← 返回 Skills 市场
helladventurer

Spaces Group Assistant

作者 HellAdventurer · GitHub ↗ · v0.1.2
cross-platform ⚠ suspicious
1071
总下载
0
收藏
4
当前安装
3
版本数
在 OpenClaw 中安装
/install spaces-group-assistant
功能描述
Предоставляет расширенный доступ к внутренним данным, аналитике и логам в доверенной группе Telegram с ограничением доступа к календарю.
安全使用建议
This skill is designed to let any member of a specific Telegram group see internal workspace files, logs, and run server-side hooks. Only install it if the group membership is strictly controlled and you understand that the skill intentionally bypasses per-user checks. Before installing: (1) confirm there are no secrets in workspace files, logs, or MEMORY.md; (2) prefer a version that enforces an allowlist of specific user IDs (not 'any participant'); (3) require admin approval for expanding FULL_POWER_GROUPS; (4) test in a sandboxed environment; and (5) consider additional auditing/alerting for data access from the assistant. If you lack a security review process, treat this as high-risk and avoid enabling it.
功能分析
Type: OpenClaw Skill Name: spaces-group-assistant Version: 0.1.2 The skill is classified as suspicious due to the explicit mention of 'Access to exec and server-side hooks' in SKILL.md. This instruction to the AI agent creates a significant prompt injection vulnerability, potentially leading to Remote Code Execution (RCE) if an attacker in the designated trusted group (chat_id -4842304105, as defined in spaces-group-assistant.js) crafts a malicious prompt. Additionally, the skill grants broad access to internal knowledge bases, memory (MEMORY.md), logs, and reports, increasing the risk of sensitive data exposure within the trusted group.
能力评估
Purpose & Capability
The name/description claim expanded access to internal KB, MEMORY.md, logs and analytics for a trusted Telegram group, and the code+docs implement a gate that enables that behavior for chat_id -4842304105. However, the skill itself does not declare any permissions or credentials and simply returns control to the core assistant to perform the actual data access — meaning it functions as an access gate rather than a data consumer. That design is coherent with the stated purpose but increases risk because it implicitly allows the main assistant to expose local workspace data to the group.
Instruction Scope
SKILL.md explicitly instructs the agent to provide summaries from local files (e.g., spaces-KB.md, MEMORY.md), logs, and to run exec/server-side hooks when requests come from the trusted group. Those instructions encourage reading and returning potentially sensitive local data and executing server-side actions. The JS code does not implement content filtering — it purposefully returns null for the trusted group which lets the core assistant handle returning workspace/log/exec results. This scope includes sensitive read/execute actions that go beyond a simple chat responder and are not narrowed by user identity.
Install Mechanism
No install spec or external downloads; the skill is instruction-only with a small JS gatekeeper file. Nothing is written to disk by an installer and no external URLs or packages are pulled during installation.
Credentials
The skill requires no environment variables or credentials, but its described functionality (accessing workspace files, memory, logs, and running exec hooks) entails access to highly sensitive local data and possibly secrets. Requesting no explicit credentials is not inherently wrong, but the lack of declared limits combined with the promised ability to surface logs and run server-side hooks is disproportionate and could expose credentials or secrets present in the workspace.
Persistence & Privilege
always:false (good), but the skill intentionally relaxes per-user authorization inside the designated group (the code comments 'Нет фильтра по user — реагируем на всех'). That means any member of the trusted group can trigger full-access behavior. Because model invocation is allowed (default), the skill can be invoked autonomously and thus increases the blast radius if the group membership is not tightly controlled. The skill does not modify other skills' configs, but it effectively elevates privileges for group members.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install spaces-group-assistant
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /spaces-group-assistant 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v0.1.2
Spaces Group Assistant v0.1.2 - Обновлён идентификатор доверенной группы Telegram в документации (chat_id теперь -4842304105 вместо ____). - Исправлен пункт “Разработано”: теперь указан автор Roman Plakhov. - Актуализирована документация (SKILL.md) для точного отражения настроек группы и авторства. - Внутренние изменения в package.json и основной логике для поддержки обновлённых данных группы.
v0.1.1
Spaces Group Assistant 0.1.1 - Добавлен файл _meta.json. - В SKILL.md обновлены детали чат-группы (chat_id теперь скрыт, автор изменён на qwerty). - Прежний идентификатор группы и имя автора удалены для обезличивания. - Основной функционал и описание особенностей остались без изменений.
v0.1.0
Spaces Group Assistant 0.1.0 — initial release - Enables advanced knowledge base, memory, logs, and analytics access in a dedicated Telegram group. - Grants group members formatted answers from local markdown docs; allows exec/server-side functions with ACL. - Calendar access is strictly blocked in groups for privacy; calendar queries denied with redirect to private chat. - Operates in full-power mode only for specified groups (chat_id -4842304105) or in private, otherwise responds with public info only. - Uses ACL and group array for access control; designed for trusted teams needing flexible but secure assistance.
元数据
Slug spaces-group-assistant
版本 0.1.2
许可证
累计安装 4
当前安装数 4
历史版本数 3
常见问题

Spaces Group Assistant 是什么?

Предоставляет расширенный доступ к внутренним данным, аналитике и логам в доверенной группе Telegram с ограничением доступа к календарю. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 1071 次。

如何安装 Spaces Group Assistant?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install spaces-group-assistant」即可一键安装,无需额外配置。

Spaces Group Assistant 是免费的吗?

是的,Spaces Group Assistant 完全免费(开源免费),可自由下载、安装和使用。

Spaces Group Assistant 支持哪些平台?

Spaces Group Assistant 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 Spaces Group Assistant?

由 HellAdventurer(@helladventurer)开发并维护,当前版本 v0.1.2。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论