ClawHub

Terminal

v1.0.2

Local shell copilot for command planning, safe execution, preview-first workflows, output summarization, privacy-aware history controls, and step-by-step ter...

2· 1.5k·30 current·30 all-time
by@agistack
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description (local shell copilot) aligns with the included scripts (planning, preview, execute, summarize, history). Minor inconsistency: SKILL.md lists Python 3 as a runtime requirement but the registry metadata lists no required binaries; practically the code requires python3 to run.
Instruction Scope
SKILL.md and the scripts remain within the terminal copilot scope: they plan commands, preview, enforce confirmation for high-risk patterns, execute via subprocess, redact sensitive-looking tokens, and store local history. Important behavioral detail: run_command uses subprocess.run(..., shell=True) so it will execute arbitrary shell code exactly as provided — this is expected for a terminal tool but means any command (including network operations or destructive commands once confirmed) will run on the user's machine. The safety checks flag many high-risk tokens/commands and require --yes, but a user who supplies --yes or an agent invoking it autonomously could still run them.
Install Mechanism
No install step; code is instruction/file-based and runs under user's Python environment. No remote downloads or external package installation are present.
Credentials
The skill requests no environment variables or external credentials. It stores history locally at ~/.openclaw/workspace/memory/terminal/history.json and attempts to set file permissions to 0600. It includes redaction regexes for common token formats, but redaction is heuristic and may not catch all secrets; by default stdout/stderr are stored unless --no-store-output is used.
Persistence & Privilege
always is false and the skill does not request system-wide privileges or modify other skills. It persists only to a per-user path under the home directory and attempts to secure that file's permissions.
Assessment
This skill appears to do what it claims (a local shell copilot). Before installing or invoking it: (1) ensure you have python3 available locally; (2) understand that commands are executed with shell=True — any command you run (or an agent running the skill on your behalf) can perform network actions or destructive changes if confirmed; (3) prefer --preview to inspect commands first and require explicit confirmation for risky operations; (4) use --no-store-output and --redact-display for sensitive runs because redaction is heuristic and may miss secrets; (5) review the history file (~/.openclaw/workspace/memory/terminal/history.json) policy if you handle sensitive data. If you need stricter guarantees, avoid granting autonomous agents permission to run commands without human review.

Like a lobster shell, security has layers — review code before you run it.

latestvk97dxcmnay41av4pddw2he3trh8331ek

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments