← 返回 Skills 市场
634
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install ssh-op
功能描述
Use the ssh-op helper script to load an SSH private key from 1Password (op) into an in-memory ssh-agent and then run ssh. Use when connecting to hosts that r...
安全使用建议
Proceed with caution. Things to check before installing or using this skill: 1) The package references a runtime script (~/.openclaw/skills/ssh-op/scripts/ssh-op) but that file was not provided for review — inspect that script yourself to ensure it actually does what the README claims and contains no network calls or unexpected behavior. 2) Ensure you have the 1Password CLI (op) installed and are comfortable that piping the private key from `op read` into `ssh-add -` (in-memory agent) matches your security policy; verify no temporary files are created by the actual ssh-op script. 3) Back up ~/.ssh/config before running ensure_ssh_config.py; the included Python script has a regex bug and may append duplicate managed blocks instead of updating them idempotently. 4) Confirm you trust the skill owner and run the onboarding/test steps in an isolated account or VM first. 5) Ask the publisher to correct metadata to list required binaries (op, ssh, ssh-agent, ssh-add) and either include the canonical executable or explain where it will be installed so reviewers can validate runtime behavior.
功能分析
Type: OpenClaw Skill
Name: ssh-op
Version: 0.1.0
This skill is classified as suspicious due to its handling of highly sensitive operations and potential vulnerabilities, despite lacking explicit malicious intent. The `SKILL.md` describes a 'chat-first' onboarding flow where an AI agent might write `config.env` based on user input, posing a prompt injection risk if the agent doesn't sanitize input. The `scripts/onboard.sh` script takes user input for critical 1Password credentials and SSH key fingerprints, and while it quotes values during writing, the security ultimately depends on the (missing) `scripts/ssh-op`'s secure parsing of these values. Furthermore, `scripts/ensure_ssh_config.py` modifies `~/.ssh/config` with content from `hosts.conf`, a powerful capability that could be abused if `hosts.conf` were malicious, even though the script itself doesn't generate malicious content.
能力评估
Purpose & Capability
The skill's description (use 1Password CLI to load a private key into ssh-agent) matches the included onboarding and helper scripts. However the registry metadata claims no required binaries or env vars while the SKILL.md and onboard.sh explicitly require the `op` CLI and ssh-related binaries. The canonical executable referenced (~/.openclaw/skills/ssh-op/scripts/ssh-op) is described but not included in the provided file contents, so the actual runtime behavior cannot be verified.
Instruction Scope
SKILL.md and onboard.sh give explicit, scoped instructions (run op whoami, run onboard.sh, run ssh-op, optionally update ~/.ssh/config). They do not instruct broad file-system scraping or network exfiltration. However because the main runtime script (scripts/ssh-op) is not present for review, we cannot confirm it adheres to the documented behavior (e.g., piping `op read ... | ssh-add -`). The provided ensure_ssh_config.py is intended only to manage a delimited block in ~/.ssh/config, but it contains a regex bug that will likely append duplicate blocks instead of updating them idempotently.
Install Mechanism
There is no install spec (instruction-only with some helper scripts), which is low-risk from an installation standpoint. Nothing is downloaded from external URLs in the package.
Credentials
The skill does not declare any required environment variables in registry metadata, yet the documentation and onboard.sh rely on the user's 1Password CLI session (op) and optionally OP_SERVICE_ACCOUNT_TOKEN. The skill writes a machine-local config.env containing vault/item names (not secrets). The mismatch between declared requirements and actual runtime requirements is noteworthy and should be corrected/verified before use.
Persistence & Privilege
The skill does not request global/always-on privileges. It writes a config file in its own skill directory and can update ~/.ssh/config (expected for managing host aliases). It does not attempt to modify other skills or system-wide agent settings.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install ssh-op - 安装完成后,直接呼叫该 Skill 的名称或使用
/ssh-op触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v0.1.0
Initial public release
元数据
常见问题
SSH OP 是什么?
Use the ssh-op helper script to load an SSH private key from 1Password (op) into an in-memory ssh-agent and then run ssh. Use when connecting to hosts that r... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 634 次。
如何安装 SSH OP?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install ssh-op」即可一键安装,无需额外配置。
SSH OP 是免费的吗?
是的,SSH OP 完全免费(开源免费),可自由下载、安装和使用。
SSH OP 支持哪些平台?
SSH OP 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 SSH OP?
由 Zhihao(@moodykong)开发并维护,当前版本 v0.1.0。
推荐 Skills