← 返回 Skills 市场
VPS Agent Migration
作者
sparkingskin-tech
· GitHub ↗
· v1.0.0
437
总下载
0
收藏
2
当前安装
1
版本数
在 OpenClaw 中安装
/install vps-agent-migration
功能描述
将本地 OpenClaw 子 Agent 迁移到 VPS 上运行。包括:rsync 复制文件、配置 Discord Bot、添加 bindings 路由、禁用本地账号避免冲突。使用场景:当需要将本地的 creative/dev/qa/strategist/pojun 等子 Agent 迁移到远程 VPS 时使用此...
安全使用建议
This skill appears to perform a legitimate agent migration, but it asks you (via its instructions) to handle highly sensitive secrets and to use insecure patterns. Before using it:
- Understand the sensitive files involved: ~/.openclaw/openclaw.json contains Discord bot tokens and should be treated as secret.
- Avoid sshpass/plaintext passwords: prefer SSH key-based auth (disable password login on the VPS if possible). Passing passwords on the command line exposes them to shell history and process listings.
- Do not paste tokens into single-line remote commands if you can avoid it; instead transfer files over an encrypted channel with correct permissions, or edit configs interactively on the VPS.
- Back up both local and remote openclaw.json before modifying. Verify file ownership and permissions after copying (restrict to the service user/root).
- After migration, rotate any tokens you moved (generate a new Discord bot token) to limit exposure if the transfer was observed.
- The skill manifest did not declare that it needs access to config paths or secrets — treat that omission as a red flag and confirm manually what will be read/changed before running any steps.
If you’re not comfortable handling tokens and root credentials directly, consider doing the migration interactively (SSH in, run commands with care) or hiring an administrator to perform the steps securely.
功能分析
Type: OpenClaw Skill
Name: vps-agent-migration
Version: 1.0.0
The skill is classified as suspicious due to multiple severe vulnerabilities, primarily a critical Remote Code Execution (RCE) risk in `SKILL.md` (Step 3). The Python script executed on the remote VPS directly interpolates the `[Token]` placeholder into a string that is then executed, allowing for arbitrary Python code injection if a malicious token is provided. Additionally, the skill uses `sshpass` with plaintext passwords and disables `StrictHostKeyChecking`, exposing credentials and enabling potential Man-in-the-Middle attacks. Various other placeholders (`[agent名]`, `[Discord_ID]`, `[agentId]`) are directly inserted into shell commands without apparent sanitization, creating further shell injection vulnerabilities on both local and remote systems.
能力评估
Purpose & Capability
The skill's described purpose (migrating a local sub-Agent to a VPS) aligns with the actions in SKILL.md (rsync files, update bindings, restart gateways). However the registry metadata declares no required config paths or credentials while the instructions explicitly require reading ~/.openclaw/openclaw.json and root SSH access on the VPS. This mismatch (declaring no sensitive inputs while instructing access to them) is incoherent and increases risk.
Instruction Scope
The SKILL.md tells the operator to read local openclaw.json to extract Discord bot tokens, run rsync to copy agent workspaces, and run remote commands that write tokens into /root/.openclaw/openclaw.json. It also recommends using sshpass with a plaintext password embedded in commands. These instructions access and move sensitive secrets (Discord tokens, root password) and instruct patterns (passwords on command line, token insertion in one-liners) that expose secrets to shell history and process lists; this is beyond simple file-copy scope and is risky.
Install Mechanism
This is an instruction-only skill with no install spec and no code files — there is nothing being downloaded or written by the skill itself. That minimizes installer risk.
Credentials
Although the manifest lists no required environment variables or config paths, the runtime instructions require access to highly sensitive items: the user's ~/.openclaw/openclaw.json (which contains Discord bot tokens) and the VPS root account/password. Requesting and moving these secrets is necessary for migration, but the omission from the declared requirements is a notable inconsistency and the requested handling (plaintext passwords, direct token copy) is disproportionate from a security-best-practices perspective.
Persistence & Privilege
The skill does not request always: true or persistent privileges. However the migration process as documented expects root-level changes on the VPS (editing /root/.openclaw/openclaw.json, restarting gateway) which legitimately require elevated privileges; running such steps increases impact if misused, but the skill does not itself request permanent agent presence or special platform privileges.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install vps-agent-migration - 安装完成后,直接呼叫该 Skill 的名称或使用
/vps-agent-migration触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release - 迁移 OpenClaw 子 Agent 到 VPS
元数据
常见问题
VPS Agent Migration 是什么?
将本地 OpenClaw 子 Agent 迁移到 VPS 上运行。包括:rsync 复制文件、配置 Discord Bot、添加 bindings 路由、禁用本地账号避免冲突。使用场景:当需要将本地的 creative/dev/qa/strategist/pojun 等子 Agent 迁移到远程 VPS 时使用此... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 437 次。
如何安装 VPS Agent Migration?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install vps-agent-migration」即可一键安装,无需额外配置。
VPS Agent Migration 是免费的吗?
是的,VPS Agent Migration 完全免费(开源免费),可自由下载、安装和使用。
VPS Agent Migration 支持哪些平台?
VPS Agent Migration 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 VPS Agent Migration?
由 sparkingskin-tech(@sparkingskin-tech)开发并维护,当前版本 v1.0.0。
推荐 Skills