← 返回 Skills 市场
Outbound Auto Setup
作者
m646pxhjf4-dot
· GitHub ↗
· v1.0.0
· MIT-0
80
总下载
0
收藏
1
当前安装
1
版本数
在 OpenClaw 中安装
/install outbound-auto-setup
功能描述
自动监听外出关键词,提取日期时间地点事项,自动创建并验证Apple提醒、cron推送及待办任务提醒。
安全使用建议
This skill largely implements what it claims but has several issues you should address before installing:
- Missing/undeclared dependencies: the code calls external commands (remindctl) and a script node create-cron-job.js, but the registry metadata lists no required binaries and create-cron-job.js is not included — expect runtime failures or silent behavior. Install and verify remindctl yourself or provide the missing cron-creation script.
- Privacy: the hook logs full message text plus userId and channelId to ~/.openclaw/logs/outbound-auto-setup.log and writes to ~/.openclaw/workspace/memory/pending-tasks.md. If you enable this hook, those files will contain message contents and identifiers. Review/logrotate or restrict access if that is sensitive.
- Autonomy vs confirmation: SKILL.md says it will ask first-time users for confirmation, but the code defaults CONFIG.enabled = true (and hook config enabled true). If you want manual approval, set CONFIG.enabled = false or don't enable the hook until you review code.
- child_process.exec usage: the code shells out (exec). That works for integration but can be risky if commands or arguments are constructed from untrusted data. Review the command construction (remindctl arguments) and consider sanitizing inputs.
Recommended steps before enabling:
1. Inspect the code locally and run tests (npm test). 2. Provide or review the missing create-cron-job.js or modify setupOutbound to a safe, included implementation. 3. Install and test remindctl in a controlled environment. 4. Set CONFIG.enabled = false until you're ready, and verify log/pending file locations and access controls. 5. If you need stricter behavior, modify the skill to require explicit user confirmation before creating reminders.
功能分析
Type: OpenClaw Skill
Name: outbound-auto-setup
Version: 1.0.0
The skill bundle contains a critical shell injection vulnerability in `index.js`. The `setupOutbound` function uses `child_process.exec` to execute the `remindctl` command, incorporating unsanitized strings (`location` and `task`) extracted directly from user messages via regex. While the code appears intended for legitimate task automation, the lack of input validation allows a user to execute arbitrary shell commands. No evidence of intentional malice or data exfiltration was observed, but the implementation is highly insecure.
能力评估
Purpose & Capability
The skill's stated purpose (detect outbound messages and create Apple reminders, cron pushes, and pending-tasks entries) matches the code behavior (parsing messages, running a reminder CLI, appending a pending-tasks file). However the package metadata declares no required binaries or prerequisites even though the code execs external commands (remindctl and a create-cron-job.js script). Also the referenced create-cron-job.js is not present in the repo — a clear mismatch between claimed capabilities and the shipped files.
Instruction Scope
Runtime instructions and code stay within the stated domain (message parsing, creating reminders, writing logs and a pending-tasks file). The skill logs full incoming messages along with userId and channelId to a local log file and appends to ~/.openclaw/workspace/memory/pending-tasks.md — this is expected for its purpose but has privacy implications (it records message content and metadata). The SKILL.md also claims a 'first-use confirmation' but the code defaults to enabled=true, so the claimed user confirmation step is not enforced.
Install Mechanism
No install spec (instruction-only) and the repository contains plain JS files. Nothing in the repo downloads code at runtime or uses obscure external URLs. The risk is limited to the code that will run locally — particularly child_process.exec usage — but there is no high-risk installer URL or archive.
Credentials
The skill requests no credentials/env vars in metadata. It does use process.env.HOME implicitly to locate logs and the pending-tasks file, which is reasonable. No external API keys or unrelated secrets are requested. Still, it reads and records message contents and user/channel IDs — sensitive data but proportional to being a message hook.
Persistence & Privilege
The skill is designed as a message hook (hook-package.json/hook.js) and when enabled will see all incoming messages routed to that hook. 'always' is false (good). The practical effect: if you enable the hook the skill will automatically process messages (potential privacy exposure). It does not appear to alter other skills' configs or require elevated system-wide privileges.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install outbound-auto-setup - 安装完成后,直接呼叫该 Skill 的名称或使用
/outbound-auto-setup触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
- Initial release (v1.0.0)
- Supports automatic detection of outbound-related keywords in user messages
- Extracts date, time, location, and task details from messages
- Automatically creates reminders in Apple Reminders, sets up cron notifications, and updates pending tasks
- Verifies all configurations and provides a complete validation report to the user
元数据
常见问题
Outbound Auto Setup 是什么?
自动监听外出关键词,提取日期时间地点事项,自动创建并验证Apple提醒、cron推送及待办任务提醒。 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 80 次。
如何安装 Outbound Auto Setup?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install outbound-auto-setup」即可一键安装,无需额外配置。
Outbound Auto Setup 是免费的吗?
是的,Outbound Auto Setup 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
Outbound Auto Setup 支持哪些平台?
Outbound Auto Setup 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Outbound Auto Setup?
由 m646pxhjf4-dot(@m646pxhjf4-dot)开发并维护,当前版本 v1.0.0。
推荐 Skills