← 返回 Skills 市场
Stdio Skill
作者
SafaTinaztepe
· GitHub ↗
· v1.0.0
1617
总下载
1
收藏
12
当前安装
1
版本数
在 OpenClaw 中安装
/install stdio-skill
功能描述
Stdin/stdout file inbox/outbox bridge for passing files to/from Clawdbot using an MCP stdio server. Use when you want a simple filesystem-backed dropbox: accept files into an inbox, move to tmp for processing, and emit deliverables to an outbox (or a specified path).
安全使用建议
This skill largely does what it says — a tiny MCP stdio server that reads/writes files under repo/stdio. Before installing or running it:
- Expect to need Node.js (the script is a Node program) and probably the 'mcporter' helper referenced in SKILL.md; the skill metadata didn't declare these.
- The stdio_paths tool returns absolute paths including the repository root; that leaks filesystem layout. If you don't want that disclosed, remove or modify that tool.
- The implementation does not prevent symlink escapes: a symlink placed inside a box could cause reads/writes to operate on files outside stdio/. If you plan to run this in an environment with untrusted users dropping files, run it in a sandbox / with a dedicated, minimal-permission account, or ensure boxes are on a filesystem that disallows/filters symlinks.
- Run the script in an isolated repository or container and review/modify server.js if you need stricter guarantees (e.g., never returning ROOT, lstat checks to forbid symlinks, or using openat-like APIs where available).
- If you need a production-grade dropbox, prefer a thoroughly audited implementation; this one is simple and convenient but has the above operational caveats.
功能分析
Type: OpenClaw Skill
Name: stdio-skill
Version: 1.0.0
The skill provides a filesystem-backed inbox/outbox mechanism, which inherently involves file system access. However, the `scripts/server.js` implementation includes robust path traversal prevention (`safeName`, `resolveInBox`) and strictly confines all file operations (read, write, move, delete) to the `stdio/{inbox,outbox,tmp}` directories within the skill's workspace. The `SKILL.md` explicitly states these safety measures, and there are no signs of prompt injection, data exfiltration, or malicious execution. The `stdio_paths` tool provides limited information disclosure of the skill's internal directory structure, but this is contained and does not bypass the strong security controls.
能力评估
Purpose & Capability
The code implements a filesystem-backed inbox/tmp/outbox as described. However the SKILL.md and metadata do not declare that this is a Node.js program or that a CLI helper (mcporter) is expected. The package expects to be run with Node (shebang) and SKILL.md shows commands using 'mcporter', so the manifest's 'required binaries: none' is incorrect.
Instruction Scope
The runtime instructions and tool methods stay within the stated domain (list/read/write/move/delete within stdio/{inbox,tmp,outbox}). BUT the 'stdio_paths' tool returns the resolved ROOT (repo root) and the absolute box paths, which leaks repository filesystem layout. Also the implementation follows symlinks: if a file in a box is a symlink that points outside the box, read/write/rename operations will follow it, meaning the claim 'operations are restricted to the three directories above' is not strictly enforced against symlink-based escapes.
Install Mechanism
There is no install spec (instruction-only), which is low-risk. However the skill includes an executable Node script and SKILL.md implies use of 'mcporter' — both are runtime requirements that are not declared. Consumers must have Node.js (and likely mcporter) available to run the server.
Credentials
The skill does not request environment variables, secrets, or config paths. The requested permissions are limited to creating/using stdio/{inbox,tmp,outbox} under the repository root.
Persistence & Privilege
always:false and no claims to modify other skills or global agent settings. The server creates and uses only repo-local directories and does not request persistent privileged presence beyond that.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install stdio-skill - 安装完成后,直接呼叫该 Skill 的名称或使用
/stdio-skill触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release providing a simple filesystem-backed inbox/outbox bridge for passing files via stdin/stdout with an MCP stdio server.
- Supports workspace-relative inbox, outbox, and tmp directories for file management.
- Basic tools included: list, read (base64), move, and write (base64) files.
- Safe-by-default: operations restricted to defined directories, no file format interpretation.
- Tailored for straightforward, local file dropbox workflows—prefer moves/paths for large files.
元数据
常见问题
Stdio Skill 是什么?
Stdin/stdout file inbox/outbox bridge for passing files to/from Clawdbot using an MCP stdio server. Use when you want a simple filesystem-backed dropbox: accept files into an inbox, move to tmp for processing, and emit deliverables to an outbox (or a specified path). 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 1617 次。
如何安装 Stdio Skill?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install stdio-skill」即可一键安装,无需额外配置。
Stdio Skill 是免费的吗?
是的,Stdio Skill 完全免费(开源免费),可自由下载、安装和使用。
Stdio Skill 支持哪些平台?
Stdio Skill 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Stdio Skill?
由 SafaTinaztepe(@safatinaztepe)开发并维护,当前版本 v1.0.0。
推荐 Skills