← 返回 Skills 市场
1110
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install setuporion-byimpa
功能描述
Setup completo de VPS Ubuntu/Debian para produção com Docker Swarm, Traefik v3 (SSL/HTTPS automático), Portainer CE e rede overlay. Baseado no SetupOrion v2.8.0. Executa todos os comandos automaticamente.
安全使用建议
This SKILL.md is a full automated VPS setup that will run many root-level commands and requires you to supply admin passwords and API keys. Before running it: 1) Review the entire SKILL.md yourself — don't blindly pipe commands into a shell. 2) Note the registry metadata omitted the env vars that the script expects; prepare the required secrets locally and do not paste them into untrusted places. 3) Prefer running the steps manually or in a controlled staging VM first so you can inspect files (traefik.yaml, docker stacks) before they are applied. 4) Be cautious of the curl | bash Docker installer — if you want safer review, install Docker via your distro packages or inspect the installer script first. 5) Back up the server, and ensure DNS and Let's Encrypt limits are understood. If you don't trust the skill's unknown source/homepage, treat it as untrusted instructions rather than an approved package.
功能分析
Type: OpenClaw Skill
Name: setuporion-byimpa
Version: 1.0.0
The skill is classified as suspicious due to several significant security vulnerabilities, primarily the use of `curl -fsSL ... | bash` in `SKILL.md` (Etapa 2), which executes arbitrary remote code and poses a high RCE risk. Additionally, the script repeatedly uses `curl -k` (e.g., Etapa 7, Etapa 9) to disable SSL certificate verification when handling sensitive credentials like the Portainer admin password and Evolution API key, making these communications vulnerable to Man-in-the-Middle attacks. Sensitive credentials are also echoed to stdout, posing a risk if logs are not properly secured. While these are serious flaws, there is no clear evidence of intentional malicious behavior such as data exfiltration to unauthorized endpoints or backdoor installation, indicating vulnerabilities rather than outright malice.
能力评估
Purpose & Capability
The skill's name/description (VPS setup for Docker Swarm, Traefik v3, Portainer) matches the instructions, which perform system updates, install Docker, initialize Swarm, create networks/volumes and deploy Traefik/Portainer. However the registry metadata claims no required environment variables while SKILL.md declares multiple required/sensitive env vars (hostnames, domain names, admin passwords, DB password, API key). That metadata mismatch is an incoherence and reduces provenance.
Instruction Scope
Instructions explicitly run system-wide commands as root/sudo (apt installs, hostname changes, systemctl, writing /root/traefik.yaml, using /var/run/docker.sock) and will configure services and credentials on the host — this is expected for a VPS setup but is high-impact. The doc instructs downloading and running external scripts (curl -fsSL https://get.docker.com | bash) and writing configs which is risky. The instructions reference and require many environment variables declared inside SKILL.md; they do not read unrelated system secrets, but they do modify global system state.
Install Mechanism
This skill is instruction-only (no install spec) so nothing is written by the platform itself. The runtime steps fetch software from official locations (get.docker.com, download.docker.com, Docker images on registries). Using curl | bash to install Docker and pulling container images is common but considered risky because it executes remote code without local review. No unknown/personal URLs or archive extraction are present in the visible portion.
Credentials
SKILL.md requires several sensitive env vars (VPS_PORTAINER_PASS, VPS_POSTGRES_PASS, VPS_EVOLUTION_API_KEY, email and domain names). Those values are plausible and proportional for configuring the services, but the registry-level metadata reported earlier showed 'no required env vars' — a mismatch that could hide secret requirements from users. The skill will create and store those credentials on the VPS; ensure you trust the source before supplying secrets.
Persistence & Privilege
The skill does not request persistent platform-level privileges (always:false) and is user-invocable. It instructs making persistent changes to the target VPS (service installs, system config), which is appropriate for its purpose. There is no evidence it attempts to modify other skills or platform config.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install setuporion-byimpa - 安装完成后,直接呼叫该 Skill 的名称或使用
/setuporion-byimpa触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
v1.0.0 – Setup automatizado de VPS para produção com Docker Swarm, Traefik v3 e Portainer
- Executa configuração completa de servidor Ubuntu/Debian: instala Docker, inicializa Swarm e cria rede overlay.
- Deploy automático de Traefik v3 com SSL/HTTPS via Let's Encrypt.
- Instala e configura Portainer CE com segurança reforçada.
- Criação de volumes Docker essenciais e integração pronta para Evolution API e PostgreSQL.
- Todas as etapas são idempotentes e seguras para re-execução.
元数据
常见问题
SetupOrion ByImpa 是什么?
Setup completo de VPS Ubuntu/Debian para produção com Docker Swarm, Traefik v3 (SSL/HTTPS automático), Portainer CE e rede overlay. Baseado no SetupOrion v2.8.0. Executa todos os comandos automaticamente. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 1110 次。
如何安装 SetupOrion ByImpa?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install setuporion-byimpa」即可一键安装,无需额外配置。
SetupOrion ByImpa 是免费的吗?
是的,SetupOrion ByImpa 完全免费(开源免费),可自由下载、安装和使用。
SetupOrion ByImpa 支持哪些平台?
SetupOrion ByImpa 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 SetupOrion ByImpa?
由 impa365(@impa365)开发并维护,当前版本 v1.0.0。
推荐 Skills