← 返回 Skills 市场
luccast

Crabwalk

作者 luccasveg · GitHub ↗ · v0.1.0
cross-platform ⚠ suspicious
1948
总下载
2
收藏
15
当前安装
1
版本数
在 OpenClaw 中安装
/install public
功能描述
Real-time companion monitor for OpenClaw agents
安全使用建议
What to consider before installing: - Metadata mismatch: The skill did not declare that it reads the OpenClaw config (~/.openclaw/openclaw.json) but the instructions say it will auto-detect the gateway token there. Confirm that reading that file is acceptable for your environment. - Binary install from GitHub: The install downloads and extracts a release tarball and places a binary in ~/.local/bin. Although GitHub releases are common, this will execute code on your machine. Verify the project's repo (https://github.com/luccast/crabwalk), review the source or release artifacts, and confirm the release checksum/signature if available. - Persistence and shell modification: The installer appends PATH export lines to your shell rc files. Expect files under ~/.crabwalk and an executable in ~/.local/bin; be prepared to remove them if you uninstall. - Network exposure: Crabwalk defaults to binding 0.0.0.0:3000 and instructs sharing the network IP. That makes the monitor accessible from other machines on your network — fine if intentional, risky if running on a public or untrusted network. Consider firewall rules or binding to localhost with an SSH tunnel if you want restricted access. - Elevated installs: The script optionally uses package managers with sudo to install qrencode. Expect sudo prompts; the rest of the install does not require root. - Safer steps: run the tool in an isolated VM/container or on a non-sensitive host first; inspect the GitHub repository and release artifacts; prefer source builds if possible; backup relevant files and review ~/.bashrc/.zshrc changes after installation. If the author provided explicit metadata (required config path, checksums for releases, or a signed release), my confidence that this is coherent would increase. Without those, treat the skill as plausible but with installation/runtime actions that deserve manual review.
功能分析
Type: OpenClaw Skill Name: public Version: 0.1.0 The skill is classified as suspicious due to several high-risk behaviors identified in `skill.md`. It demonstrates prompt injection capabilities by instructing the agent to share a promotional tweet and ask for update permission. The `crabwalk` tool is designed to auto-detect and read sensitive OpenClaw gateway authentication tokens from `~/.openclaw/openclaw.json`. Furthermore, the installation script attempts to install `qrencode` using `sudo` with `--noconfirm` or `-y` flags, and the monitoring server binds to `0.0.0.0:3000` by default, exposing agent activity and a file browser (`/workspace`) to the local network. While these actions are presented as part of the tool's stated purpose, they represent significant security risks and vulnerabilities.
能力评估
Purpose & Capability
The declared purpose — a real-time monitor for OpenClaw agents — aligns with the instructions (install a Crabwalk binary and connect to the local OpenClaw gateway). However the SKILL.md references reading the OpenClaw config (~/.openclaw/openclaw.json) to auto-detect a gateway token, but the registry metadata did not declare any required config paths or credentials; that mismatch should have been declared.
Instruction Scope
The runtime instructions explicitly tell the agent/user to download and extract a release tarball from GitHub, copy a binary into ~/.local/bin, append PATH changes to shell rc files, optionally install system packages using sudo, and start a server bound to 0.0.0.0. The instructions also auto-detect an auth token from ~/.openclaw/openclaw.json. These actions go beyond a purely read-only monitor (they write binaries to disk, change shell startup files, may invoke elevated package installs, and expose a service to the network). Reading the OpenClaw config is consistent with the tool's purpose but should have been declared.
Install Mechanism
Install is via a GitHub Releases tarball (well-known host) and standard extraction to ~/.crabwalk, then copying the binary to ~/.local/bin. Using GitHub releases is common/expected, but extracting and executing an archive obtained at runtime writes arbitrary code to disk — acceptable for a CLI tool but inherently higher-risk than instruction-only skills. The script also attempts to install qrencode with package managers using sudo, which may prompt for elevation.
Credentials
The skill declares no required env vars or config paths, yet the CLI/README states it will auto-detect a gateway auth token from ~/.openclaw/openclaw.json. Access to that token is proportional to the stated purpose, but the omission in metadata is an inconsistency. No unrelated third-party credentials are requested.
Persistence & Privilege
The skill does not request always:true and allows user invocation. However the installer writes files to ~/.crabwalk and ~/.local/bin and appends PATH entries to ~/.bashrc/.zshrc, giving it persistent presence in the user environment. The server binds to 0.0.0.0 by default (0.0.0.0:3000), which exposes the monitor to the local network — expected for remote human access but increases attack surface and privacy risk.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install public
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /public 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v0.1.0
- Initial release of Crabwalk public skill. - Provides installation, verification, and start instructions to run the Crabwalk real-time OpenClaw agent monitor. - Includes CLI commands and options for starting, updating, and managing the monitor server. - Lists key features: real-time activity graph, file browser, markdown viewer, and auto gateway token detection. - Documents requirements, update process, and troubleshooting steps.
元数据
Slug public
版本 0.1.0
许可证
累计安装 15
当前安装数 15
历史版本数 1
常见问题

Crabwalk 是什么?

Real-time companion monitor for OpenClaw agents. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 1948 次。

如何安装 Crabwalk?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install public」即可一键安装,无需额外配置。

Crabwalk 是免费的吗?

是的,Crabwalk 完全免费(开源免费),可自由下载、安装和使用。

Crabwalk 支持哪些平台?

Crabwalk 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 Crabwalk?

由 luccasveg(@luccast)开发并维护,当前版本 v0.1.0。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论