← 返回 Skills 市场
mbojer

Sysclaw Ops

作者 Morten Bojer · GitHub ↗ · v1.6.2 · MIT-0
cross-platform ⚠ suspicious
233
总下载
0
收藏
0
当前安装
9
版本数
在 OpenClaw 中安装
/install sysclaw-ops
功能描述
SysClaw operator skill for processing agent requests and managing the cross-agent communication system. Use when SysClaw needs to check for pending agent req...
安全使用建议
Do not enable this skill in production until you confirm the missing pieces and harden privileges. Specific checks: (1) Ask the publisher why registry metadata declares no required env vars while SKILL.md requires DB creds and a Telegram token. (2) Require a dedicated DB role with the minimal GRANTS listed, verify those grants in your DB, and ensure the role cannot run arbitrary SQL beyond the intended updates. (3) Confirm how SSH/command execution is performed — prefer ephemeral jump-host sessions or human-approved runbooks rather than automatic execution based on DB payloads. (4) Require OpenClaw cron job creation to be approved by an operator and limit its session capabilities. (5) Verify secure storage/rotation of the Telegram token and that escalations require human approval for high-risk actions. (6) Ask for the concrete implementation (code or agent session policy) to audit parameterized queries, input validation (avoid executing commands derived from untrusted payloads), and logging/immutable audit trails. The presence of leftover 'virus' strings and metadata mismatches is a quality signal — request publisher clarification before trusting the skill.
功能分析
Type: OpenClaw Skill Name: sysclaw-ops Version: 1.6.2 The sysclaw-ops skill implements a centralized management system where an agent processes requests to execute high-privilege actions, such as SSH commands and software deployments, across a network. This architecture is inherently risky as it creates a single point of failure for remote code execution and lateral movement. Notably, references/db-schema.md and CHANGELOG.md reveal the use of 'virus' as a synonym for the human operator; the fact that these references remain in the schema despite changelog claims of their removal suggests either deceptive documentation or significant oversight in a high-privilege tool.
能力评估
Purpose & Capability
The skill's stated purpose (server-side SysClaw operator) reasonably requires DB credentials and a Telegram token; the SKILL.md explicitly lists SYSCLAW_DB_* and a Telegram bot token. However the registry metadata declares no required env vars or primary credential — a clear mismatch. The SKILL.md also describes capabilities beyond simple notification handling (executing approved requests such as installs, config edits, restarts) that imply SSH or elevated system privileges; those access needs are not declared in the registry.
Instruction Scope
SKILL.md instructs the agent to read/write multiple DB tables, process verdicts, write security assessments, and (when approving requests) execute actions on infrastructure. It assumes the agent session has access to SSH and DB tools and describes creating an OpenClaw cron job. This grants the runtime the ability to execute arbitrary commands on hosts based on DB records/payloads — a high-impact operation. The docs also contain inconsistent terminology (resolvers/escalation fields referencing 'virus' in places), suggesting sloppy editing and potential hidden assumptions.
Install Mechanism
Instruction-only skill with no install spec and no code files reduces surface area for supply-chain installs. No downloads or package installs are requested by the skill itself.
Credentials
SKILL.md requests a full set of DB credentials (host, port, db name, user, password) and a Telegram token; it also requires DB privileges that include UPDATE on verdict/status columns and INSERT on notifications — significant write privileges. The registry metadata, however, lists no required env vars, so callers would not be warned about providing these secrets. The SKILL.md also implies need for SSH/session access but does not declare how keys/credentials are supplied or limited. The combination (DB write + potential remote command execution + messaging token) is high privilege and should be justified and constrained.
Persistence & Privilege
always:false (normal), but the skill documents creating an OpenClaw cron job that will run periodically with access to DB and SSH tools. Periodic autonomous runs plus broad execution power increases blast radius even though 'always' isn't set. Verify who can create/approve such cron jobs and whether the cron job will run with least privilege.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install sysclaw-ops
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /sysclaw-ops 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.6.2
Added reference link to db-schema.md in SKILL.md
v1.6.1
Fixed 'virus' terminology in db-schema.md, removed orphaned line in SKILL.md, added SQL pattern note, added CHANGELOG.md
v1.6.0
v1.6.0: Simplified execution model. SysClaw executes all approved requests - agents only ask because they can't do it themselves. Removed hybrid/agent-executed model.
v1.5.0
v1.5.0: Added worklog table for tracking executed actions. Added hybrid execution workflow - SysClaw executes info/software/service requests, agents execute config on their own machines. Added execution guidelines by request type.
v1.4.0
v1.4.0: Added SysClaw escalation handling section documenting heartbeat-based escalation to human operator.
v1.3.0
v1.3.0: Clarified Telegram escalation is manual (SysClaw handles it, not cron job). Cron job only flags requests as escalated.
v1.2.0
v1.2.0: Replaced operator name with generic 'human operator' for portability.
v1.1.0
v1.1.0: Added declared credentials with minimal privileges, clarified OpenClaw cron job (not a system binary), explained Telegram escalation via OpenClaw delivery, added security considerations section, explained Virus role, added installation documentation.
v1.0.0
v1.0.0: Server-side operations for cross-agent communication. Processing workflow, decision guidelines, DB schema reference, notification management. Split from sysclaw-reporting.
元数据
Slug sysclaw-ops
版本 1.6.2
许可证 MIT-0
累计安装 0
当前安装数 0
历史版本数 9
常见问题

Sysclaw Ops 是什么?

SysClaw operator skill for processing agent requests and managing the cross-agent communication system. Use when SysClaw needs to check for pending agent req... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 233 次。

如何安装 Sysclaw Ops?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install sysclaw-ops」即可一键安装,无需额外配置。

Sysclaw Ops 是免费的吗?

是的,Sysclaw Ops 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。

Sysclaw Ops 支持哪些平台?

Sysclaw Ops 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 Sysclaw Ops?

由 Morten Bojer(@mbojer)开发并维护,当前版本 v1.6.2。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191113 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论