env/config and also read ~/.openclaw/openclaw.json and other local dirs. Asking for an auth token is expected for a gateway, but the missing metadata declaration and the fact the token is stored in a system file (potentially world-readable) and the service exposes management endpoints are disproportionate risks that the user should understand.
Persistence & Privilege
The installer creates and enables a systemd service (openclaw-mobile-gateway) and enables automatic start — this matches the skill's purpose. The service runs as a chosen RUN_USER (defaults to SUDO_USER or current user) and therefore persists across reboots. This persistence combined with the exposed admin HTTP API and filesystem access increases the attack surface but is functionally coherent with the described installer role.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install openclaw-mobile-gateway-installer
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /openclaw-mobile-gateway-installer 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.4
Version 1.0.4 of openclaw-mobile-gateway-installer - No file or documentation changes detected in this release.
v1.0.3
Version 1.0.3 of openclaw-mobile-gateway-installer - No file changes detected in this release. - No updates to features, commands, or documentation.
v1.0.2
Version 1.0.2 - Added "常见排查" (troubleshooting) section to the documentation. - Now includes instructions for resolving the "Cannot GET /api/quick-actions" error by re-running the installation script.
v1.0.1
- No file changes detected in this version. - No updates or modifications were made to the project.
v1.0.0
## 1.0.0 - Initial release - One-command install/upgrade/uninstall for OpenClaw mobile gateway - Systemd auto-start service support - Health check and troubleshooting commands
元数据
Slug openclaw-mobile-gateway-installer
版本 1.0.4
许可证 MIT-0
累计安装 0
当前安装数 0
历史版本数 5
常见问题

OpenClaw Mobile Gateway Installer 是什么?

Installs and manages OpenClaw mobile gateway as a system service. Invoke when users need one-command deploy, start, stop, upgrade, or uninstall. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 300 次。

如何安装 OpenClaw Mobile Gateway Installer?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install openclaw-mobile-gateway-installer」即可一键安装,无需额外配置。

OpenClaw Mobile Gateway Installer 是免费的吗?

是的,OpenClaw Mobile Gateway Installer 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。

OpenClaw Mobile Gateway Installer 支持哪些平台?

OpenClaw Mobile Gateway Installer 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 OpenClaw Mobile Gateway Installer?

由 jason141123-sys(@jason141123-sys)开发并维护,当前版本 v1.0.4。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论