← 返回 Skills 市场
318
总下载
0
收藏
1
当前安装
5
版本数
在 OpenClaw 中安装
/install ragflow-runbook
功能描述
End-to-end runbook for deploying, operating, troubleshooting, and monitoring RAGFlow (runtime ops only).
安全使用建议
This skill appears to do what it says: an ops runbook for RAGFlow. Before installing/using it: 1) Keep your RAGFLOW_API_KEY secret (export it in your shell or a secrets manager; do not paste into chat). 2) Inspect scripts (especially deploy.sh) before running; the fallback download path fetches files from raw.githubusercontent.com but only if you set RAGFLOW_RUNBOOK_ALLOW_DOWNLOAD=1. 3) Starting containers is disabled by default; set RAGFLOW_RUNBOOK_ALLOW_START=1 only when you intend to run docker compose up. 4) The alert helper calls the openclaw CLI and requires an OpenClaw chat target if used — install/configure OpenClaw first or avoid alerting. 5) If you need extra assurance, run these scripts in an isolated/test environment (not production) the first time. The only minor inconsistency is that registry metadata declared no required env vars while SKILL.md does — this is documented in the changelog as an intentional duplication for scanners and does not materially change the skill's behavior.
功能分析
Type: OpenClaw Skill
Name: ragflow-runbook
Version: 0.1.4
The skill bundle is designed for RAGFlow runtime operations, including deployment, health checks, and alerting. All scripts and documentation align with this stated purpose. Notably, `scripts/deploy.sh` includes explicit opt-in mechanisms (`RAGFLOW_RUNBOOK_ALLOW_DOWNLOAD`, `RAGFLOW_RUNBOOK_ALLOW_START`) to prevent unauthorized downloading of upstream files or starting containers, which is a strong security safeguard. The `SKILL.md` and other documentation provide clear instructions and security warnings (e.g., regarding API key handling and default passwords), without any evidence of prompt injection attempts to manipulate the agent maliciously. Python scripts (`ragflow_ping.py`, `ragflow_smoke.py`, `ragflow_status.py`) perform standard API calls for health monitoring, and `ragflow_alert.py` uses the `openclaw message send` CLI for intended operational alerts, explicitly warning against including secrets. There is no evidence of data exfiltration, unauthorized persistence, or malicious execution.
能力评估
Purpose & Capability
Name/description (RAGFlow runtime ops) matches the included scripts and runtime instructions. Requested binaries (python3, docker, curl) and optional git/openclaw are appropriate for deploying, checking, and alerting RAGFlow. No unrelated cloud credentials or surprising tools are requested.
Instruction Scope
SKILL.md and the scripts focus on liveness/readiness, status, smoke tests, and deploy helpers. They require RAGFLOW_BASE_URL and optionally RAGFLOW_API_KEY/OPENCLAW_PRIMARY_CHAT_ID. The runbook explicitly warns not to paste secrets in chat and the scripts avoid reading arbitrary local secret files. The deploy script will download upstream docker files only if the operator opt-ins via env flags, which is appropriate for a deploy tool.
Install Mechanism
There is no formal install spec (instruction-only), which is low risk. The included deploy.sh has a fallback that downloads raw files from GitHub (raw.githubusercontent.com) when git is not available; that pattern is expected for a deploy helper but still carries the usual risk of fetching remote code — the script requires an explicit opt-in (RAGFLOW_RUNBOOK_ALLOW_DOWNLOAD) before downloading files, which mitigates accidental execution.
Credentials
Required/optional env vars are proportional and specific to the task (RAGFLOW_BASE_URL required in SKILL.md; RAGFLOW_API_KEY and OPENCLAW_PRIMARY_CHAT_ID optional). The skill does not request unrelated credentials. Note: registry metadata provided at the top-level listed 'none' for required env vars, but the SKILL.md front matter declares RAGFLOW_BASE_URL as required — this duplication was intentional (per CHANGELOG) for scanner compatibility but is a minor metadata inconsistency rather than a functional issue.
Persistence & Privilege
The skill does not request always:true and is user-invocable. It does not modify other skills or system-wide configs. Deploy operations write to a user-specified deploy root (default ./ragflow) and require explicit opt-in before starting containers (RAGFLOW_RUNBOOK_ALLOW_START), which is appropriate for an ops tool.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install ragflow-runbook - 安装完成后,直接呼叫该 Skill 的名称或使用
/ragflow-runbook触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v0.1.4
Deploy safety: deploy.sh now requires explicit opt-in for runtime downloads and starting containers.
v0.1.3
Metadata compatibility: duplicate env declarations at top-level and metadata.env so scanners display required env vars.
v0.1.2
Metadata: make required env vars parseable + declare optional openclaw dependency for alerting.
v0.1.1
Security: ragflow_alert.py no longer defaults to a hardcoded Telegram target and no longer includes base URL. Metadata: declare required env vars.
v0.1.0
Initial release: RAGFlow runtime ops runbook + built-in deploy/healthcheck/ping/smoke/status/alert scripts + cron/launchd templates.
元数据
常见问题
ragflow-runbook 是什么?
End-to-end runbook for deploying, operating, troubleshooting, and monitoring RAGFlow (runtime ops only). 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 318 次。
如何安装 ragflow-runbook?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install ragflow-runbook」即可一键安装,无需额外配置。
ragflow-runbook 是免费的吗?
是的,ragflow-runbook 完全免费(开源免费),可自由下载、安装和使用。
ragflow-runbook 支持哪些平台?
ragflow-runbook 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 ragflow-runbook?
由 YITING OU(@yitingou)开发并维护,当前版本 v0.1.4。
推荐 Skills