← 返回 Skills 市场
374
总下载
0
收藏
2
当前安装
2
版本数
在 OpenClaw 中安装
/install openclaw-sandbox
功能描述
OpenClaw 沙盒测试系统 v2.0 - 零风险配置变更测试,9 层防护 +5 原则,自动备份回滚,Git 版本管理
安全使用建议
This skill appears to implement a useful sandbox workflow for OpenClaw, but review the scripts before running them. Specifically: 1) Inspect templates/safe-try.sh and templates/apply-config.sh to ensure the openclaw commands, ports, and the sandbox token are acceptable for your environment. 2) Remove or change the enabled plugin ('feishu-openclaw-plugin') if you don't want sandbox to load external integrations — that plugin may need credentials not declared by the skill. 3) Fix the hard-coded user path in scripts/cleanup-env.sh (/Users/wh1ko) — it will mis-restore HOME on other machines; prefer restoring HOME from the parent shell or documenting the expected username. 4) Run the sandbox first on an isolated test machine or non-critical account, confirm the backup/rollback process works, and only then use apply-config.sh on production. 5) Because the scripts start a background gateway, ensure you understand how to stop it (PID file location) and verify logs before applying changes to production.
功能分析
Type: OpenClaw Skill
Name: openclaw-sandbox
Version: 2.0.0
The skill bundle provides a sandbox for OpenClaw configuration testing but contains high-risk environment manipulation and poor portability. Specifically, `scripts/cleanup-env.sh` hardcodes a specific developer's path (`/Users/wh1ko`) and attempts to force the `$HOME` variable to it, which would disrupt the shell environment for any other user. While the scripts in `templates/` include backup and validation logic, the aggressive modification of core environment variables and the execution of background processes via `nohup` in `templates/safe-try.sh` represent risky behaviors that could lead to system instability if used outside the original developer's specific environment.
能力评估
Purpose & Capability
The name/description (sandbox for OpenClaw config testing) match the code: scripts create a temporary sandbox, validate configs, start a gateway, backup and apply production configs. Nothing requests unrelated cloud credentials or exotic binaries. One surprising item: the sandbox config enables a 'feishu-openclaw-plugin' in templates/safe-try.sh; allowing a plugin that may require external credentials is not obviously necessary for a generic sandbox and the skill does not declare any plugin-related environment variables or creds.
Instruction Scope
The runtime instructions and included shell scripts manipulate environment variables (export OPENCLAW_HOME and HOME), create files under $HOME and /tmp, start a background gateway process, and provide an apply-to-production flow that runs openclaw gateway restart. The scripts are explicit about these actions (not stealthy), but they also embed a hard-coded user path (/Users/wh1ko) in scripts/cleanup-env.sh and assume behaviours (e.g., restoring HOME to that path). cleanup-env.sh and the SKILL.md do not make it clear when or whether users should run cleanup-env.sh automatically. The presence of a configured plugin (feishu-openclaw-plugin) and an in-cleartext sandbox token in the example config are also things a user should validate.
Install Mechanism
There is no install spec (instruction-only), so no network downloads or opaque installers are performed by the skill itself. The code files are plain shell scripts bundled in the skill — lower risk than a remote install URL. The platform will write these files into the skill path when installed, which is expected.
Credentials
The skill does not request credentials or env vars in metadata (good), but the scripts actively set and unset OPENCLAW_HOME and temporarily change HOME for the gateway process. cleanup-env.sh unconditionally sets HOME back to '/Users/wh1ko' if HOME differs, which is a hard-coded developer path and not proportional to a general-purpose skill; running that script on other machines could mis-set HOME. Also, enabling 'feishu-openclaw-plugin' in the sandbox config may implicitly require Feishu credentials not declared by the skill.
Persistence & Privilege
The skill is not always:true and does not request elevated platform privileges. It writes files into the user's skill directory, $HOME/.openclaw/backups, and /tmp for sandbox state — expected for a sandbox tool. It does start a background process (openclaw gateway) in the user's context, which is expected behavior but worth noting before launch.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install openclaw-sandbox - 安装完成后,直接呼叫该 Skill 的名称或使用
/openclaw-sandbox触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v2.0.0
v2.0.0: 新增 9 层防护体系、配置安全 5 原则、4 个污染问题案例
v1.0.0
OpenClaw 沙盒测试系统 - 1.0.0
- 首次发布,提供 OpenClaw 配置变更的零风险沙盒测试环境
- 支持自动备份与一键回滚,集成 Git 版本管理
- 提供针对不同变更量的操作脚本(小改动/大改动)
- 包含详尽的快速开始说明及端口配置说明
- 完善的文件结构及安全扫描报告
元数据
常见问题
OpenClaw 沙盒测试系统 是什么?
OpenClaw 沙盒测试系统 v2.0 - 零风险配置变更测试,9 层防护 +5 原则,自动备份回滚,Git 版本管理. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 374 次。
如何安装 OpenClaw 沙盒测试系统?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install openclaw-sandbox」即可一键安装,无需额外配置。
OpenClaw 沙盒测试系统 是免费的吗?
是的,OpenClaw 沙盒测试系统 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
OpenClaw 沙盒测试系统 支持哪些平台?
OpenClaw 沙盒测试系统 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 OpenClaw 沙盒测试系统?
由 wh1ko(@zoopools)开发并维护,当前版本 v2.0.0。
推荐 Skills