← 返回 Skills 市场
Shared Pinecone RAG
作者
cryptobro-man
· GitHub ↗
· v1.0.1
406
总下载
0
收藏
0
当前安装
2
版本数
在 OpenClaw 中安装
/install shared-pinecone-rag
功能描述
Use the shared Pinecone RAG index for any agent in this workspace. Use when an agent needs to ingest markdown/text docs into pulse-rag or query semantic cont...
安全使用建议
This skill is plausible for sharing a Pinecone-based RAG, but there are several red flags to check before installing or invoking it:
- The manifest does not declare PINECONE_API_KEY or any required env vars, but SKILL.md says the key must be set in rag-pinecone-starter/.env. Confirm where the key lives and whether it should be explicitly declared in the skill manifest.
- The instructions and scripts use a hard-coded absolute path (/home/Mike/.openclaw/workspace/rag-pinecone-starter). Ensure the path is correct for your environment and not pointing to another user's home. Prefer a workspace-relative path.
- The actual behavior is inside ingest.py and query.py, which are not included here. Do NOT run the scripts until you inspect those Python files to confirm they only contact Pinecone (or other expected endpoints), handle secrets safely, and do not exfiltrate data to unknown endpoints.
- Treat the Pinecone API key as sensitive. If you proceed, limit the key's permissions where possible and rotate it if you later remove the skill.
- Consider running the ingest process in an isolated environment (container or dedicated service account) and test with non-sensitive data first.
If you can provide ingest.py and query.py (or modify the skill to declare the required env var and use workspace-relative paths), the assessment could be upgraded to benign if their code matches the stated purpose.
功能分析
Type: OpenClaw Skill
Name: shared-pinecone-rag
Version: 1.0.1
The skill bundle is classified as benign. Its purpose is to provide a shared Pinecone RAG (Retrieval Augmented Generation) capability, which involves ingesting documents and querying an index. The `SKILL.md` provides clear, non-malicious instructions for the AI agent, without any prompt injection attempts. The shell scripts (`scripts/ingest-shared-rag.sh`, `scripts/query-shared-rag.sh`) are straightforward wrappers that execute local Python scripts (`ingest.py`, `query.py`) within a virtual environment. While the content of these Python scripts is not provided, the shell scripts themselves handle arguments safely and do not exhibit any malicious behaviors such as data exfiltration, unauthorized remote execution, persistence mechanisms, or obfuscation. The file and network access are consistent with the stated RAG functionality.
能力评估
Purpose & Capability
The skill claims to provide a shared Pinecone RAG retrieval/ingest layer, which matches the included scripts that run ingest/query. However the SKILL.md requires a PINECONE_API_KEY and a Python venv stored inside a specific user path ('/home/Mike/.openclaw/workspace/rag-pinecone-starter') while the registry metadata lists no required credentials or env vars — that's an incoherence. The absolute path to a specific user's home (Mike) is surprising for a workspace-shared skill and reduces portability.
Instruction Scope
Runtime instructions tell agents to cd into /home/Mike/... and run scripts which activate a .venv and call python ingest.py / query.py. The scripts themselves are tiny wrappers, but the substantive behavior lives in ingest.py and query.py which are not included for review. Those Python programs will likely load the PINECONE_API_KEY from rag-pinecone-starter/.env and may transmit ingested documents to Pinecone — this is expected for a RAG skill but cannot be audited here. The SKILL.md also instructs placing files under that hard-coded docs path, meaning the skill will read host filesystem content in that directory.
Install Mechanism
No install spec — instruction-only with two small shell scripts. This is lower risk from an installation perspective because nothing is downloaded or extracted by the skill itself. However the skill depends on a pre-existing python venv and unseen python scripts.
Credentials
The manifest declares no required environment variables, yet SKILL.md explicitly says 'PINECONE_API_KEY must be set in rag-pinecone-starter/.env' and the scripts activate a .venv (expected). Requiring a secret API key but not declaring it in the skill metadata is an inconsistency. Storing the API key in a repo-local .env is a design choice but increases risk: the key allows write/read access to the shared Pinecone index and could be used to exfiltrate documents if the unseen Python code is malicious or misconfigured.
Persistence & Privilege
The skill is not marked always:true and does not request elevated persistent presence. Autonomous invocation is allowed (default). Because the skill has access to a network-capable pinecone API key (per SKILL.md) and reads local docs, autonomous invocation combined with an undisclosed credential increases blast radius — verify credentials and code before letting the agent call this skill without supervision.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install shared-pinecone-rag - 安装完成后,直接呼叫该 Skill 的名称或使用
/shared-pinecone-rag触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.1
Docs update: advertise combined usage with hybrid-db-health as Persistent Memory skill stack.
v1.0.0
Initial release: shared ingest/query scripts for pulse-rag.
元数据
常见问题
Shared Pinecone RAG 是什么?
Use the shared Pinecone RAG index for any agent in this workspace. Use when an agent needs to ingest markdown/text docs into pulse-rag or query semantic cont... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 406 次。
如何安装 Shared Pinecone RAG?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install shared-pinecone-rag」即可一键安装,无需额外配置。
Shared Pinecone RAG 是免费的吗?
是的,Shared Pinecone RAG 完全免费(开源免费),可自由下载、安装和使用。
Shared Pinecone RAG 支持哪些平台?
Shared Pinecone RAG 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Shared Pinecone RAG?
由 cryptobro-man(@cryptobro-man)开发并维护,当前版本 v1.0.1。
推荐 Skills