← 返回 Skills 市场
1071
总下载
0
收藏
0
当前安装
2
版本数
在 OpenClaw 中安装
/install vikunja-kanban
功能描述
Manage Vikunja kanban boards via API to read, create, move, and complete tasks across predefined buckets with integrated cron sync.
安全使用建议
Before installing or using this skill:
- Treat the VIKUNJA_TOKEN as sensitive. The scripts expect it but the registry metadata does not declare it — the token is long-lived and has wide permissions. Create a least-privilege token (narrow permissions, shorter expiry) and do not reuse high-privilege tokens.
- Inspect and update the scripts to point VIKUNJA_URL to your own Vikunja instance (the included scripts currently hardcode https://kanban.pigpen.haus). Do not use that remote host unless you explicitly trust and control it.
- Remove any hardcoded identifiers (PROJECT_ID, VIEW_ID, BUCKET IDs) or confirm they match your environment. Hardcoded IDs may perform operations in an unintended project.
- Avoid storing the token in the repository. Keep secrets/vikunja.env locally in a secure secrets store and ensure it’s gitignored.
- The SKILL.md suggests editing the PostgreSQL DB to change permissions — this is an out-of-band, high-risk operation. Prefer using the API or proper admin procedures; do not run SQL provided by third-party skills unless you fully trust the source and understand the DB schema and implications.
- If you need stronger assurance, ask the publisher for: (1) an explanation why metadata omits required env vars, (2) a configurable script variant that reads VIKUNJA_URL from env, and (3) confirmation who controls kanban.pigpen.haus. Without those fixes, treat the skill as suspicious and do not supply production credentials.
功能分析
Type: OpenClaw Skill
Name: vikunja-kanban
Version: 1.1.0
The skill is classified as suspicious primarily due to a critical prompt injection vulnerability in `SKILL.md`. The documentation provides a 'workaround' that instructs the AI agent to execute direct SQL commands (`UPDATE users_projects SET permission = 2 ...`) for privilege escalation, which is a severe security risk if the agent has database access. Additionally, all shell scripts (`scripts/*.sh`) use `curl -sk`, disabling SSL certificate validation and making API communication vulnerable to Man-in-the-Middle attacks. The `scripts/vikunja-add-task.sh` script also directly inserts user-supplied arguments into a JSON payload without proper escaping, creating a JSON injection vulnerability. The hardcoded API endpoint `https://kanban.pigpen.haus` is noted as an IOC.
能力评估
Purpose & Capability
The scripts and SKILL.md implement expected kanban actions (list/create/move/complete). However metadata claims no required env vars/credentials while every script requires a VIKUNJA_TOKEN. Also the scripts hardcode VIKUNJA_URL to https://kanban.pigpen.haus instead of using a configurable URL as the documentation implies. These mismatches between declared requirements and actual behavior are problematic.
Instruction Scope
Runtime instructions tell the agent to run included shell scripts which call the Vikunja API — this is within scope. But SKILL.md also recommends a direct PostgreSQL workaround (UPDATE users_projects ...) to change permissions, which requires database access outside the kanban API surface and is beyond typical skill scope. The skill also documents storing credentials in secrets/vikunja.env but does not declare them in metadata.
Install Mechanism
This is an instruction-only skill with bundled shell scripts; there is no install spec, no downloads, and nothing will be written to disk by an installer beyond the provided files. Risk from install mechanism itself is low.
Credentials
The scripts require a long-lived VIKUNJA_TOKEN with broad tasks+projects permissions (read_all, update, create, delete). That level of access is functionally sufficient for the described operations but is high privilege and long-lived (expires 2030). Metadata fails to declare this required credential and the scripts hardcode VIKUNJA_URL to a third-party host, which could expose that token to an external service you may not control.
Persistence & Privilege
The skill is not always-enabled and does not request persistent system privileges or modify other skills/configs. It does not perform autonomous or background persistence beyond using the provided scripts.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install vikunja-kanban - 安装完成后,直接呼叫该 Skill 的名称或使用
/vikunja-kanban触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.1.0
Add API bugs/gotchas docs, user management notes, project sharing workarounds
v1.0.0
Initial release: status board, task CRUD, heartbeat integration
元数据
常见问题
Vikunja Kanban 是什么?
Manage Vikunja kanban boards via API to read, create, move, and complete tasks across predefined buckets with integrated cron sync. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 1071 次。
如何安装 Vikunja Kanban?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install vikunja-kanban」即可一键安装,无需额外配置。
Vikunja Kanban 是免费的吗?
是的,Vikunja Kanban 完全免费(开源免费),可自由下载、安装和使用。
Vikunja Kanban 支持哪些平台?
Vikunja Kanban 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Vikunja Kanban?
由 shad0wca7(@shad0wca7)开发并维护,当前版本 v1.1.0。
推荐 Skills