← 返回 Skills 市场
620
总下载
0
收藏
0
当前安装
2
版本数
在 OpenClaw 中安装
/install tool-master
功能描述
工具使用大师 - 基于关键词映射表的实用工具查找系统
安全使用建议
This skill is a keyword→command helper and is internally consistent, but it encourages executing system, network, and OpenClaw admin commands. Before installing: 1) Review tool_keyword_map.md and remove or sandbox any destructive or admin commands (rm -rf, chown, gateway/skills install/uninstall, dd, direct network downloads). 2) Configure the agent so the skill is user-invocable only (disable self-driven/autonomous runs) or require explicit, auditable confirmation before executing any command that modifies system state or uses network. 3) Run the skill in a restricted environment (container or VM) if you plan to let it execute commands. 4) If you accept it, add safeguards: whitelist safe commands, log all executions, and prevent access to sensitive paths (e.g., ~/.openclaw, /etc, home directories) or credential stores. If you want a lower-risk alternative, use the skill only to suggest commands and require the human to copy-and-run them manually.
功能分析
Type: OpenClaw Skill
Name: tool-master
Version: 0.1.1
The bundle defines a 'Tool Master' system that encourages an AI agent to autonomously find and execute a wide array of system commands and Python snippets based on a keyword mapping table (tool_keyword_map.md). While the stated intent is productivity, the bundle provides the agent with high-risk capabilities including network exfiltration tools (curl, wget, python-requests), system configuration access (openclaw config), and process manipulation (kill), without providing the actual implementation scripts (quick_find.sh, tool_finder.sh) for security review. The 'Self-driven workflow' instructions in SKILL.md increase the risk of the agent performing unauthorized actions or being leveraged for 'living off the land' attacks if influenced by malicious user prompts.
能力评估
Purpose & Capability
The name/description (tool lookup by keyword) matches the provided mapping and runtime instructions: the skill is essentially a searchable mapping of keywords → commands and guidance to run them. However, the mapping contains system-modifying and admin-level commands (rm, chown, kill, openclaw gateway start/stop, openclaw skills install/uninstall, network downloads via curl/wget) that are beyond simple read-only lookups. Those entries are explainable for a tool-runner, but they increase the risk surface and may be more powerful than a casual 'search-and-suggest' helper.
Instruction Scope
SKILL.md explicitly instructs the agent to execute selected commands and even describes self-driven and preventative maintenance modes where the agent should 'use tools' and 'execute' actions automatically. It references concrete system paths (example: ~/.openclaw/workspace) and includes execution actions (copy to clipboard, execute with -e flag). While the SKILL.md warns that dangerous commands 'need user confirmation,' it does not enforce or define how confirmations occur, and some modes imply autonomous execution without clear guardrails. This broad runtime scope (reading local files, running network/download commands, performing system administration) is higher risk than a pure suggestion-only skill.
Install Mechanism
Instruction-only skill with no install spec, no downloads, and no additional dependencies. Nothing is written to disk by an installer — lowest install risk.
Credentials
The skill requests no credentials or environment variables, which is proportional. However, the mapping contains commands that access system state and network endpoints (curl/wget, openclaw config/backup/skills management) and examples reference user-specific paths (e.g., ~/.openclaw/workspace). The skill does not declare or constrain access to those paths or explain required privileges, which is an omission the user should be aware of.
Persistence & Privilege
always:false (good) and the skill is not forced-installed. But the SKILL.md promotes 'self-driven' and periodic maintenance modes and the skill allows autonomous agent invocation (platform default). Coupling autonomous invocation with instructions to run system/network/admin commands increases blast radius — especially entries that manage OpenClaw gateway/skills or perform network downloads. Consider restricting autonomous execution or requiring explicit confirmations for dangerous actions.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install tool-master - 安装完成后,直接呼叫该 Skill 的名称或使用
/tool-master触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v0.1.1
- Add more tools in tool_keyword_map.md
v0.1.0
tool-master 0.1.0 初始版本
- 发布基于关键词映射表的实用工具查找系统
- 提供 150+ 常用工具的关键词-命令映射表
- 支持快速查找 (quick_find.sh) 与高级筛选/排序/执行/复制 (tool_finder.sh) 脚本
- 明确工作流程(用户驱动/自我驱动/预防维护)与使用范例
- 提供关键词提取和维护扩展指南
- 突出工具优先的思维方式与用户效率提升
元数据
常见问题
Tool Master 是什么?
工具使用大师 - 基于关键词映射表的实用工具查找系统. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 620 次。
如何安装 Tool Master?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install tool-master」即可一键安装,无需额外配置。
Tool Master 是免费的吗?
是的,Tool Master 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
Tool Master 支持哪些平台?
Tool Master 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Tool Master?
由 Iamwangli(@iamwangli)开发并维护,当前版本 v0.1.1。
推荐 Skills