← 返回 Skills 市场
teoslayer

Pilot Keychain

作者 Calin Teodor · GitHub ↗ · v1.0.0 · MIT-0
cross-platform ⚠ suspicious
76
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install pilot-keychain
功能描述
Secure credential exchange with auto-expiry for Pilot Protocol agents. Use this skill when: 1. You need to share API keys, tokens, or credentials securely be...
安全使用建议
This skill generally does what it says (shares credentials via pilotctl) but the instructions leave gaps that could leak secrets. Before installing or using it: 1) Confirm pilotctl/pilot-protocol come from a trusted source and verify whether pilotctl encrypts files in transit and at rest. 2) Ensure jq and openssl are available (they are used but not declared as required binaries in metadata). 3) Hardening recommendations: use mktemp for temporary files, set restrictive permissions (umask/chmod 600) on any credential files, avoid writing secrets to /tmp if other users exist on the host, avoid printing secrets to stdout (do not expose to shells/logs), and add reliable cleanup/traps to remove files on failure. 4) Test in an isolated environment first. If you need strong guarantees about non-persistence, prefer an approach that streams secrets through an authenticated, encrypted channel instead of writing them to disk.
功能分析
Type: OpenClaw Skill Name: pilot-keychain Version: 1.0.0 The skill facilitates credential exchange using the Pilot Protocol and the pilotctl utility. While its behavior aligns with its stated purpose, it contains security vulnerabilities, such as writing sensitive credentials to /tmp and potential shell injection risks in the 'Receive' and 'Cleanup' commands where jq output is passed directly to xargs and date without sanitization. These flaws could be exploited by a malicious peer sending crafted filenames or metadata, though no evidence of intentional malice by the author is present.
能力评估
Purpose & Capability
The skill claims 'secure credential exchange with end-to-end encryption' and declares pilotctl as a required binary. The SKILL.md, however, also depends on jq and openssl (listed in the human-readable Dependencies) but those are not declared in the registry metadata requires.bins. Writing credential JSON files to /tmp and ~/.pilot/keychain in plaintext is inconsistent with a strong 'secure' posture unless pilotctl guarantees transit and at-rest encryption — the README does not document that. Overall capability matches the stated purpose but dependency and storage details are under-specified.
Instruction Scope
Runtime instructions create plaintext credential files in /tmp and under ~/.pilot/keychain/sent|received, then cat and output credential values to stdout. This behavior increases the chance of local exposure (other users reading /tmp, shell history or process capture, logs). There is no guidance to restrict file permissions (chmod 600), use secure temporary files (mktemp), or avoid printing secrets. Cleanup uses rm but no secure deletion or guaranteed cleanup on failure. The instructions stay within the skill's domain (pilotctl and local keychain), but they include operations that can leak secrets and should be hardened.
Install Mechanism
Instruction-only skill with no install spec — low install risk. Nothing is downloaded or written by an installer according to the metadata.
Credentials
No environment variables or external credentials are requested. The skill needs pilotctl/pilot-protocol (reasonable for its purpose) and also uses jq and openssl; those are typical CLI dependencies but should be declared explicitly.
Persistence & Privilege
The skill does not request always:true, does not modify other skills or system-wide settings, and stores data only under ~/.pilot and /tmp. The presence of persistent files containing secrets increases local attack surface but does not request elevated platform privileges.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install pilot-keychain
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /pilot-keychain 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release
元数据
Slug pilot-keychain
版本 1.0.0
许可证 MIT-0
累计安装 0
当前安装数 0
历史版本数 1
常见问题

Pilot Keychain 是什么?

Secure credential exchange with auto-expiry for Pilot Protocol agents. Use this skill when: 1. You need to share API keys, tokens, or credentials securely be... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 76 次。

如何安装 Pilot Keychain?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install pilot-keychain」即可一键安装,无需额外配置。

Pilot Keychain 是免费的吗?

是的,Pilot Keychain 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。

Pilot Keychain 支持哪些平台?

Pilot Keychain 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 Pilot Keychain?

由 Calin Teodor(@teoslayer)开发并维护,当前版本 v1.0.0。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论