← 返回 Skills 市场

Outclaw Plan

Name: Outclaw Plan
Author: milstan

作者 milstan · GitHub ↗ · v1.0.6 · MIT-0

cross-platform ⚠ suspicious

100

总下载

当前安装

版本数

在 OpenClaw 中安装

/install outclaw-plan

功能描述

Build, approve, schedule, monitor, and react to multi-channel B2B outreach campaigns. Reads the user's KB and learned style; constructs multi-step multi-chan...

安全使用建议

What to consider before installing: - Missing declarations: The skill expects many external tools and service credentials (Gmail, Slack, WhatsApp, LinkedIn, Calendly, Leadbay) but the registry shows no required env vars or config paths. Ask the author for a full list of required CLIs, environment variables, and filesystem paths and for justification of each. - Silent auto-invocation: The instructions tell the agent to silently auto-invoke other skills (outclaw-research, outclaw-style, shared scripts) without asking the user. If you install this, verify whether those downstream skills are trusted and what they will do (especially any that write to KB or trigger network calls). - Persistent writes and side effects: The skill writes /tmp manifests, updates campaign state, marks drafts as drafted, and logs to Leadbay. Confirm what data will be written, where it will be stored, how long it is retained, and whether you can review/approve those writes before they occur. - Sending and approval: The SKILL.md emphasizes per-touchpoint approval and anti-spam caps, but it also supports a 'trust mode' for pre-approvals. If you do not want automated sending, ensure 'trust mode' is disabled and test that the agent never sends without explicit approval. - Sandbox/testing: Because the skill is instruction-only and relies on host CLIs, test it in a safe sandbox account (test Gmail, test Slack workspace, test Leadbay tenant) before giving access to production accounts. - Ask for source and provenance: The registry homepage links to a GitHub repo; inspect that repo for the referenced scripts (plan_scaffolder.py, validators, schedule_manager.py, channel adapters) to confirm there is no hidden network endpoint or obfuscated behavior. - Least privilege: If you proceed, grant only the minimal credentials needed (dedicated service accounts or test accounts), and audit outgoing network calls and created messages. Require explicit declaration of all required env vars and an install checklist from the publisher. Overall recommendation: do not install in production until the author provides a manifest of required CLIs/credentials, clarifies silent auto-invocation behavior, and shows the scripts that will be executed so you can review persistent writes and external API usage.

能力标签

crypto

能力评估

⚠ Purpose & Capability

The skill's name/description (campaign planning, response listening, dashboard) aligns with the instructions, but the SKILL.md repeatedly references external CLIs, services, and internal scripts (gog CLI for Gmail, slack_send_message, WhatsApp MCP, linkedin-cli, calendly.get_scheduling_link, Leadbay sync scripts, various .py and .sh scripts). None of these required tools, credentials, or config paths are declared in the registry metadata. That omission is disproportionate: a mail/slack/linkedin-integrated outreach skill legitimately needs those credentials/tools, but they should be explicitly declared so the user understands the required access.

⚠ Instruction Scope

The SKILL.md instructs the agent to read tenant capability maps and KB files (kb/me/self.md, ~/.openclaw/outclaw/styles/), write/read files in /tmp, run many local scripts (outclaw_daily_batch.sh, plan_scaffolder.py, mark_plan_drafted.py, channel_validator.py, draft_checker.py, scripts/*), and auto-invoke other skills silently (outclaw-research, outclaw-style, shared/scripts/capabilities.py). Silent auto-invocation and the variety of file reads/writes broaden scope and can lead to surprising actions (background research, KB writes, scheduling, Leadbay logging). The instructions also mandate piping agent replies through validators and cat'ing files verbatim — all of which imply filesystem and external-service access not declared to the registry.

✓ Install Mechanism

This is an instruction-only skill (no install spec, no code files). That reduces risk from arbitrary install-time code. However, runtime behavior depends on external scripts/CLIs being present on the host; their absence could cause failures or unexpected fallbacks (e.g., browser automation).

⚠ Credentials

The skill requires access to multiple external services (Gmail via 'gog' CLI, Slack, WhatsApp MCP, LinkedIn CLI/browser automation, Calendly, Leadbay). Despite this, the registry lists no required environment variables, no primary credential, and no config paths. That mismatch is a red flag: the skill implicitly needs credentials and tokens to send messages and poll inboxes, and those sensitive credentials are not declared or scoped for review.

⚠ Persistence & Privilege

The skill does not set always:true (good), but it instructs writing campaign state and markers (mark_plan_drafted.py, /tmp/outclaw-plan-draft.md), logging to Leadbay, and modifying do-not-contact lists. It also instructs auto-invoking other skills silently. Those operations modify persistent state (KB, campaign state, Leadbay records) and can have lasting effects; the metadata did not declare required config paths or explain what write permissions are needed. This combination (silent auto-invoke + persistent writes + undeclared access) is concerning.

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install outclaw-plan
安装完成后，直接呼叫该 Skill 的名称或使用 /outclaw-plan 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v1.0.6

v2.1.33: hard sanity gate refuses truncated Leadbay pulls — caps agent's paraphrase-and-summarize failure mode

v1.0.5

v2.1.32: ensure_leadbay_bound self-heal for plugins.allow + entries + agent skills + extensions dir

v1.0.4

v2.1.31: pull count=50, kill stale --n 3, heredoc-write discipline

v1.0.3

v2.1.30: paste-the-file-verbatim rule + sanity gate kills 'see above' bypass

v1.0.2

v2.1.29: first-action scaffolder rule + chat-reply-must-validate + angle-fit detector (kills 'furthers their sustainability goals' class)

v1.0.1

v2.1.28: agent mindset + options-and-choose + coherence checklist + evidence card + per-tenant style + daily launchd cron

v1.0.0

Outclaw-plan 2.1.27 — Full multi-channel B2B outreach campaign planning, approval, scheduling, and management. - Orchestrates end-to-end multi-channel outreach campaigns—plan, approval, scheduling, monitoring, and response handling. - Enforces strict zero-fabrication: every claim in drafts must have source provenance. - Auto-invokes research, style, and capability checks as needed without user prompt; skips unsatisfied actions with user notice. - Daily batch flow drafts outreach for 10–15 new targets at a time, strictly following scaffold and validator outputs. - Handles per-touchpoint user approval, anti-spam protections, campaign dashboard, pause/resume/cancel/archive, and opt-out flows. - Never sends, queues, or contacts without explicit user approval; refuses all bulk-send requests.

元数据

Slug outclaw-plan

版本 1.0.6

许可证 MIT-0

累计安装 1

当前安装数 1

历史版本数 7

常见问题

Outclaw Plan 是什么？

Build, approve, schedule, monitor, and react to multi-channel B2B outreach campaigns. Reads the user's KB and learned style; constructs multi-step multi-chan... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件，目前累计下载 100 次。

如何安装 Outclaw Plan？

在 OpenClaw 或 Claude Code 对话框中运行命令「/install outclaw-plan」即可一键安装，无需额外配置。

Outclaw Plan 是免费的吗？

是的，Outclaw Plan 完全免费，采用 MIT-0 许可证，可自由下载、安装和使用。

Outclaw Plan 支持哪些平台？

Outclaw Plan 跨平台运行，可在任意部署了 OpenClaw / Claude Code 的环境中使用（cross-platform）。

谁开发了 Outclaw Plan？

由 milstan（@milstan）开发并维护，当前版本 v1.0.6。