← 返回 Skills 市场
tenlifejosh

Steward Ops — World-Class AI Chief of Staff System

作者 tenlifejosh · GitHub ↗ · v1.0.0 · MIT-0
cross-platform ⚠ suspicious
103
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install steward-ops
功能描述
World-class autonomous admin, personal ops, chief-of-staff skill system. Use ANY time user asks to triage email, manage inbox, track deadlines, monitor renew...
安全使用建议
This skill is 'suspicious' because its instructions expect many local CLIs, a specific user's home-path workspace, and access to platform/account data, yet the registry declares no required binaries or credentials. Before installing or enabling it, consider: 1) Ask the author for clarification: what binaries and credentials are required, and why are there user-specific paths? 2) Do not run it with autopilot/autonomous invocation until you verify it — test in an isolated sandbox container or VM that has no access to your real accounts or home directory. 3) If you want similar functionality, prefer skills that explicitly declare required binaries and credentials (and limit them to the minimum necessary), or provide credentials with least privilege and separate test accounts. 4) Inspect and, if possible, audit any runtime commands the skill would run; remove or adapt hard-coded absolute paths. 5) If you lack confidence in the author or cannot sandbox, do not enable the skill for autonomous use and avoid granting access to production credentials or personal email accounts.
功能分析
Type: OpenClaw Skill Name: steward-ops Version: 1.0.0 The steward-ops skill bundle is a highly sophisticated administrative 'Chief of Staff' system designed to manage a user's entire operational life, including email triage, financial monitoring, and platform session management. While the intent appears benign and includes robust 'Approval Tier' protocols (in COMPANY-INTEGRATION.md) to prevent unauthorized actions like sending or deleting emails, the bundle exhibits high-risk behaviors. Specifically, it uses CLI tools (himalaya, agentreach) to access sensitive data and contains hardcoded local file paths (e.g., /Users/oliverhutchins1/ in COMPANY-INTEGRATION.md), suggesting it is a specific user's configuration rather than a generalized skill. These risky capabilities, although plausibly needed for the stated purpose, meet the threshold for a suspicious classification.
能力评估
Purpose & Capability
The skill claims to be a Chief-of-Staff ops system (triage email, track renewals, monitor platforms) but its instructions call out numerous external/local tools and paths (e.g., himalaya, agentreach in a user-specific virtualenv, openclaw cron) that are not declared in the metadata. The skill package declares no required binaries or credentials yet expects access to email inboxes, billing notices, platform sessions (Stripe, OpenAI, KDP, Etsy, etc.). This is disproportionate and suggests the skill was written for a specific user environment rather than a general-purpose skill.
Instruction Scope
SKILL.md and the reference files instruct the agent to run concrete shell commands and access specific local filesystem locations (for example: cd /Users/oliverhutchins1/.openclaw/... && .venv/bin/agentreach status, himalaya -a hutch list, openclaw cron list). They also mandate aggressive triggering and broad data collection (triage across accounts, billing/emails, session statuses). Those instructions go beyond passive guidance and direct the agent to interact with local tools, user-specific workspaces, and account data — actions that can access sensitive secrets or PII. The instructions are not limited by declared requirements, and the agent is given broad discretion ('Trigger aggressively'), which increases risk.
Install Mechanism
There is no install spec and no code files beyond instruction/reference docs (instruction-only), which lowers risk from arbitrary remote code installation. However, the runtime instructions rely on many external CLIs and a project virtualenv. The lack of an install step means the skill assumes those binaries and environments already exist; that assumption is undocumented and fragile, and could cause the agent to attempt commands that fail or behave unpredictably.
Credentials
The skill metadata declares no required environment variables or credentials, but the content repeatedly references services that normally require credentials (OpenAI, Anthropic, Stripe, Google/Google Workspace, Etsy, KDP, Reddit, AgentReach, etc.) and expects the agent to check billing emails and sessions. Asking the agent to monitor or act on these resources without declaring or describing the necessary credentials is incoherent. The references to a specific user home directory further imply access to that user's credentials/configs (e.g., .openclaw workspace), which is disproportionate to a generic skill and may expose other agents' or users' secrets if executed.
Persistence & Privilege
The skill is not marked always:true (good) but its operational mandate is broad and 'auto' Tier 1 behaviors are encouraged (aggressive triggering, automatic daily briefs, session renewals when AgentReach handles it). Because it directs local commands and workspace inspection, an autonomously-invoked agent using this skill could read local state and run tools on the host. That combination — autonomy + instructions that touch user-specific filesystem and account tooling — increases the blast radius and warrants caution.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install steward-ops
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /steward-ops 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Complete admin and personal ops skill system. 14 domain references covering inbox triage, calendar management, deadline tracking, reminder systems, task capture, daily briefings, financial ops, document management, personal-business crossover, escalation protocols, account monitoring, vendor management, audit/compliance, and SOP workflows.
元数据
Slug steward-ops
版本 1.0.0
许可证 MIT-0
累计安装 0
当前安装数 0
历史版本数 1
常见问题

Steward Ops — World-Class AI Chief of Staff System 是什么?

World-class autonomous admin, personal ops, chief-of-staff skill system. Use ANY time user asks to triage email, manage inbox, track deadlines, monitor renew... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 103 次。

如何安装 Steward Ops — World-Class AI Chief of Staff System?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install steward-ops」即可一键安装,无需额外配置。

Steward Ops — World-Class AI Chief of Staff System 是免费的吗?

是的,Steward Ops — World-Class AI Chief of Staff System 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。

Steward Ops — World-Class AI Chief of Staff System 支持哪些平台?

Steward Ops — World-Class AI Chief of Staff System 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 Steward Ops — World-Class AI Chief of Staff System?

由 tenlifejosh(@tenlifejosh)开发并维护,当前版本 v1.0.0。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191113 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论