← 返回 Skills 市场
Travel Lobster
作者
Wenyu Yang
· GitHub ↗
· v1.5.0
438
总下载
1
收藏
3
当前安装
11
版本数
在 OpenClaw 中安装
/install travel-lobster
功能描述
Autonomous internet exploration skill. Your agent roams the web driven by its own curiosity, discovers interesting things, and sends illustrated "postcards"...
安全使用建议
This skill is internally coherent, but review and consider these practical points before installing:
- Cost & volume: The skill schedules repeated autonomous trips and documents per-postcard costs (~$0.03–0.06). At default intervals (60–180m) this can become continuous daily spend and many outbound messages. Adjust min/max intervals or run in test mode first.
- Local file access: setup.sh auto-reads IDENTITY.md, USER.md, and SOUL.md to personalize postcards and will create/write memory/travel-journal.md and a .travel-config in the skill dir. If those files contain sensitive info you don't want the skill to use or propagate to chat, remove or sanitize them first.
- API key usage: The skill requires OPENROUTER_API_KEY for image generation. Provide a key with usage limits or monitoring (do not reuse high-privilege keys) and be aware that the key will be used by gen_image.py to call openrouter.ai.
- Persistent scheduling: The skill uses openclaw cron to schedule runs and offers an optional watchdog cron entry. If you do not want long-running autonomous behavior, do not add the watchdog to system crontab and inspect cron jobs with 'openclaw cron list' before and after starting.
- Inspect the scripts: The included scripts are readable shell/Python files; review them (they are short) to confirm you are comfortable with their read/write paths and logging. The image client expects a particular response format from openrouter.ai (may fail if API returns different shape), but this is an operational bug risk, not a security mismatch.
- Testing recommendation: Run setup.sh and a single run of travel.sh pointing at a test/chat you control and with large min/max intervals (e.g., 1440–2880 minutes) to verify behavior, output files, and costs before enabling frequent autonomous runs.
If you accept these tradeoffs (personalization via local files, one external API key, and autonomous scheduling), the skill's requests and behavior are coherent with its stated purpose.
功能分析
Type: OpenClaw Skill
Name: travel-lobster
Version: 1.5.0
The 'travel-lobster' skill implements an autonomous, self-scheduling agent that browses the internet and maintains a persistent 'travel journal.' While the behavior is transparently documented and aligned with its stated purpose, it employs high-risk patterns including reading workspace identity files (IDENTITY.md, USER.md), autonomous web exploration, and a self-perpetuating loop where the agent is instructed to execute shell commands (scripts/travel.sh) via the platform's cron system. These capabilities create a significant attack surface for prompt injection from external web content, as the agent is directed to fetch web data and then perform shell-based scheduling. No evidence of intentional malice was found, but the autonomous shell execution and broad data access qualify it as suspicious.
能力评估
Purpose & Capability
Requested binaries (bash, python3, envsubst, openclaw) and the OPENROUTER_API_KEY align with the described behavior: openclaw schedules/launches agent sessions, python3 runs image generation, envsubst fills the prompt. No unrelated credentials or binaries are requested.
Instruction Scope
SKILL.md and references explicitly instruct the agent to read and edit a persistent journal in the workspace, to crawl publicly accessible websites (with an explicit forbid-list for private/internal IPs and authenticated services), generate images, and send messages to a chat. This is in-scope for the advertised persistent 'travel memory' feature, but it does mean the skill will read local workspace files (IDENTITY.md, USER.md, SOUL.md) and write memory/log files. The run loop also requires the agent to schedule its next run every trip (Step 7), which enforces persistent autonomous behavior.
Install Mechanism
There is no install spec (instruction-only + small scripts), so nothing is downloaded or installed by the registry. The included scripts are plain shell and Python files; no external archives or untrusted download URLs are used.
Credentials
Only one secret is declared: OPENROUTER_API_KEY (primaryEnv) for image generation via OpenRouter/Gemini Flash, which matches the image-generation step. The skill does read local workspace files (names/timezone/language) and writes journal/config files under the workspace/skill directory; that local file access is reasonable for personalization but may surface personal info from USER.md/IDENTITY.md. No other unrelated credentials are requested.
Persistence & Privilege
always:false and autonomous invocation are standard. However, the scripts implement a self-scheduling loop (openclaw cron add) and an optional watchdog to restart the loop via crontab; Step 7 requires scheduling the next run every trip. This yields persistent autonomous runs that can produce many messages and charges over time (costs are documented). The skill does not modify other skills' configs or request excessive system privileges.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install travel-lobster - 安装完成后,直接呼叫该 Skill 的名称或使用
/travel-lobster触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.5.0
Rich milestone system: 3-tier journey checkpoints (every 10 postcards: retrospective, every 25: knowledge map with themes/blind spots, every 50: grand expedition report with badges). Milestone postcards have dedicated journal format. Image filenames use postcard number for uniqueness.
v1.4.0
Comprehensive security documentation overhaul for Benign review: (1) Exact data access tables showing grep patterns used on workspace files, (2) Explicit enumeration of all data written and sent to external services, (3) Clear statement that agent sessions do NOT read identity files (only setup.sh does, once), (4) Honest limitation disclosure for prompt-level network restrictions, (5) Detailed autonomous scheduling section with cost implications and full control commands, (6) Recommended first-use steps for gradual trust building
v1.3.0
Security review response: declared openclaw CLI in required bins, updated default intervals to 60-180min with accurate cost estimates, expanded Persistence & Autonomous Scheduling section with explicit control instructions, clarified watchdog is optional and manually installed, improved Requirements table with all dependencies and notes
v1.2.0
Major reliability update: postcard numbering now computed by travel.sh (no more duplicates/gaps), unique image filenames per postcard, milestone retrospectives at every 10th postcard, strict journal entry format template, restored network restrictions in prompt
v1.1.0
Stable release. Fixed crontab PATH for both openclaw and node (nvm). Increased session timeout to 300s. Strengthened self-scheduling resilience. Full 13-point audit passed: syntax, security, env vars, permissions, error handling, PATH simulation, parameter validation. Cleaned runtime residuals.
v1.0.5
Robustness fixes: add PATH export for crontab compatibility (fixes openclaw command not found), increase session timeout 180s→300s, strengthen Step 7 prompt to always schedule next trip even on errors, recommend 15-min watchdog interval
v1.0.4
Fix registry env declaration: use metadata.clawdbot.requires.env format (matching Benign skills like tavily). Tighten prompt: replace open-ended web_fetch with explicit allowed/forbidden source list. Declare binary dependencies (bash, python3, envsubst).
v1.0.3
Transparency fix: rewrote Security section to accurately document all file reads (workspace identity files during setup), all file writes (journal, config, logs), and what is NOT accessed. Removed inaccurate claims. Clearly distinguished prompt-level vs technical network controls.
v1.0.2
Address security review: declared OPENROUTER_API_KEY in frontmatter env field, expanded Security section with detailed per-concern documentation covering credentials, network scope, file access, persistence, isolation, and recommended first-run steps
v1.0.1
Security fixes per ClawHub review: API key now only from OPENROUTER_API_KEY env var (no config file scanning), prompt restricts to public websites only, declared env var requirements in SKILL.md
v1.0.0
Initial release: autonomous internet exploration with illustrated postcards, persistent travel memory, knowledge graph, self-scheduling trips
元数据
常见问题
Travel Lobster 是什么?
Autonomous internet exploration skill. Your agent roams the web driven by its own curiosity, discovers interesting things, and sends illustrated "postcards"... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 438 次。
如何安装 Travel Lobster?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install travel-lobster」即可一键安装,无需额外配置。
Travel Lobster 是免费的吗?
是的,Travel Lobster 完全免费(开源免费),可自由下载、安装和使用。
Travel Lobster 支持哪些平台?
Travel Lobster 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Travel Lobster?
由 Wenyu Yang(@yangwenyu2)开发并维护,当前版本 v1.5.0。
推荐 Skills