← 返回 Skills 市场
tsheasha

Reverse proxy from internet to open claw

作者 tsheasha · GitHub ↗ · v1.0.1
cross-platform ⚠ suspicious
1864
总下载
0
收藏
1
当前安装
2
版本数
在 OpenClaw 中安装
/install reverse-proxy-local
功能描述
Connect OpenClaw to the internet via Tailscale Funnel. Use when user says "connect with ecto", "setup ecto connection", "expose openclaw publicly", or "enable external access".
安全使用建议
What to consider before installing/running: - This skill will install system software (Homebrew if missing, then Tailscale via brew) and requires sudo to start daemon processes — only run on machines you control. Review the Homebrew installer and any network install commands before executing. - It will generate and save a bearer token at ~/.openclaw/ecto-credentials.json and configure the OpenClaw gateway to accept password auth. That token grants API access to your OpenClaw instance; do not share it unless you explicitly intend to grant access. - The package-for-friend helper explicitly copies that credentials file into a shareable folder — this makes it easy to leak access. Prefer sharing transient credentials or revoke/regenerate the token immediately after use. - The registry metadata omits the real runtime requirements (tailscale, openclaw CLI, jq, curl, openssl). Treat that omission as a red flag: verify the scripts manually before running. - If you decide to use it: test in an isolated environment or VM first, inspect scripts line-by-line, and plan how to revoke access (regen token, disable Funnel) after exposure. Consider using Tailscale ACLs and tailnet admin settings instead of broad public sharing. If you want, I can: (1) point out exact lines in scripts that perform installs and create/share credentials, (2) produce a safer checklist to run these scripts manually, or (3) suggest modifications to the scripts to avoid packaging credentials for sharing.
功能分析
Type: OpenClaw Skill Name: reverse-proxy-local Version: 1.0.1 The skill is designed to expose the OpenClaw API publicly via Tailscale Funnel, which inherently involves high-risk operations. It uses `sudo` extensively for installing and managing Tailscale, and modifies OpenClaw's configuration. The primary reason for classifying as suspicious is the `scripts/connect.sh` script's use of `curl -fsSL https://raw.githubusercontent.com/Homebrew/install/HEAD/install.sh | /bin/bash -c` to install Homebrew, which is a common supply chain risk vector, allowing arbitrary code execution if the remote script or server is compromised. While the intent appears aligned with the stated purpose (exposing the API and sharing access), this method of installation introduces a significant vulnerability.
能力评估
Purpose & Capability
The skill's stated purpose (expose OpenClaw via Tailscale Funnel) matches what the scripts do. However the registry metadata declares no required binaries or credentials while the scripts require Homebrew, tailscale, openclaw CLI, jq, curl, openssl and sudo. That mismatch (metadata says 'none' but the code clearly needs system tools and privileged actions) is an inconsistency the user should be aware of.
Instruction Scope
The SKILL.md and scripts instruct the agent/user to install software, run sudo tailscale commands (which open a browser for authentication), modify OpenClaw configuration, start background services, create a local credentials file (~/.openclaw/ecto-credentials.json), and provide a helper to package and share those credentials with others. These actions are in-scope for 'expose to internet' but they involve privileged operations and explicit credential exposure/sharing — a high-risk operation that should not be performed blindly.
Install Mechanism
There is no declared install spec in the registry, but the scripts perform network installs at runtime (Homebrew installer via raw.githubusercontent.com and 'brew install tailscale'). The hosts used are well-known (GitHub/Homebrew) rather than obscure URLs, which is expected for this task, but runtime installation of system packages and invoking remote install scripts increases risk and should be reviewed before running.
Credentials
The skill does not request environment variables or external credentials in metadata, which is consistent, but it does require sudo and a Tailscale account and creates a persistent credentials file containing a generated bearer token. It also includes a convenience script to package and share that credentials file with others — functionality that directly exposes access tokens and is disproportionate if users expect limited, local-only behavior.
Persistence & Privilege
The skill does not request always:true and does not modify other skills or global agent settings. It does write files under the user's home directory, starts/stops services, and runs background processes (tailscaled, openclaw gateway) — behavior consistent with its purpose but which requires sudo and persistent runtime presence.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install reverse-proxy-local
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /reverse-proxy-local 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.1
No functional changes detected in this release. - Version bump to 1.0.1 with no file modifications. - All features and behaviors remain the same as in the previous version.
v1.0.0
Initial release: Quickly and securely expose OpenClaw to the internet with Tailscale Funnel. - One-command setup to install, authenticate, and start Tailscale with Funnel enabled - Automatically exposes OpenClaw’s API on a public URL with secure, random auth token - Provides connect, status, and disconnect commands - Includes simple curl examples and troubleshooting steps - Requires macOS, Tailscale account, and sudo access for setup
元数据
Slug reverse-proxy-local
版本 1.0.1
许可证
累计安装 1
当前安装数 1
历史版本数 2
常见问题

Reverse proxy from internet to open claw 是什么?

Connect OpenClaw to the internet via Tailscale Funnel. Use when user says "connect with ecto", "setup ecto connection", "expose openclaw publicly", or "enable external access". 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 1864 次。

如何安装 Reverse proxy from internet to open claw?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install reverse-proxy-local」即可一键安装,无需额外配置。

Reverse proxy from internet to open claw 是免费的吗?

是的,Reverse proxy from internet to open claw 完全免费(开源免费),可自由下载、安装和使用。

Reverse proxy from internet to open claw 支持哪些平台?

Reverse proxy from internet to open claw 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 Reverse proxy from internet to open claw?

由 tsheasha(@tsheasha)开发并维护,当前版本 v1.0.1。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191113 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论