← 返回 Skills 市场
488
总下载
0
收藏
0
当前安装
5
版本数
在 OpenClaw 中安装
/install xcloud-docker-deploy
功能描述
Deploy any project to xCloud hosting — auto-detects stack (WordPress, Laravel, PHP, Node.js, Next.js, NestJS, Python, Go, Rust), routes to native or Docker d...
安全使用建议
This skill appears coherent and focused on adapting docker-compose and producing GitHub Actions for xCloud. Before you use it: 1) Review any generated GitHub Actions workflow before committing — it will push images to GHCR and optionally call an xCloud webhook; ensure the webhook URL and any secrets are trustworthy. 2) Do not commit real secrets (.env) to the repo; the skill correctly advises generating .env.example and storing secrets in GitHub secrets or xCloud UI. 3) If you make GHCR packages public (required by xCloud), confirm you are comfortable with public images. 4) Verify the optional curl trigger to XCLOUD_DEPLOY_WEBHOOK is only present when you add that secret. 5) Because the agent will read your repository files to detect stack and extract env var names, ensure you are comfortable granting the agent access to the repo contents and review outputs before pushing the changes. Overall the files and instructions are consistent with the described deployment workflow.
功能分析
Type: OpenClaw Skill
Name: xcloud-docker-deploy
Version: 1.2.1
The skill's primary function is to guide an AI agent in transforming Docker configurations and generating CI/CD workflows for deployment. This involves instructing the agent to read project files, and to generate/modify configuration files (e.g., `docker-compose.yml`, `.github/workflows/docker-build.yml`, `.env.example`). While these file system write operations are central to the skill's stated purpose, the `SECURITY.md` file explicitly states 'No file system modifications' and 'No subprocess calls', which directly contradicts the instructions in `SKILL.md` and other reference files. This misrepresentation of the skill's capabilities in its security documentation (SECURITY.md) is a significant vulnerability, making the skill's self-declared safety unreliable. Additionally, the 'Audited by' date in `SECURITY.md` is in the future (2026-03-03), which is a minor but suspicious metadata anomaly.
能力评估
Purpose & Capability
The skill's name/description (xCloud Docker deployment, stack detection, Dockerfile/compose/GHA generation) matches the files present and the runtime instructions. There are no unrelated required binaries, config paths, or credentials requested. Templates and references (Dockerfiles, compose templates, GitHub Actions workflow) are directly relevant to the stated goal.
Instruction Scope
SKILL.md instructs the agent to scan the project directory, detect stack signals, and produce modified docker-compose.yml, GitHub Actions workflows, and .env.example — all within the deployment scope. The agent is expected to read repository files (DETECT.md, compose, Dockerfile, package/composer/requirements files) which is appropriate for this task. The only network-related actions are in generated CI templates (e.g., docker login, optional curl to xCloud webhook) which run in GitHub Actions or on xCloud, not by the skill itself.
Install Mechanism
No install spec or executable code is provided; this is instruction-only. There are no download/install steps that would fetch arbitrary code or write binaries to disk. That minimizes installation risk.
Credentials
The skill itself declares no required environment variables or primary credential — appropriate for an instruction-only skill. Generated artifacts reference standard CI secrets (GITHUB_TOKEN, optional XCLOUD_DEPLOY_WEBHOOK) and expect repo secrets to be added by the user; this is reasonable for the workflow but users should be aware the generated workflows will use GitHub secrets and may ask them to make GHCR packages public or add the xCloud webhook secret.
Persistence & Privilege
The skill does not request permanent inclusion (always:false) and does not modify other skills or system-wide agent settings. It merely provides instructions and templates to be applied by the agent or user.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install xcloud-docker-deploy - 安装完成后,直接呼叫该 Skill 的名称或使用
/xcloud-docker-deploy触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.2.1
v1.2.1: Sync — updated CHANGELOG, README badge, skill.json + skillsmp.yml all pinned to 1.2.0; all PRs merged and closed.
v1.2.0
Version 1.2.0
- Added CONTRIBUTING.md and skill.json for improved community contribution and metadata.
- Updated SKILL.md and metadata for broader stack detection (added NestJS), more searchable tags, and minor clarifications.
- Improved documentation in README.md, providing clearer install instructions and CI/CD details.
- Removed .clawhubsafe file.
- Minor updates for platform, author info, and enhanced security metadata.
v1.1.1
v1.1.1: README rewrite for SkillsMP/Claude Code/Codex CLI discoverability — added Codex CLI install path, SkillsMP badge, full compatibility table, updated CHANGELOG.
v1.1.0
v1.1.0: Project detection (WordPress/Laravel/PHP/Node.js/Next.js/Python/Go/Rust), native deploy guides, 5 Dockerfiles, 4 compose templates, decision matrix. Works from zero — no existing Docker setup required.
v1.0.0
v1.0.0: Initial release. Handles build-from-source (GHCR), proxy conflicts (nginx-router), multi-port routing, and embedded external configs. Ready for xCloud, ClawHub, and any AI agent platform.
元数据
常见问题
xCloud Docker Deploy 是什么?
Deploy any project to xCloud hosting — auto-detects stack (WordPress, Laravel, PHP, Node.js, Next.js, NestJS, Python, Go, Rust), routes to native or Docker d... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 488 次。
如何安装 xCloud Docker Deploy?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install xcloud-docker-deploy」即可一键安装,无需额外配置。
xCloud Docker Deploy 是免费的吗?
是的,xCloud Docker Deploy 完全免费(开源免费),可自由下载、安装和使用。
xCloud Docker Deploy 支持哪些平台?
xCloud Docker Deploy 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 xCloud Docker Deploy?
由 Asif(@asif2bd)开发并维护,当前版本 v1.2.1。
推荐 Skills