← 返回 Skills 市场
1387
总下载
0
收藏
2
当前安装
1
版本数
在 OpenClaw 中安装
/install wikijs
功能描述
Command-line tool to manage Wiki.js content, pages, assets, templates, and backups via its GraphQL API with search, update, sync, and analysis functions.
安全使用建议
This package appears to be a genuine Wiki.js CLI: it expects a config file at ~/.config/wikijs.json containing your wiki URL and an API token and will use that token to call your Wiki.js instance. Before installing or supplying credentials, do the following: 1) Verify the upstream source — the registry metadata lacks a homepage but package.json points to a GitHub repo; confirm that repo and maintainer are trustworthy. 2) Inspect package.json and node dependencies (npm install will fetch them). 3) Review the config file contents you will place at ~/.config/wikijs.json and ensure the API token has minimal permissions needed (avoid using a full-admin token if possible). 4) Be aware the CLI will create cache (~/.cache/wikijs-cli) and may write backups to configured directories — pick safe locations. 5) If you need stronger isolation, run npm install and the CLI in a disposable environment/container or on a machine account with limited privileges. The main inconsistency is that the skill metadata did not declare the required config path/credential; if that matters for your risk posture, ask the publisher to update metadata or provide a signed, canonical upstream release link before installing.
功能分析
Type: OpenClaw Skill
Name: wikijs
Version: 1.4.0
The OpenClaw AgentSkills skill bundle for Wiki.js CLI is classified as benign. All observed file system and network access capabilities are directly aligned with the stated purpose of managing Wiki.js content and assets. Crucially, the `lib/api.js` file implements robust input sanitization (`sanitizeString`, `validateId`, `validatePath`) to prevent GraphQL injection and ensure safe handling of user-supplied data. No evidence of intentional harmful behavior, such as data exfiltration to unauthorized endpoints, persistence mechanisms, or prompt injection against the AI agent, was found in the code or documentation (`SKILL.md`, `README.md`). Dependencies listed in `package.json` are standard for a Node.js CLI application.
能力评估
Purpose & Capability
The package files, SKILL.md, and code implement a Wiki.js GraphQL CLI (list/create/update/delete, assets, backup/sync, etc.), which is coherent with the skill name. However the skill metadata provided no description/homepage while package.json claims a GitHub homepage — a minor mismatch in source metadata.
Instruction Scope
SKILL.md explicitly instructs installing via npm, creating a config at ~/.config/wikijs.json with url and apiToken, and using commands. Runtime instructions and code operate on that config and the Wiki.js API only; there are no instructions to read unrelated system files or send data to unexpected endpoints.
Install Mechanism
There is no platform install spec, but the repo includes package.json and SKILL.md instructs `npm install && npm link`. That is consistent with a JS CLI distributed via source. This is moderately risky compared to an instruction-only skill with no code, because running npm install pulls third-party packages onto disk — review dependencies before installing.
Credentials
Registry metadata declared no required config paths or credentials, but the code requires and reads a config file at ~/.config/wikijs.json that must contain the Wiki.js url and an apiToken. The CLI will also write cache (~/.cache/wikijs-cli) and may write backups to configured paths. The missing declaration of the config path / secret is an inconsistency that affects security decisions: the skill will have access to an API token stored on disk that was not declared in metadata.
Persistence & Privilege
The skill does not request always:true and does not modify other skills or system settings. It does write cache files and can create backups in configured directories (per SKILL.md and code), which is expected for a CLI but means it will persist data on the host filesystem under user-owned paths.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install wikijs - 安装完成后,直接呼叫该 Skill 的名称或使用
/wikijs触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.4.0
Wiki.js Skill v1.4.0 adds a comprehensive CLI for managing Wiki.js via the GraphQL API.
- Introduces over 40 CLI commands for reading, writing, tagging, backup, versioning, and analysis of wiki content.
- Adds bulk operations, asset management, templates, spellcheck, link checking, markdown linting, and duplicate/orphan page detection.
- Supports page hierarchy display, content replacement, page cloning, and interactive shell or watch modes.
- Includes extensive configuration options for API access, output formats, rate limiting, color, debugging, and confirmations.
- Offers detailed examples and integration notes for streamlined scripting and automation.
元数据
常见问题
Wiki.js CLI 是什么?
Command-line tool to manage Wiki.js content, pages, assets, templates, and backups via its GraphQL API with search, update, sync, and analysis functions. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 1387 次。
如何安装 Wiki.js CLI?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install wikijs」即可一键安装,无需额外配置。
Wiki.js CLI 是免费的吗?
是的,Wiki.js CLI 完全免费(开源免费),可自由下载、安装和使用。
Wiki.js CLI 支持哪些平台?
Wiki.js CLI 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Wiki.js CLI?
由 hopyky(@hopyky)开发并维护,当前版本 v1.4.0。
推荐 Skills