← 返回 Skills 市场
555
总下载
0
收藏
1
当前安装
1
版本数
在 OpenClaw 中安装
/install openclaw-skill-intelligence-ingestion
功能描述
Auto-analyze URLs/info for OpenClaw strategic value, classify, create Obsidian notes, update memory. Use when user shares a URL, article, tweet, or any exter...
安全使用建议
This skill's goals (automatically turn shared URLs into Obsidian notes and memory entries) are reasonable, but there are important mismatches you should address before installing:
- The SKILL.md assumes read/write access to these local locations: /Volumes/T7 Shield/Obsidian_Vault/... and ~/.openclaw/workspace/memory/YYYY-MM-DD.md plus internal files like MEMORY.md, SOUL.md, PRINCIPLES.md. The manifest declares none of these as required config paths—confirm you are comfortable with the skill reading/writing those exact paths.
- The skill instructs the agent to "Do NOT ask for permission — just process it." If you want manual control, edit the SKILL.md or the skill config to require explicit user confirmation before fetching URLs or writing files. Otherwise the agent may autonomously fetch external content and modify local files whenever trigger phrases or URLs appear.
- Because the skill writes persistent data, test it first with a disposable vault path and non-sensitive memory files to confirm behavior (and confirm filename formatting and deduplication logic). Back up your Obsidian vault before use.
- Prefer explicit config: require the user to set the Obsidian vault path and memory path via config (declared in requires.config or requires.config_paths), and remove the instruction to skip permission prompts.
- If you allow it to run autonomously, run it in a least-privileged agent account or sandbox to limit risk of unwanted mass changes or accidental data exposure.
If you want, I can produce a suggested safer SKILL.md patch that: (a) makes the vault/memory paths configurable, (b) requires explicit user confirmation before performing writes, and (c) documents required config paths and consent prompts. This would make the skill coherent and safer to install.
功能分析
Type: OpenClaw Skill
Name: openclaw-skill-intelligence-ingestion
Version: 1.0.0
The skill instructs the AI agent to write files to specific, absolute paths on the host system (e.g., `/Volumes/T7 Shield/Obsidian_Vault/`) and within the user's home directory. Filenames for Obsidian notes are constructed using parts derived from user-provided content (e.g., `ShortTitle` from a URL/article). This creates a critical path traversal vulnerability, allowing a malicious user to craft input that could cause the agent to write files to arbitrary locations on the host system, potentially leading to remote code execution or data corruption. Additionally, the agent is instructed to fetch arbitrary URLs, which could lead to Server-Side Request Forgery (SSRF) if not properly sandboxed. These issues are found primarily in `SKILL.md`.
能力评估
Purpose & Capability
The skill's stated purpose (ingest URLs, classify, create Obsidian notes, update memory) aligns with actions described in SKILL.md, but the manifest declares no required config paths or credentials while the runtime instructions explicitly read and write specific local files (/Volumes/T7 Shield/Obsidian_Vault/..., ~/.openclaw/workspace/memory/YYYY-MM-DD.md) and reference internal docs (MEMORY.md, SOUL.md, PRINCIPLES.md, AGENTS.md, TOOLS.md). The missing declaration of filesystem/config access is an incoherence: either the skill should declare those config paths/permissions, or the instructions should not assume arbitrary filesystem access.
Instruction Scope
SKILL.md gives explicit runtime instructions to: fetch and read arbitrary URLs (ok for purpose), search the web for tweet content if parsing fails, read internal project files for 'Active Engineering Bottleneck', create notes at a fixed absolute path on a mounted volume, and always append to local memory logs. It also instructs 'Do NOT ask for permission — just process it.' That directive to act without user consent is out of scope for a benign skill and increases risk because it will perform network fetches and local file writes automatically when triggered.
Install Mechanism
No install spec and no code files executed at install time—this is instruction-only, which reduces attack surface from installers or remote downloads. There are local repository files (README, index.html) but no runtime install procedure declared.
Credentials
The skill declares no required environment variables or primary credential, but its instructions require access to sensitive local artifacts (MEMORY.md, workspace memory files, SOUL.md, etc.) and an external mounted vault path. Requesting no credentials/config while expecting to read and write these specific files is disproportionate and an transparency gap. There are no network endpoints beyond fetching user-provided URLs, but the file access itself is significant.
Persistence & Privilege
always:false and user-invocable:true are reasonable, but the SKILL.md explicitly directs the agent to "execute this pipeline automatically" and not ask for permission when a trigger condition occurs. Combined with autonomous invocation being allowed by default, this creates a scenario where the skill may autonomously fetch data and modify local files without explicit user confirmation. The skill does not request to persist settings across agents, but its behavior of updating memory and vault files is persistent in the user's environment and should require explicit consent/configuration.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install openclaw-skill-intelligence-ingestion - 安装完成后,直接呼叫该 Skill 的名称或使用
/openclaw-skill-intelligence-ingestion触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release of Intelligence Ingestion Skill.
- Automatically analyzes and classifies external content (URL, article, tweet) for OpenClaw relevance.
- Generates Obsidian-formatted notes with strategic assessment and actionable insights.
- Updates daily memory log and, if critical, system bottleneck and principles/tool references.
- Responds to user with a concise ingestion summary, including strategic value and next steps.
- Handles multiple URLs, duplicates, non-English, paywalled content, and integrates user-provided analysis.
元数据
常见问题
Openclaw Skill Intelligence Ingestion 是什么?
Auto-analyze URLs/info for OpenClaw strategic value, classify, create Obsidian notes, update memory. Use when user shares a URL, article, tweet, or any exter... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 555 次。
如何安装 Openclaw Skill Intelligence Ingestion?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install openclaw-skill-intelligence-ingestion」即可一键安装,无需额外配置。
Openclaw Skill Intelligence Ingestion 是免费的吗?
是的,Openclaw Skill Intelligence Ingestion 完全免费(开源免费),可自由下载、安装和使用。
Openclaw Skill Intelligence Ingestion 支持哪些平台?
Openclaw Skill Intelligence Ingestion 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Openclaw Skill Intelligence Ingestion?
由 2233admin(@2233admin)开发并维护,当前版本 v1.0.0。
推荐 Skills