← 返回 Skills 市场
Ssh Remote Sanitized
作者
myroboskill.com
· GitHub ↗
· v1.0.0
· MIT-0
293
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install ssh-remote-sanitized
功能描述
SSH 远程服务器管理工具。支持多服务器连接管理、命令执行、文件传输、系统监控、服务管理、日志分析、安全检查等功能,适用于 Linux/Unix 服务器运维。
安全使用建议
This skill implements an SSH management tool that will: (1) read/write server configs under ~/.openclaw/skills/ssh-remote/configs/servers.json, (2) optionally read SSH private keys from paths you supply (e.g. ~/.ssh/id_rsa) or environment variables, and (3) execute arbitrary commands on your remote servers and run package installation via npm. The registry metadata did not list any required environment variables even though the code uses several — that's an inconsistency you should be aware of. Before installing: inspect configs/servers.json (don’t store private keys in the skill directory), review package.json and run npm install and npm audit in a safe environment, consider using a dedicated least-privilege SSH account (not root) for this skill, and avoid granting it access to your primary private keys unless you trust the source. If you need higher assurance, review the src/*.js files yourself or run the skill in an isolated container/VM.
功能分析
Type: OpenClaw Skill
Name: ssh-remote-sanitized
Version: 1.0.0
The skill bundle provides a comprehensive SSH management tool, but it contains multiple shell injection vulnerabilities across several files (e.g., src/log.js, src/service.js, src/upload.js, and src/security.js). User-provided inputs like file paths, service names, and search patterns are directly concatenated into command strings executed via SSH (e.g., in `searchLog` and `getServiceStatus`) without any sanitization or escaping. While these appear to be unintentional security flaws rather than intentional malice, they represent a significant risk as they allow for arbitrary command execution on the remote server if the AI agent is manipulated.
能力评估
Purpose & Capability
Name, README, SKILL.md and the source files (connect, exec, upload, download, monitor, service, log, security, index) are consistent with an SSH remote management tool. The code uses ssh2 and implements expected features (connections, command exec, file transfer, monitoring, security checks).
Instruction Scope
SKILL.md and README instruct running npm install and configuring configs/servers.json or environment variables. The runtime code reads configuration files from ~/.openclaw/skills/ssh-remote/configs/servers.json and also checks process.env (SSH_HOST, SSH_CONFIG_PATH, SSH_PRIVATE_KEY, etc.). The skill will read local private key files (e.g. ~/.ssh/id_rsa) and write config files under ~/.openclaw — these behaviors are within an SSH tool's purpose but are not declared in the metadata and are sensitive.
Install Mechanism
No formal install spec in registry metadata, but package.json/README require npm install and a dependency (ssh2). This means the skill will pull code from npm when the user runs npm install; there is no automatic download URL or extract step in the registry data. Risk from install is moderate (npm dependency) but not unusually high; user should run npm install/audit in a controlled environment.
Credentials
Registry metadata lists no required env vars, yet SKILL.md, README, and src/index.js explicitly read environment variables (SSH_HOST, SSH_PORT, SSH_USERNAME, SSH_PASSWORD, SSH_PRIVATE_KEY, SSH_CONFIG_PATH, HOME). The skill also reads private key files from disk (privateKeyPath). Access to local SSH private keys and optional use of passwords is expected for an SSH client, but it is sensitive and should be declared upfront. The mismatch between declared and actual env usage is an incoherence.
Persistence & Privilege
The skill does not set always:true and does not declare modifications to other skills or system-wide settings. It will persist configuration files under its own ~/.openclaw path and maintain an in-process connection pool — these are normal for this type of skill.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install ssh-remote-sanitized - 安装完成后,直接呼叫该 Skill 的名称或使用
/ssh-remote-sanitized触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release of SSH remote server management skill.
- Supports multi-server SSH connection management
- Features remote command execution, file upload/download, system monitoring, service management, log analysis, and security checks
- Designed for Linux/Unix server operations and maintenance
- Includes configurable server list and usage examples
- Provides trigger words for key operations (连接, 执行, 上传, 下载, 监控, 服务, 日志, 安全)
- Requires Node.js (>=18.0.0) and ssh2 (>=1.15.0)
元数据
常见问题
Ssh Remote Sanitized 是什么?
SSH 远程服务器管理工具。支持多服务器连接管理、命令执行、文件传输、系统监控、服务管理、日志分析、安全检查等功能,适用于 Linux/Unix 服务器运维。 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 293 次。
如何安装 Ssh Remote Sanitized?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install ssh-remote-sanitized」即可一键安装,无需额外配置。
Ssh Remote Sanitized 是免费的吗?
是的,Ssh Remote Sanitized 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
Ssh Remote Sanitized 支持哪些平台?
Ssh Remote Sanitized 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Ssh Remote Sanitized?
由 myroboskill.com(@nickliang)开发并维护,当前版本 v1.0.0。
推荐 Skills