← 返回 Skills 市场
Allow your claws to do things remotely on a Desktop machine via MCP
作者
wentbackward
· GitHub ↗
· v1.0.1
· MIT-0
133
总下载
1
收藏
0
当前安装
2
版本数
在 OpenClaw 中安装
/install remote-claws
功能描述
Full remote desktop control of a machine via Remote Claws MCP. Use when asked to: take a screenshot of the remote desktop; click, type, or drag with the mous...
安全使用建议
This skill is coherent: it provides remote-desktop, browser automation, command execution, and file operations as advertised. That also means it is very powerful — if misused it can run commands and read/write files on the remote machine. Before installing: (1) Confirm you trust the Remote Claws MCP server you register (verify the server hostname, repository, and operator). (2) Ensure the bearer token referenced in openclaw.json is stored securely and that you understand which account/permissions it grants. (3) Configure per-tool permissions (permissions.json) and IP/host allowlists on the MCP server to limit what the agent can do. (4) Consider disabling autonomous invocation for this skill or require explicit user consent for actions that run commands or access files. (5) If you cannot verify the remote server and its operator, do not enable this skill.
功能分析
Type: OpenClaw Skill
Name: remote-claws
Version: 1.0.1
The skill provides high-privilege remote administration capabilities, including arbitrary command execution (exec_run), full file system access (file_read, file_write), and remote desktop monitoring (desktop_screenshot). While these tools are aligned with the stated purpose of 'Remote Claws' for remote machine control, they represent significant security risks such as Remote Code Execution (RCE) and data exfiltration if misused or targeted by prompt injection. No explicit evidence of intentional malice was found in SKILL.md, but the broad access granted is inherently high-risk.
能力评估
Purpose & Capability
The name and description promise full remote-desktop control and the SKILL.md documents desktop, browser, exec, and file tools that exactly match that purpose. There are no unrelated environment variables, binaries, or install steps requested that would be unexpected for a remote-control skill.
Instruction Scope
The instructions tell the agent to take screenshots, click/type, run arbitrary commands, and read/write files on the remote machine — all expected for full remote-control functionality. They do not instruct the agent to read local host secrets or unrelated system files. Note: the skill assumes use of an MCP/SSE-connected remote-claws server and references configuration in openclaw.json (bearer token), which is outside the skill file itself.
Install Mechanism
Instruction-only skill with no install steps and no code files. This is the lowest install risk: nothing is downloaded or written by the skill itself.
Credentials
The skill declares no required environment variables or credentials in the registry metadata, which is consistent with being an instruction-only skill. However, the SKILL.md states the MCP server requires a bearer token configured in openclaw.json and may use allowlists and per-tool permissions. That configuration is external to the skill and not declared as a required env var — you should verify how and where that token is stored and that it is not leaked.
Persistence & Privilege
always:false and user-invocable:true (default) — the skill will not be forced into every agent run. disable-model-invocation is false, so the agent may call the skill autonomously. Given the high-power nature of remote-control tools (commands, files, screen), you should consider whether autonomous invocation is acceptable in your deployment and enforce per-tool permissions on the MCP server.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install remote-claws - 安装完成后,直接呼叫该 Skill 的名称或使用
/remote-claws触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.1
- Updated SKILL.md and bundle contents to explain the auth and security built in.
v1.0.0
- Initial release.
元数据
常见问题
Allow your claws to do things remotely on a Desktop machine via MCP 是什么?
Full remote desktop control of a machine via Remote Claws MCP. Use when asked to: take a screenshot of the remote desktop; click, type, or drag with the mous... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 133 次。
如何安装 Allow your claws to do things remotely on a Desktop machine via MCP?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install remote-claws」即可一键安装,无需额外配置。
Allow your claws to do things remotely on a Desktop machine via MCP 是免费的吗?
是的,Allow your claws to do things remotely on a Desktop machine via MCP 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
Allow your claws to do things remotely on a Desktop machine via MCP 支持哪些平台?
Allow your claws to do things remotely on a Desktop machine via MCP 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Allow your claws to do things remotely on a Desktop machine via MCP?
由 wentbackward(@wentbackward)开发并维护,当前版本 v1.0.1。
推荐 Skills