← 返回 Skills 市场
OpenClaw Ops
作者
Linfeng Liang
· GitHub ↗
· v1.2.1
736
总下载
0
收藏
8
当前安装
4
版本数
在 OpenClaw 中安装
/install openclaw-ops
功能描述
Use when diagnosing, repairing, or maintaining an OpenClaw Gateway on the same machine. Designed for rescue agents to fix a down gateway or check operational...
安全使用建议
This skill is coherent for its stated use: maintaining a local OpenClaw Gateway. Before installing, ensure you: (1) install it only on a separate, trusted rescue agent (the README repeats this warning), not on the primary gateway; (2) verify the rescue agent's access controls because the skill requires read/write access to ~/.openclaw/ and access to env files containing tokens; (3) review and keep copies of the SKILL.md so you understand what commands the agent will run, and require explicit user confirmation for destructive actions; (4) prefer running the rescue agent under a least-privilege account or inside a restricted container/VM to limit blast radius; (5) if you need stronger assurances, ask for an explicit list of local env filenames the skill will read and for any automated export/transmit steps (none are present in the current SKILL.md). If the package later includes code files or an install script that downloads archives or runs external binaries, re-evaluate before installing.
功能分析
Type: OpenClaw Skill
Name: openclaw-ops
Version: 1.2.1
This skill is classified as suspicious due to the high-risk capabilities it grants to an AI agent, which could be exploited via prompt injection. The `SKILL.md` instructs the agent to read and copy sensitive files like `~/.openclaw/env` (which contains tokens) and perform destructive operations like `npm update -g openclaw` and `find ... -delete`. While the skill explicitly includes safety instructions such as 'Never print secrets' and 'Destructive operations require user confirmation', the reliance on these prompt-based directives creates a significant vulnerability. An attacker could potentially craft a prompt to bypass these instructions, leading to unauthorized data exfiltration or system modification.
能力评估
Purpose & Capability
Name/description match the runtime instructions: the skill explicitly targets diagnosis, repair, and maintenance of a local OpenClaw Gateway and asks only for shell access, Node.js/npm availability, and read/write access to ~/.openclaw/. Those requirements are appropriate for the stated tasks (logs, config edits, service restarts, dependency reinstall).
Instruction Scope
SKILL.md instructs the agent to read logs, configuration files, and env files containing tokens (with a non-enforceable instruction to never print them), run systemctl/launchctl, and perform safe-edit/backup workflows. These actions are within scope but do require the rescue agent to have access to secrets and the ability to modify system services — ensure the rescue agent itself is trusted. The guidance relies on the agent's discretion (e.g., not printing tokens), which is a behavioral constraint rather than an enforced technical control.
Install Mechanism
This is an instruction-only skill with no install spec or code files to be downloaded or executed during install. That minimizes supply-chain risk. README suggests installing SKILL.md from a GitHub repo, but the skill bundle in the registry contains only documentation; there is no automatic installer to evaluate.
Credentials
The skill declares no required environment variables in the registry metadata, yet the instructions explicitly state the agent will access local env files containing tokens in ~/.openclaw/. Access to these local secrets is proportional to the task, but the registry metadata omission is a minor inconsistency. No unrelated external credentials or high-privilege cloud keys are requested.
Persistence & Privilege
The skill is not always-enabled and is user-invocable; it does not request persistent privileges or modify other skills' configs. It performs privileged local operations (service restarts, config edits) which are inherent to its purpose — install it only on a dedicated rescue agent, not on the primary gateway.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install openclaw-ops - 安装完成后,直接呼叫该 Skill 的名称或使用
/openclaw-ops触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.2.1
Declare requirements and security notes: shell access, config access, credentials handling, backup-before-modify policy
v1.2.0
Command verification, config get fix, install warnings, mermaid architecture diagram, remote access guide, rescue scenario examples
v1.1.0
Refocus on two core scenarios (Rescue + Health Check), remove out-of-scope content, add architecture diagram and remote access guide
v1.0.0
Initial release: 8 ops modules (status, config, restart, logs, systemd/launchd setup, updates, env check, backup), plus session cleanup, doctor reference, Tailscale troubleshooting, healthcheck cron
元数据
常见问题
OpenClaw Ops 是什么?
Use when diagnosing, repairing, or maintaining an OpenClaw Gateway on the same machine. Designed for rescue agents to fix a down gateway or check operational... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 736 次。
如何安装 OpenClaw Ops?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install openclaw-ops」即可一键安装,无需额外配置。
OpenClaw Ops 是免费的吗?
是的,OpenClaw Ops 完全免费(开源免费),可自由下载、安装和使用。
OpenClaw Ops 支持哪些平台?
OpenClaw Ops 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 OpenClaw Ops?
由 Linfeng Liang(@dinstein)开发并维护,当前版本 v1.2.1。
推荐 Skills