← 返回 Skills 市场

openprovider

Name: openprovider
Author: jpj069

作者 Jens Jung · GitHub ↗ · v1.0.4 · MIT-0

cross-platform ⚠ suspicious

137

总下载

当前安装

版本数

在 OpenClaw 中安装

/install openprovider

功能描述

OpenProvider domain registrar & DNS management. Triggers on: register domain, buy domain, renew domain, transfer domain, delete domain, restore domain, add D...

安全使用建议

This skill appears to implement the documented OpenProvider API, but the registry metadata is inconsistent with the runtime instructions. Before installing: 1) Confirm which credentials will be provided — the SKILL.md expects OPENPROVIDER_USERNAME and OPENPROVIDER_PASSWORD (and documents a DB fallback key integration_credentials_openprovider) but the manifest lists no required env vars; ensure you only supply a dedicated OpenProvider account with minimal privileges. 2) Verify whether the agent will have access to your system_settings DB; if so, determine who can read that table and whether storing credentials there meets your security policy. 3) Note the examples use curl|jq — check that tokens and HTTP responses won't be logged or sent to unintended places. 4) If you need stronger assurance, request the publisher to update the manifest to declare the required env vars and to remove or clearly justify the DB fallback, and ask for explicit handling details for token caching/rotation. If you cannot confirm these points, treat installation as higher risk.

能力标签

requires-oauth-token

能力评估

ℹ Purpose & Capability

The name/description and the runtime instructions consistently target the OpenProvider REST API for domains, DNS, and SSL operations — capability matches purpose. However, the manifest declares no required environment variables or config paths while the SKILL.md explicitly expects OPENPROVIDER_USERNAME / OPENPROVIDER_PASSWORD (and a DB fallback), which is an omission.

⚠ Instruction Scope

SKILL.md instructs the agent to load credentials from environment variables or from a database table (system_settings key integration_credentials_openprovider). It also shows curl-based examples that pipe output to jq to extract tokens. The manifest does not declare access to any DB/config paths or required binaries, yet the instructions assume both. The DB fallback is especially notable because reading a system_settings table is outside the narrow scope described in the manifest and implies access to internal storage.

ℹ Install Mechanism

There is no install spec (instruction-only), which is low-risk in general. But the runtime examples rely on curl and jq; the manifest lists no required binaries. If the agent environment lacks these tools the examples won't work; if present, the sample shell pipelines could cause tokens/responses to be written to logs or shells if not handled carefully.

⚠ Credentials

The actions described legitimately require an OpenProvider username/password (and thus a credential). That is proportionate to the skill's purpose. However, the skill does not declare these required env vars in the registry metadata, and it additionally documents a fallback to reading sensitive credentials from a DB table. The combination (undeclared env vars + DB credential fallback) is an inconsistency and increases the attack surface unless the operator knows exactly which credentials will be used and how DB access is granted.

✓ Persistence & Privilege

The skill is not marked always:true and does not request persistent system-level privileges. It is user-invocable and allows normal autonomous invocation; this is the platform default and not by itself concerning.

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install openprovider
安装完成后，直接呼叫该 Skill 的名称或使用 /openprovider 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v1.0.4

Fix OpenProvider apex/root DNS naming guidance, document empty-string apex writes, and prevent accidental example.com.example.com records

v1.0.3

Neutralize documentation examples to generic example.com domains; retain OpenProvider MX prio guidance, Resend/SES example, and error 816 troubleshooting without project-specific references.

v1.0.2

Fix OpenProvider DNS guidance for MX records: use prio instead of priority; add Resend/Amazon SES known-good example; document error 816 and verification steps.

v1.0.1

Clarify OpenProvider DNS record naming: zone-relative names required for writes; document FQDN duplication pitfall and safe verification flow.

v1.0.0

Initial release: OpenProvider registrar and DNS skill covering auth, domains, DNS zones/records, SSL, nameserver groups, TLD info, and customer handles.

元数据

Slug openprovider

版本 1.0.4

许可证 MIT-0

累计安装 0

当前安装数 0

历史版本数 5

常见问题

openprovider 是什么？

OpenProvider domain registrar & DNS management. Triggers on: register domain, buy domain, renew domain, transfer domain, delete domain, restore domain, add D... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件，目前累计下载 137 次。

如何安装 openprovider？

在 OpenClaw 或 Claude Code 对话框中运行命令「/install openprovider」即可一键安装，无需额外配置。

openprovider 是免费的吗？

是的，openprovider 完全免费，采用 MIT-0 许可证，可自由下载、安装和使用。

openprovider 支持哪些平台？

openprovider 跨平台运行，可在任意部署了 OpenClaw / Claude Code 的环境中使用（cross-platform）。

谁开发了 openprovider？

由 Jens Jung（@jpj069）开发并维护，当前版本 v1.0.4。