← 返回 Skills 市场
nitsujy

Todolist Md Clawdbot Copy

作者 NitsujY · GitHub ↗ · v1.0.0
cross-platform ⚠ suspicious
677
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install todolist-md-clawdbot-copy
功能描述
Read, summarize, propose edits, and write back changes to Markdown todo files using line-stable bot markers without altering task identity or completing tasks.
安全使用建议
This skill contains functioning Drive integration code but the package metadata claims no required credentials or config paths — that mismatch is a red flag. Before installing or running: 1) Inspect and confirm you trust the code; it's safe-looking but will store OAuth refresh tokens and read secret env files by default under /root/clawd/.secrets. 2) Do not run it on a machine with sensitive root secrets; prefer an isolated container or VM. 3) Supply the minimal credential possible (short-lived ACCESS_TOKEN) instead of giving CLIENT_ID/CLIENT_SECRET/REFRESH_TOKEN if you can. 4) If you must use managed OAuth, change the default refresh token path to a directory you control and ensure file permissions are restrictive. 5) Be aware the scripts call sudo and expect a gog CLI — verify the gog binary path and that using sudo -u ubuntu is acceptable in your environment. 6) Ask the skill author to update registry metadata to list required env vars/config paths and to document exactly where tokens are written and how to opt out of persistent storage. If you cannot confirm these fixes, treat the skill as risky and run only in an isolated environment.
功能分析
Type: OpenClaw Skill Name: Developer: Version: Description: OpenClaw Agent Skill The skill bundle is classified as suspicious due to the explicit use of `sudo -u ubuntu -H env ... gog ...` for external command execution in `scripts/todolist_drive_folder_agent.mjs` and `scripts/todolist_review_drive.py`. While this capability is presented as necessary for interacting with Google Drive via the `gog` CLI, it grants the AI agent the ability to execute arbitrary commands as the `ubuntu` user. This creates a significant Remote Code Execution (RCE) vulnerability, as a malicious prompt could potentially trick the agent into constructing and executing harmful commands, even if the arguments are passed as an array to `execFileSync`/`subprocess.check_output`. This high-risk capability, despite the benign stated purpose, elevates the classification to suspicious rather than benign.
能力评估
Purpose & Capability
The skill's stated purpose (read/update Markdown todo files) matches the included scripts: they implement a Google Drive-backed workflow (list, download, update files, revision gating). However the registry metadata declared no required env vars/config paths, which is incorrect: the scripts clearly require Drive auth (ACCESS_TOKEN or CLIENT_ID/CLIENT_SECRET/REFRESH_TOKEN) and a gog CLI for folder listing. The absence of declared credentials/config requirements is an incoherence.
Instruction Scope
SKILL.md stays mostly on-scope (detect changed files, extract open tasks, write bot-markers). But the runtime scripts go further: they read/write local secret files (default path /root/clawd/.secrets/todolist_drive_oauth.json and /root/clawd/.secrets/gog.env), run system commands via sudo to call a gog CLI, and expect env vars like CLIENT_ID, CLIENT_SECRET, REFRESH_TOKEN, ACCESS_TOKEN, GOG_ACCOUNT, GOG_KEYRING_PASSWORD. Those filesystem and sudo accesses are not documented in the registry requirements and expand the agent's runtime scope beyond what's advertised.
Install Mechanism
No install spec (instruction-only) — that's low risk from an installer perspective. There are no downloads from arbitrary URLs. However the included scripts will invoke local binaries (gog and sudo) and call external OAuth/Drive endpoints. The scripts rely on existing host tooling and will execute child processes (execFileSync / subprocess), which is expected for Drive integration but should be noted as an execution-time requirement.
Credentials
Registry lists no required environment variables or config paths, but the code expects and/or uses many secrets and paths: ACCESS_TOKEN, CLIENT_ID, CLIENT_SECRET, REFRESH_TOKEN, AUTH_CODE, REFRESH_TOKEN_FILE (default /root/clawd/.secrets/...), GOG_ACCOUNT, GOG_KEYRING_PASSWORD, GOG_BIN, and a gog.env file at /root/clawd/.secrets/gog.env. Asking for or writing persistent refresh tokens into /root is a privileged, persistent capability and is not proportionate to the registry's empty env declaration.
Persistence & Privilege
The skill does not set always:true (good), but it does persist long-lived credentials: managed-OAuth path writes a refresh_token JSON file by default to /root/clawd/.secrets/todolist_drive_oauth.json and reads a gog.env secret file from /root/clawd/.secrets. The code also invokes sudo -u ubuntu to run gog. These behaviors create persistent credentials on the host and require elevated/local access patterns that increase blast radius; they should be documented and restricted.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install todolist-md-clawdbot-copy
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /todolist-md-clawdbot-copy 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release of todolist-md-clawdbot. - Enables reading, summarizing, and editing Markdown todo files using stable bot comment markers (`<!-- bot: ... -->`). - Ensures task identities persist by only making line-stable edits. - Integrates with multiple storage backends (Google Drive, local folder, S3) and supports per-file enablement. - Only reviews files that have changed and writes back outcomes without marking tasks complete without user confirmation. - Provides helper scripts for Google Drive integration to automate detection and processing. - Introduces dedicated bot-comment sections for suggested tasks, summaries, and in-file Q&A.
元数据
Slug todolist-md-clawdbot-copy
版本 1.0.0
许可证
累计安装 0
当前安装数 0
历史版本数 1
常见问题

Todolist Md Clawdbot Copy 是什么?

Read, summarize, propose edits, and write back changes to Markdown todo files using line-stable bot markers without altering task identity or completing tasks. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 677 次。

如何安装 Todolist Md Clawdbot Copy?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install todolist-md-clawdbot-copy」即可一键安装,无需额外配置。

Todolist Md Clawdbot Copy 是免费的吗?

是的,Todolist Md Clawdbot Copy 完全免费(开源免费),可自由下载、安装和使用。

Todolist Md Clawdbot Copy 支持哪些平台?

Todolist Md Clawdbot Copy 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 Todolist Md Clawdbot Copy?

由 NitsujY(@nitsujy)开发并维护,当前版本 v1.0.0。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463942 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259883 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200739 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191401 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190375 · by oswalpalash

💬 留言讨论