← 返回 Skills 市场
Open Utter (Meeting Bot)
作者
Suman Sigdel
· GitHub ↗
· v1.0.1
441
总下载
0
收藏
1
当前安装
2
版本数
在 OpenClaw 中安装
/install openutter
功能描述
Headless Google Meet bot that joins meetings and captures live captions as transcripts.
安全使用建议
This skill does what it claims, but it stores and reads sensitive local session data (Playwright storageState in ~/.openutter/auth.json and auth-meta.json) that let the bot join as your Google account without host approval. The registry metadata did not declare these config paths or the persistent credential-like file. Before installing: 1) Only use --auth (authenticated mode) if you fully trust the skill's source — otherwise prefer guest mode (--anon) so nothing stores your Google session. 2) Inspect the scripts yourself (they're included) and consider running them in an isolated VM or container. 3) If you authenticate, be aware auth.json contains cookies/localStorage; delete it when done or restrict its filesystem permissions. 4) The skill sends screenshots and messages using the local openclaw CLI when given a channel/target; confirm you want meeting screenshots/transcripts forwarded to chat. 5) If you need higher assurance, ask the publisher to declare the required config paths and explain how auth.json is protected, or prefer a skill that does not persist your Google credentials.
功能分析
Type: OpenClaw Skill
Name: openutter
Version: 1.0.1
The skill bundle is classified as suspicious due to a shell injection vulnerability in `scripts/utter-join.ts`. The `execSync` call, which sends messages via `openclaw message send`, directly interpolates the `opts.channel` parameter without proper sanitization or JSON stringification. This allows for arbitrary command injection if a malicious actor can control the `--channel` argument (e.g., via prompt injection against the OpenClaw agent). While the skill's core functionality (Google Meet bot, caption capture, local storage of auth) aligns with its stated purpose, this vulnerability poses a significant risk for remote code execution.
能力评估
Purpose & Capability
The name/description (headless Google Meet bot capturing captions) matches the included scripts and runtime instructions. Node + Playwright automation is expected. However, the skill reads/writes several home-directory files (e.g. ~/.openutter/auth.json, ~/.openutter/auth-meta.json, ~/.openclaw/workspace/openutter/...) but the registry metadata declared no required config paths or credentials — the manifest omits these important local filesystem dependencies.
Instruction Scope
SKILL.md explicitly instructs the agent to read ~/.openutter/auth-meta.json before asking the user, to always pass channel/target so the bot can 'send screenshots and status images directly to the user's chat', and to run background processes. The instructions permit reading/writing session files and transcripts and call external commands (openclaw message send). Reading local session state and sending meeting content to a chat are within the skill purpose, but the explicit reading of a private auth-meta.json and the requirement that channel/target be supplied are broad actions that should be disclosed in the manifest.
Install Mechanism
There is no install spec and the skill is instruction-plus-scripts only (no network downloads). That lowers install risk; the scripts expect playwright-core (not auto-installed here) and instruct how to run them. No external downloads or extract steps are present.
Credentials
The skill requests no environment variables or credentials in the registry, but the code persists and reads highly sensitive local artifacts: ~/.openutter/auth.json (Playwright storageState) contains Google cookies/localStorage (session tokens), and auth-meta.json stores the saved account email and timestamp. Those are effectively credentials allowing the bot to join meetings as an authenticated user. The manifest should have declared these config paths and the credential-like nature of auth.json. The bot also writes transcripts and screenshots to ~/.openclaw/workspace/openutter/ which can contain sensitive meeting content.
Persistence & Privilege
The skill is a long-running background process (utter-join stays in meetings), writes a PID file and persistent profile/auth files, and supports signaling for on-demand screenshots. It does not set always:true or modify other skills' configs, but its persistent Google session and long-running nature increases the blast radius if the code is malicious or compromised.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install openutter - 安装完成后,直接呼叫该 Skill 的名称或使用
/openutter触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.1
**Skill renamed and metadata updated.**
- Changed skill name from "openutter" to "open-utter".
- Added homepage field and improved short description in SKILL.md.
- No changes to bot behavior or functionality documented in the changelog.
v1.0.0
OpenUtter 1.0.0 – Initial Release
- Join Google Meet meetings via a headless browser bot, capturing live captions as a transcript.
- Enforces strict workflow: always ask the user how to join (authenticated, guest, or custom name) before launching.
- Supports joining with authenticated Google account (no host approval) or as a named guest (host must admit).
- Captures and regularly updates real-time caption transcripts, saved to file, with easy commands to read summaries.
- Provides commands for on-demand meeting screenshots, with mandatory image delivery using the message tool.
- Includes robust agent/polling instructions and clear process markers for status and error reporting.
元数据
常见问题
Open Utter (Meeting Bot) 是什么?
Headless Google Meet bot that joins meetings and captures live captions as transcripts. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 441 次。
如何安装 Open Utter (Meeting Bot)?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install openutter」即可一键安装,无需额外配置。
Open Utter (Meeting Bot) 是免费的吗?
是的,Open Utter (Meeting Bot) 完全免费(开源免费),可自由下载、安装和使用。
Open Utter (Meeting Bot) 支持哪些平台?
Open Utter (Meeting Bot) 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Open Utter (Meeting Bot)?
由 Suman Sigdel(@sumansid)开发并维护,当前版本 v1.0.1。
推荐 Skills