← 返回 Skills 市场
271
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install remote-console
功能描述
通过手机/浏览器远程访问主机上的 Claude Code 或其他 CLI 工具。使用此技能来启动、停止和管理远程开发环境。 **必须触发此技能的场景**: - 用户提到"远程控制台"、"远程终端"、"远程开发"、"ttyd"、"SSH 隧道" - 用户想用手机/平板访问电脑上的开发环境 - 用户提到"移动端编程"...
安全使用建议
This skill implements a remote console by starting ttyd and an SSH reverse tunnel and is functionally coherent with that goal — but review and act on these points before installing:
- Inspect config.json and remove any dangerous pre-defined commands (e.g., 'claude-bypass' or any command with flags that disable safety checks).
- The Python scripts invoke shells (bash -c or pwsh -Command) and may execute command strings from the config or from user-supplied -c values. Only allow trusted commands in the config and avoid passing untrusted text into the --command/-c or --path arguments.
- The skill will create background processes and may kill existing 'ttyd' or 'ssh' processes; don't run on critical production machines unless you accept that behavior.
- Ensure SSH key-based auth is configured for the target and that the remote port exposure is controlled (firewall/GatewayPorts). Prefer using an SSH alias that you trust.
- Consider running these scripts inside an isolated environment (container or VM) and binding ttyd to localhost with secure tunnel endpoints or adding authentication, to reduce exposure.
Given the mismatch between the SKILL.md advice ("do not concatenate shell commands") and the scripts' use of shell invocation, treat the implementation as unpolished and audit the code and config before use. If you want me to, I can summarize exactly where arbitrary commands can be injected and propose concrete hardening changes (e.g., avoid shell -c and use argv lists, whitelist commands, or sandbox the console).
功能分析
Type: OpenClaw Skill
Name: remote-console
Version: 1.0.0
The skill facilitates remote shell access by deploying a ttyd web terminal and establishing an SSH reverse tunnel to a remote server. It explicitly promotes the use of a 'claude-bypass' command which utilizes the '--dangerously-skip-permissions' flag to remove security guardrails. While the functionality is documented for remote development, the inherent nature of creating reverse tunnels and bypassing security permissions in scripts like start_console.py and config.json poses a significant security risk for unauthorized remote control.
能力评估
Purpose & Capability
Name/description (remote console via ttyd + SSH) align with included scripts (start/stop/check/validate) and config.json. The commands list includes entries for running Claude/other CLIs which is expected. However config.json defines a 'claude-bypass' command containing '--dangerously-skip-permissions' (explicitly labeled high-risk) and scripts allow running arbitrary commands from config or CLI flags — which is consistent with a remote console but increases risk and should be explicitly acceptable to the user.
Instruction Scope
SKILL.md instructs all operations go through the provided Python scripts and forbids shell concatenation, but the scripts often invoke shells (bash -c / pwsh -Command) and construct command strings that will be interpreted by the shell. start_console can run commands coming from config.json or user-supplied --command/-c, which may lead to arbitrary command execution. Scripts read and modify local state: they read config.json, enumerate and kill processes, start background processes and SSH tunnels. They do not appear to exfiltrate data to external endpoints, but the scope includes altering processes and opening network-accessible consoles — appropriate for the purpose but sensitive in practice.
Install Mechanism
No install spec; this is an instruction+script skill. Only dependency is psutil (listed in requirements and SKILL.md recommends pip install psutil). No downloaded remote payloads or unusual installers were found.
Credentials
The skill requests no environment variables or credentials, and relies on user-supplied config.json for server, ssh_alias, and project paths. That is proportionate to the stated purpose. Users must provide SSH host/user/alias and ensure keys are configured; the skill will call system ssh and relies on system ttyd. Because commands can be arbitrary (including 'claude-bypass'), confirm the entries in config.json before use.
Persistence & Privilege
always:false (default) and no modifications to other skills or global agent settings were observed. The scripts create background processes (ttyd, ssh) which is expected behavior for a remote console but not platform-level persistence.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install remote-console - 安装完成后,直接呼叫该 Skill 的名称或使用
/remote-console触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
remote-console 1.0.0 初始版本发布
- 实现通过手机/浏览器远程访问主机 Claude Code 或 CLI 工具,支持项目管理及命令自定义
- 强制所有操作通过 Python 脚本(禁止直接拼接 Shell 命令)以增强安全性
- 提供一键启动、停止、状态检查、配置验证等常用管理命令
- 详细说明配置文件内容及常见预定义命令,包含安全警告提示
- 增加常见问题与解决方案、首次使用检查清单
元数据
常见问题
ResmoteConsole 是什么?
通过手机/浏览器远程访问主机上的 Claude Code 或其他 CLI 工具。使用此技能来启动、停止和管理远程开发环境。 **必须触发此技能的场景**: - 用户提到"远程控制台"、"远程终端"、"远程开发"、"ttyd"、"SSH 隧道" - 用户想用手机/平板访问电脑上的开发环境 - 用户提到"移动端编程"... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 271 次。
如何安装 ResmoteConsole?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install remote-console」即可一键安装,无需额外配置。
ResmoteConsole 是免费的吗?
是的,ResmoteConsole 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
ResmoteConsole 支持哪些平台?
ResmoteConsole 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 ResmoteConsole?
由 HaibaraAi(@haibaraaiaptx)开发并维护,当前版本 v1.0.0。
推荐 Skills