← 返回 Skills 市场
1243
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install slk
功能描述
Read, send, search, and manage Slack messages and DMs via the slk CLI. Use when the user asks to check Slack, read channels or DMs, send Slack messages, search Slack, check unreads, manage drafts, view saved items, or interact with Slack workspace. Also use for heartbeat Slack checks. Triggers on "check slack", "any slack messages", "send on slack", "slack unreads", "search slack", "slack threads", "draft on slack", "read slack dms", "message on slack".
安全使用建议
This skill appears to be what it claims: a macOS Slack CLI that auto-extracts your Slack session so it can act as your user. That requires reading sensitive local data (Keychain, Slack Cookies SQLite, LevelDB) and calling local tools (security, sqlite3, openssl, python3, curl). Before installing, consider: 1) Only install on a personal/trusted machine you control — on shared or managed machines this can expose session tokens; 2) Prefer answering Keychain prompts with 'Allow' rather than 'Always Allow' to avoid silent future access; 3) Inspect the npm package (author/repo) and verify its provenance if you require stronger trust; 4) Be aware a token cache (~/.local/slk/token-cache.json) is created — remove it to force re-extraction if needed; 5) If you plan to let an autonomous agent use this skill, understand it can read and send Slack messages as you (highly privileged for personal account actions). If any of the above is unacceptable, do not install or restrict agent permissions.
功能分析
Type: OpenClaw Skill
Name: slk
Version: 1.0.0
The skill bundle is classified as suspicious due to its core functionality involving the extraction of sensitive Slack session credentials (xoxc- token and xoxd- cookie) from the macOS Keychain, Slack's SQLite database, and LevelDB files. This is achieved by executing system commands like `security`, `sqlite3`, `openssl`, and `python3` via Node.js `child_process.execSync` and `spawnSync` (primarily in `src/auth.js`). While this capability is high-risk, it is transparently documented in `SKILL.md` and `README.md` as the tool's intended purpose, and there is no evidence of intentional malicious behavior such as unauthorized data exfiltration to external endpoints, persistence mechanisms beyond legitimate caching, or obfuscation. The `SKILL.md` instructions for the AI agent are benign and guide the agent to use the tool for its stated Slack interaction purposes.
能力评估
Purpose & Capability
The skill is a macOS Slack CLI that auto-authenticates by extracting Slack session credentials from the desktop app; the package, binaries, and code (auth.js, api.js, commands.js, drafts.js) all implement that feature. Nothing required by the skill (npm slkcli, 'slk' binary) is unrelated to the stated purpose.
Instruction Scope
SKILL.md and the code instruct the agent to use the slk CLI to read/send/search/manage Slack messages. The implementation explicitly reads the macOS Keychain, copies and queries Slack's Cookies SQLite, scans LevelDB, runs local commands (sqlite3, security, openssl, python3, curl) to extract and validate session tokens. Those actions are sensitive but are required to achieve the 'session-based / acts-as-user' functionality and are documented in the README/SKILL.md.
Install Mechanism
Install is via the public npm package 'slkcli' (creates 'slk' binary). npm is a standard distribution channel for Node CLIs (moderate risk compared to no-install). No arbitrary URL downloads or extract-from-unknown-host are present. Review npm package provenance if you need stronger assurance.
Credentials
The skill requests no environment variables and no external credentials, which is consistent. However, it accesses highly sensitive local artifacts (Slack Safe Storage key from Keychain, Slack Cookies DB, LevelDB session data) because it is intentionally designed to act as the user via session tokens. That access is proportional to the stated capability but materially elevated in sensitivity compared to most CLI tools.
Persistence & Privilege
The skill does not set always:true and is user-invocable. It writes a token cache at ~/.local/slk/token-cache.json and will prompt the macOS Keychain. The README warns about the 'Always Allow' Keychain option — choosing that removes user prompts and allows any process running as your user to extract the same key, increasing risk. Autonomous invocation combined with token access increases blast radius (expected for this kind of tool).
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install slk - 安装完成后,直接呼叫该 Skill 的名称或使用
/slk触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
- Initial release of the Slack CLI skill for macOS.
- Read, send, search, and manage Slack messages and DMs directly via the slk CLI.
- Supports Slack channel and DM reading, sending messages, searching, checking unreads, managing drafts, saved items, and viewing threads.
- Session-based authentication: auto-extracts user session from Slack desktop app using macOS Keychain (no tokens or OAuth required).
- Designed for personal agent workflows and heartbeat checks with extensive command options.
- macOS only; acts with user's permissions and session.
元数据
常见问题
Slk 是什么?
Read, send, search, and manage Slack messages and DMs via the slk CLI. Use when the user asks to check Slack, read channels or DMs, send Slack messages, search Slack, check unreads, manage drafts, view saved items, or interact with Slack workspace. Also use for heartbeat Slack checks. Triggers on "check slack", "any slack messages", "send on slack", "slack unreads", "search slack", "slack threads", "draft on slack", "read slack dms", "message on slack". 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 1243 次。
如何安装 Slk?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install slk」即可一键安装,无需额外配置。
Slk 是免费的吗?
是的,Slk 完全免费(开源免费),可自由下载、安装和使用。
Slk 支持哪些平台?
Slk 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(darwin)。
谁开发了 Slk?
由 Rohit Das(@therohitdas)开发并维护,当前版本 v1.0.0。
推荐 Skills