← Back to Skills Marketplace
fengzie

Native Install

by fengzie · GitHub ↗ · v0.2.0 · MIT-0
cross-platform ⚠ suspicious
129
Downloads
0
Stars
0
Active Installs
2
Versions
Install in OpenClaw
/install mobazha-native-install
Description
Install the Mobazha native binary on Linux, macOS, or Windows. Use when the user wants to run a store without Docker.
Usage Guidance
This skill is coherent for installing a native Mobazha binary, but it directs you to download-and-execute a remote installer (curl | bash) and to register a background service and auto-update launcher. Before proceeding: manually review the installer script (curl -sSL https://get.mobazha.org/install | less), verify the SHA-256 checksums against an authoritative source (GitHub Releases), confirm the HTTPS certificate/hostname for get.mobazha.org, consider installing in a sandbox/VM if you want to limit risk, and be aware macOS Gatekeeper may be bypassed by this method. No credentials are requested by the skill itself, so you don't need to provide API keys—just exercise the usual caution for remote installers and service auto-start behavior.
Capability Analysis
Type: OpenClaw Skill Name: mobazha-native-install Version: 0.2.0 The skill relies on the high-risk 'curl | bash' pattern to download and execute a remote shell script from get.mobazha.org, which facilitates unverified remote code execution. It also provides instructions to establish system persistence via systemd/launchd and bypass macOS Gatekeeper security controls (xattr -d). While these actions are aligned with the stated purpose of installing the Mobazha software, the combination of remote script execution and system-level modifications via an AI agent presents a significant security risk.
Capability Assessment
Purpose & Capability
Name and description (native binary installer for Mobazha) match the SKILL.md: the document describes platform detection, downloading binaries, placing them in ~/.local/bin, and registering a service. Nothing requested (no env vars, no unrelated binaries) is disproportionate to an installer.
Instruction Scope
The instructions focus on installation, service management, backups, and troubleshooting. They reference expected paths (e.g., ~/.local/bin, launchd, systemd) and do not instruct the agent to read unrelated files or harvest credentials. The one broad instruction is to run a network-fetched installer (curl | bash), which is within installer scope but important to treat as a risky action.
Install Mechanism
The skill is instruction-only (no install spec), but it tells users to run curl -sSL https://get.mobazha.org/install | bash. That pattern downloads and executes a remote script (get.mobazha.org). The SKILL.md also says binaries come from GitHub Releases and that checksums are verified — that mitigates some risk. Still, executing remote install scripts is a higher-risk mechanism and should be reviewed before running.
Credentials
No environment variables, credentials, or unrelated config paths are requested. All actions described (install directory, service registration, logs) are proportional to a local native installer.
Persistence & Privilege
The installer registers a background service and installs a launcher for auto-update/crash recovery, creating persistent presence on the host. This is expected for a server-like product but is a privilege that the user should consciously accept (service registration, auto-start, auto-update). The skill itself does not request always:true or other elevated platform-wide privileges.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install mobazha-native-install
  3. After installation, invoke the skill by name or use /mobazha-native-install
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v0.2.0
Add security note for script review before execution
v0.1.0
Initial release
Metadata
Slug mobazha-native-install
Version 0.2.0
License MIT-0
All-time Installs 0
Active Installs 0
Total Versions 2
Frequently Asked Questions

What is Native Install?

Install the Mobazha native binary on Linux, macOS, or Windows. Use when the user wants to run a store without Docker. It is an AI Agent Skill for Claude Code / OpenClaw, with 129 downloads so far.

How do I install Native Install?

Run "/install mobazha-native-install" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Native Install free?

Yes, Native Install is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does Native Install support?

Native Install is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Native Install?

It is built and maintained by fengzie (@fengzie); the current version is v0.2.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments