← 返回 Skills 市场
WhatPulse AI Agent Skill
作者
smitmartijn
· GitHub ↗
· v1.0.0
302
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install whatpulse-ai-agent-skill
功能描述
Query WhatPulse computer usage statistics using natural language. Keystrokes, mouse activity, application screen time, network bandwidth, website tracking, u...
安全使用建议
This skill will read your WhatPulse database and can reveal very sensitive personal telemetry (keystrokes, websites visited, app usage, uptime). Before installing: (1) Review SKILL.md so you understand what SQL queries the agent will run and ensure sqlite3 is present. (2) Do NOT set WHATPULSE_DB to a path that exposes your DB to remote machines or cloud storage unless you explicitly want that data off your device — the README’s 'Remote Access' instructions can lead to accidental data exfiltration. (3) If you run the agent on a remote host, expect the agent to be able to read the full DB at the path you expose. (4) Consider running the skill only locally or with a sanitized/cropped snapshot of the DB if you want to limit exposure. (5) Note the minor metadata mismatch: WHATPULSE_DB is used by the skill but not declared in the registry; treat that as an informational gap and verify env usage before trusting the skill.
功能分析
Type: OpenClaw Skill
Name: whatpulse-ai-agent-skill
Version: 1.0.0
The skill is designed to be benign, providing read-only access to a local SQLite database. The `SKILL.md` contains extensive and explicit 'CRITICAL SAFETY RULES' that instruct the AI agent to use `sqlite3 -readonly`, forbid all write operations (INSERT, UPDATE, DELETE, DROP, ALTER, CREATE, ATTACH, VACUUM, PRAGMA), and mandate a secure heredoc pattern for SQL execution to prevent shell injection. While the skill involves executing shell commands (`sqlite3`) and processing user input (`$ARGUMENTS`), the instructions are meticulously crafted to prevent malicious actions, data exfiltration, or persistence mechanisms. The instructions are defensive and aim to mitigate common vulnerabilities, not introduce them.
能力评估
Purpose & Capability
Name/description match the instructions: the skill only needs to read a local WhatPulse SQLite database and requires the sqlite3 CLI. Requiring sqlite3 is proportional and expected for this purpose.
Instruction Scope
SKILL.md explicitly instructs the agent to run sqlite3 in read-only mode and to return answers based on queries of the local DB — that stays within the stated purpose. However the README and SKILL.md include a 'Remote Access' section that instructs users how to snapshot/sync the DB to remote machines. That guidance encourages moving highly sensitive telemetry (keystrokes, websites, app usage) off the local machine, which increases risk. The SKILL.md also references environment variables (WHATPULSE_DB, LOCALAPPDATA, HOME) for locating the DB; WHATPULSE_DB is optional but referenced even though the registry metadata lists no env vars.
Install Mechanism
This is instruction-only with no install spec or code to download or execute beyond invoking the sqlite3 CLI. That is the lowest-risk install model and is proportionate for the described functionality.
Credentials
Registry metadata declares no required env vars, yet SKILL.md uses WHATPULSE_DB as an optional override and also references LOCALAPPDATA and HOME. The optional WHATPULSE_DB can be used to point the agent at a synced/remote DB; if a user sets this to a remote-mounted path or exposes a snapshot, the agent (especially if running remotely) can access all telemetry. No other unrelated credentials are requested, but the documentation’s instructions to create scheduled backups and sync via cloud storage materially increases the scope of data exposure.
Persistence & Privilege
always is false and there is no installation script that modifies agent-wide settings or other skills. The skill runs only when invoked and doesn't request elevated or persistent platform privileges.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install whatpulse-ai-agent-skill - 安装完成后,直接呼叫该 Skill 的名称或使用
/whatpulse-ai-agent-skill触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
WhatPulse AI Agent Skill 1.0.0 – Initial Release
- Query your local WhatPulse database for typing, mouse, application usage, uptime, network, and website activity via natural language prompts.
- Strictly enforces read-only, safe queries: all SQL is executed using sqlite3 -readonly with heredoc formatting to guarantee zero risk of data modification.
- Smart automatic database discovery: checks environment variables and platform-specific default WhatPulse database locations.
- Built-in reference for table schemas, key code decoding, and JOIN/query patterns for user-friendly answers.
- Supports trigger words for quick access to keystroke stats, mouse distance, bandwidth, screen time, and more.
- Detailed safety and formatting rules prevent any accidental writes or corruption of your data.
元数据
常见问题
WhatPulse AI Agent Skill 是什么?
Query WhatPulse computer usage statistics using natural language. Keystrokes, mouse activity, application screen time, network bandwidth, website tracking, u... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 302 次。
如何安装 WhatPulse AI Agent Skill?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install whatpulse-ai-agent-skill」即可一键安装,无需额外配置。
WhatPulse AI Agent Skill 是免费的吗?
是的,WhatPulse AI Agent Skill 完全免费(开源免费),可自由下载、安装和使用。
WhatPulse AI Agent Skill 支持哪些平台?
WhatPulse AI Agent Skill 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(macos, linux, windows)。
谁开发了 WhatPulse AI Agent Skill?
由 smitmartijn(@smitmartijn)开发并维护,当前版本 v1.0.0。
推荐 Skills