← 返回 Skills 市场
ResearchVault
作者
Luka Raivisto
· GitHub ↗
· v3.0.5
4832
总下载
6
收藏
2
当前安装
46
版本数
在 OpenClaw 中安装
/install researchvault
功能描述
Local-first research orchestration engine. Manages state, synthesis, and optional background services (MCP/Watchdog).
安全使用建议
Install only if you want a local research database and are comfortable with optional web search and ingestion. Keep the portal bound to localhost, protect the portal token, avoid enabling private-network fetches unless you intentionally need them, and remember that Brave/other search queries may leave your machine when configured and invoked.
能力评估
Purpose & Capability
The CLI, SQLite storage, portal, web ingestion, search, verification, MCP, and watchdog capabilities fit the stated research orchestration purpose and are described in SKILL.md, README.md, and SECURITY.md.
Instruction Scope
The skill is user-invocable, sets disable-model-invocation: true, and documents manual commands for portal and optional services; I found no hidden prompt overrides or automatic agent-start instructions.
Install Mechanism
Installation is documented as manual pip editable install; portal startup is also manual and creates local token/PID state while running dependency checks, with no install-time autorun or persistence hook found.
Credentials
Environment variables for DB paths, portal token, and optional search providers are purpose-aligned and disclosed; portal subprocess execution explicitly strips provider secrets, though diagnostics expose local paths/config status to authenticated portal users.
Persistence & Privilege
Persistent state is local SQLite plus portal auth/state files, and background watchdog/MCP services require explicit startup; the private-network fetch bypass is user-controlled and disclosed but should be treated as sensitive.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install researchvault - 安装完成后,直接呼叫该 Skill 的名称或使用
/researchvault触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v3.0.5
Removed install action mismatch, removed OpenClaw DB access from portal, and removed subprocess secret injection behavior.
v3.0.4
Manifest schema alignment, DB root policy hardening, strict OpenClaw scan gating, and env-only secret handling.
vv3.0.3
**v3.0.3: Portal authentication, secret management, and environment revamp**
- Switched Portal backend authentication to rely solely on the RESEARCHVAULT_PORTAL_TOKEN environment variable.
- Added/updated environment variables for finer-grained Portal control (state dir, PID dir, allowlist bypass, cookie settings, etc).
- Enhanced secret management: new options for persisting and injecting provider secrets, plus improved secrets storage location and test coverage.
- Expanded documentation of environment variables in SKILL.md for clarity and precision.
- Updated backend/frontend components to support improved configuration, diagnostics, and secret handling.
- Added a test file for Portal secret controls (tests/test_portal_secret_controls.py).
vv3.0.1
- Added new environment variables for Portal configuration, including options for scanning workspace memory, persisting and injecting secrets, fixed authentication tokens, and additional search providers (SERPER_API_KEY, SEARXNG_BASE_URL).
- Updated SKILL.md to document the new environment variables and their descriptions.
- Minor backend and test adjustments to support new configuration options and enhance flexibility.
vv3.0.0
Major release: introduces a local web portal for managing ResearchVault.
- Added new web portal with separate backend (FastAPI) and frontend (Vite/React) for local research management.
- Frontend and backend can be started via `./start_portal.sh` with browser-based token login.
- Portal enforces the same strong SSRF/networking protections as the CLI, with explicit user opt-in to private network access.
- Updated documentation to cover portal usage, endpoints, and parity with CLI security.
- Internal codebase expanded and refactored to support portal APIs, state management, and secure token handling.
v2.6.2
Security hardening: strict SSRF protection, isolated background services, and finalized metadata transparency for ClawHub.
v2.6.1
Security hardening: formalized environment requirements, gated network services, and improved metadata transparency.
v2.6.0
Security hardening: removed portal, added strict I/O contracts, disabled autonomous model invocation, and formalized local-first storage.
v2.5.2
Security Hardening: path sanitization and enhanced scrubbing
v2.5.1
Fixing display name.
v2.5.0
Autonomous Strategist release.
v2.4.1
Standardized metadata.
v2.3.5
Final sync.
v2.3.4
Final sync.
v2.3.3
Final sync.
v2.3.2
Final sync.
v2.3.1
Final sync.
v2.3.0
Final sync.
v2.2.9
Final sync.
v2.2.8
Final sync.
元数据
常见问题
ResearchVault 是什么?
Local-first research orchestration engine. Manages state, synthesis, and optional background services (MCP/Watchdog). 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 4832 次。
如何安装 ResearchVault?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install researchvault」即可一键安装,无需额外配置。
ResearchVault 是免费的吗?
是的,ResearchVault 完全免费(开源免费),可自由下载、安装和使用。
ResearchVault 支持哪些平台?
ResearchVault 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 ResearchVault?
由 Luka Raivisto(@lraivisto)开发并维护,当前版本 v3.0.5。
推荐 Skills