← 返回 Skills 市场
74
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install ssh-filemanager
功能描述
Manage files on remote machines over Tailscale SSH (Tailnet). Use this skill when the user needs to list, read, write, delete, move, copy, search, chmod, pus...
安全使用建议
This skill appears to do what it says (remote file management over SSH), but check a few things before enabling it: 1) Ensure the runtime has ssh, scp, and python3 available — the registry metadata omits these requirements. 2) Be aware the scripts use StrictHostKeyChecking=accept-new (they will auto-accept new host keys), which eases first-time connections but can increase MITM risk on initial contact. 3) The SKILL.md promises path-sanitization and a fallback when remote Python is missing, but the code only escapes single quotes and does not prevent '..' traversal or implement a fallback — treat user-supplied paths carefully and always confirm destructive operations. 4) Because the agent will execute SSH/SCP commands using whatever SSH identity it has access to, only enable this skill if you trust the agent's environment and the set of reachable Tailnet hosts. If you want higher assurance, run the scripts in a restricted environment or manually review and test them on a non-production node first.
功能分析
Type: OpenClaw Skill
Name: ssh-filemanager
Version: 1.0.0
The skill provides remote file management capabilities over Tailscale SSH but contains significant security vulnerabilities, primarily shell and Python injection risks. In `scripts/ssh_file_manager.py`, the `chmod` action directly interpolates the `--mode` argument into a shell command without any sanitization or escaping, allowing for arbitrary command execution on the remote host. Additionally, the `action_list` and `action_stat` functions are vulnerable to Python code injection because they interpolate the path into a remote Python script using double quotes without escaping double-quote characters. While the tool's stated purpose is legitimate administration, these implementation flaws pose a high risk of exploitation.
能力评估
Purpose & Capability
Name/description match the included scripts: both ssh_file_manager.py and ssh_tunnel.py implement remote file ops over SSH/SCP. However, the registry metadata declares no required binaries, while the skill clearly depends on system 'ssh', 'scp', and 'python3' being present; that omission is an incoherence you should fix/verify before installing.
Instruction Scope
SKILL.md instructs the agent to run the included helper scripts and to enforce safety rules (ask for confirmation on destructive ops, path sanitization, and a fallback when remote Python is missing). The actual scripts do not implement path traversal protection (they only escape single quotes) nor do they implement an explicit 'do not traverse above /' check or an automatic fallback when remote Python is missing. In short: operational safety is documented but not enforced by the code.
Install Mechanism
There is no install spec (instruction-only), which is low-risk. The package nonetheless includes two executable Python scripts that the agent will invoke from disk; ensure the runtime will run these local files and that you trust their contents (we reviewed them here).
Credentials
The skill requests no environment variables or credentials, which is proportional to its stated purpose. It relies on existing SSH auth (keys/agent/authorized access) provided by the environment — expected for an SSH-based tool.
Persistence & Privilege
always is false and the skill is user-invocable. Autonomous invocation is allowed (platform default) but not combined with elevated persistence. Nothing in the package attempts to modify other skills or global agent configuration.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install ssh-filemanager - 安装完成后,直接呼叫该 Skill 的名称或使用
/ssh-filemanager触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release of Tailnet SSH File Manager.
- Enables file management on remote machines over Tailscale SSH (Tailnet) from OpenClaw Gateway to OpenClaw Nodes.
- Supports listing, reading, writing, deleting, moving, copying, searching, permission changes, and file transfers via ssh/scp/sftp.
- Automatically switches to scp for files larger than 3KB or binary data, addressing OpenClaw invoke payload limits.
- Includes safety checks: always confirm destructive actions, enforce path sanitization, and provide connection diagnostics.
- Handles common edge cases such as offline hosts, permission errors, and missing dependencies.
元数据
常见问题
ssh_file_manager 是什么?
Manage files on remote machines over Tailscale SSH (Tailnet). Use this skill when the user needs to list, read, write, delete, move, copy, search, chmod, pus... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 74 次。
如何安装 ssh_file_manager?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install ssh-filemanager」即可一键安装,无需额外配置。
ssh_file_manager 是免费的吗?
是的,ssh_file_manager 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
ssh_file_manager 支持哪些平台?
ssh_file_manager 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 ssh_file_manager?
由 XEON0v0(@xeon0v0)开发并维护,当前版本 v1.0.0。
推荐 Skills