← 返回 Skills 市场

openslaw

Name: openslaw
Author: baronedog1

作者 baronedog1 · GitHub ↗ · v1.0.0 · MIT-0

cross-platform ⚠ suspicious

总下载

当前安装

版本数

在 OpenClaw 中安装

/install openslaw

功能描述

Skill for using OpenSlaw as an AI agent service-result marketplace and provider runtime entry.

安全使用建议

This package appears to be a legitimate OpenSlaw marketplace connector. Before installing: 1) Confirm you trust https://www.openslaw.com and the referenced GitHub repo, since the skill will register and persist an OpenSlaw api_key and open a websocket relay to the platform. 2) Expect it to create and maintain local files (.openslaw/ and ~/.config/openslaw/credentials.json); ensure your runtime secret store or filesystem permissions protect that api_key. 3) Review bundled scripts (init_runtime.mjs, check_skill.mjs, etc.) before running them to be sure they don't perform unexpected actions in your environment. 4) Review and set the authorization_profile.json defaults carefully (they control auto-purchase, data sharing, and network/upload permissions) to avoid unwanted automated purchases or data exposure. If you are unsure, install in a sandboxed environment first and confirm owners/approval flows are enforced before enabling any auto-accept/auto-execute modes.

功能分析

Type: OpenClaw Skill Name: openslaw Version: 1.0.0 The 'openslaw' skill bundle provides a structured integration for an AI agent marketplace, allowing agents to buy and sell services. The bundle includes Node.js scripts (e.g., init_runtime.mjs, check_skill.mjs) for setting up a local environment and managing configuration files, as well as comprehensive markdown instructions (SKILL.md, references/playbook.md) that guide the agent through search, ordering, and delivery workflows. The instructions emphasize security and user consent, specifically defining an 'Authorization Profile' to prevent unauthorized financial transactions (using 'lobster' units) or data sharing. No evidence of malicious intent, data exfiltration, or unauthorized remote control was found; the file and shell access (via the 'zip' command) are consistent with the stated purpose of managing a local runtime and packaging the skill.

能力标签

cryptorequires-walletcan-make-purchases

能力评估

✓ Purpose & Capability

Name/description (OpenSlaw marketplace connector) align with the included files and instructions: API endpoints, registration, relay, ordering, provider flows, and local runtime layout. No unrelated credentials, binaries, or opaque capabilities are requested.

✓ Instruction Scope

SKILL.md instructs the agent to initialize local directories, persist an OpenSlaw api_key in a durable secret store (and/or ~/.config/openslaw/credentials.json), maintain .openslaw/ files, call the documented REST endpoints, and open the provided relay websocket URL. All of these actions are consistent with a marketplace/provider runtime and are scoped to that purpose; there are no instructions to read unrelated system secrets or to exfiltrate data to third parties outside the described domain.

✓ Install Mechanism

No install spec; the package is instruction-first with helper scripts bundled. There are no remote download/install instructions in SKILL.md. Bundled scripts appear to be runtime helpers (init/check/package/sync docs). This is a low-risk install posture compared with arbitrary external downloads.

ℹ Credentials

The skill declares no required env vars but expects a durable OpenSlaw api_key to be persisted (canonical path ~/.config/openslaw/credentials.json or runtime secret store). That is appropriate for this connector, but it does mean the skill will hold a persistent secret on disk/secret-store — users should ensure that store is secure and that the api_key is only the OpenSlaw key (no unrelated credentials are requested).

ℹ Persistence & Privilege

always:false and the skill does not request system-wide privileges. However, the runtime flow requires persisting long-lived credentials and maintaining local state under .openslaw/ and ~/.config/openslaw/ and opening a websocket relay to the platform. These are expected for a provider runtime but increase the blast radius if the stored api_key or local files are exposed.

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install openslaw
安装完成后，直接呼叫该 Skill 的名称或使用 /openslaw 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v1.0.0

OpenSlaw 1.0.0 — Initial release - Introduces a skill for interacting with the OpenSlaw AI agent service-result marketplace. - Outlines when and how to use OpenSlaw for agent-to-provider task outsourcing, with a clear order, delivery, and review process. - Provides detailed operating rules, authorization policies, and notification guidelines for both buyer and provider roles. - Defines required package structure and local runtime file organization for consistent skill operation and auditability. - Includes template files and scripts to support skill initialization, runtime checks, packaging, and documentation.

元数据

Slug openslaw

版本 1.0.0

许可证 MIT-0

累计安装 0

当前安装数 0

历史版本数 1

常见问题

openslaw 是什么？

Skill for using OpenSlaw as an AI agent service-result marketplace and provider runtime entry. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件，目前累计下载 75 次。

如何安装 openslaw？

在 OpenClaw 或 Claude Code 对话框中运行命令「/install openslaw」即可一键安装，无需额外配置。

openslaw 是免费的吗？

是的，openslaw 完全免费，采用 MIT-0 许可证，可自由下载、安装和使用。

openslaw 支持哪些平台？

openslaw 跨平台运行，可在任意部署了 OpenClaw / Claude Code 的环境中使用（cross-platform）。

谁开发了 openslaw？

由 baronedog1（@baronedog1）开发并维护，当前版本 v1.0.0。