← 返回 Skills 市场
VPS Bootstrap
作者
lolaopenclaw
· GitHub ↗
· v1.0.0
362
总下载
1
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install vps-bootstrap
功能描述
Bootstrap a fresh VPS from zero to a fully operational OpenClaw deployment, with backup/restore and post-recovery verification. Use when setting up OpenClaw...
安全使用建议
This script bundle appears to do what it says (system installs, OpenClaw install, backup/restore), but it will modify system configs and manage sensitive secrets. Before running: (1) review the scripts line-by-line — especially the curl | bash NodeSource step and the npm install -g openclaw; (2) back up existing ~/.gnupg, ~/.password-store, ~/.config/rclone and any keyrings because restore.sh can overwrite them; (3) remove or change the %no-protection flag in the GPG key params if you want a passphrase‑protected key; (4) run the bootstrap on a disposable/test VM first; (5) consider manually running the networked install commands after inspecting them rather than via the automated script; and (6) confirm you trust the source before allowing these high‑privilege operations.
功能分析
Type: OpenClaw Skill
Name: vps-bootstrap
Version: 1.0.0
The skill bundle is classified as suspicious due to several high-risk operations, despite their stated legitimate purpose. The `bootstrap.sh` script uses `curl -fsSL ... | sudo -E bash -` to install Node.js, which is a powerful pattern that executes arbitrary code with root privileges from a remote source, posing a supply chain risk if the source is compromised. Additionally, the `restore.sh` script performs extensive file system manipulation, copying potentially sensitive data (GPG keys, password store, `.env` files, OAuth credentials) from a user-provided backup to critical system locations. While intended for legitimate backup restoration, this capability could be abused if a malicious backup file is supplied, leading to potential system compromise or data corruption. No direct evidence of intentional malicious behavior (e.g., exfiltration to unauthorized endpoints, stealthy backdoors) was found, but these capabilities represent significant vulnerabilities.
能力评估
Purpose & Capability
The name/description match what the files do: install system packages, Node.js, Chrome, OpenClaw, configure firewall/fail2ban/SSH, enable gateway services, and provide backup/restore and verification. Required privileges (root/sudo) and target paths (~/.openclaw, /etc/ssh, /etc/fail2ban, /usr/local/bin) are consistent with a bootstrap/restore tool.
Instruction Scope
SKILL.md accurately describes the scripts, but the scripts perform broad system changes and handle secrets. Notable issues: bootstrap.sh generates a GPG key using %no-protection (creates an unencrypted private key), which weakens secret protection and contradicts the SKILL.md security claim. restore.sh will overwrite ~/.gnupg, ~/.password-store, rclone config, keyrings, and other credential files from the backup tarball — expected for a restore, but potentially destructive and sensitive. The scripts modify system SSH configuration and enable system services without finer-grained prompts. These behaviors expand the scope beyond a simple installer and require explicit user consent and backups of existing keys/configs.
Install Mechanism
There is no packaged install spec; the scripts perform network installs from recognizable hosts (nodesource setup script piped to bash, dl.google.com for Chrome, npm install -g openclaw). These are common for bootstrappers but piping a remote script into sudo bash is a moderate risk pattern — the NodeSource script is from an expected host, but running it without inspection can execute arbitrary code on the machine.
Credentials
The skill declares no required env vars or credentials, which matches the bundle. It requires sudo/root to perform system changes — appropriate for the task. However the scripts create and restore sensitive artifacts (GPG keys, password store, rclone config, keyrings, OAuth credentials) and will copy them into the user's home (potentially overwriting existing secrets). That handling of credentials is proportionate to backup/restore, but it's high sensitivity and should be treated with caution.
Persistence & Privilege
The skill does not request always:true and does not alter other skills. It does enable user linger and installs/enables an OpenClaw gateway service and hooks, and edits system services/configs (sshd_config, fail2ban, UFW), which are appropriate for a bootstrapper but are high‑privilege operations — ensure you run this only on a machine where those changes are acceptable.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install vps-bootstrap - 安装完成后,直接呼叫该 Skill 的名称或使用
/vps-bootstrap触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release: bootstrap.sh + restore.sh + verify.sh for full VPS deployment and disaster recovery
元数据
常见问题
VPS Bootstrap 是什么?
Bootstrap a fresh VPS from zero to a fully operational OpenClaw deployment, with backup/restore and post-recovery verification. Use when setting up OpenClaw... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 362 次。
如何安装 VPS Bootstrap?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install vps-bootstrap」即可一键安装,无需额外配置。
VPS Bootstrap 是免费的吗?
是的,VPS Bootstrap 完全免费(开源免费),可自由下载、安装和使用。
VPS Bootstrap 支持哪些平台?
VPS Bootstrap 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 VPS Bootstrap?
由 lolaopenclaw(@lolaopenclaw)开发并维护,当前版本 v1.0.0。
推荐 Skills