ClawHub

SSH Config Manager

v1.0.0

CLI tool to manage SSH config files, organize hosts, generate configs, and test connections.

0· 256·2 current·2 all-time
byDerick@derick001
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The name/description match the code: the tool parses, edits, validates, backs up, and tests entries in ~/.ssh/config. One minor metadata inconsistency: the skill metadata lists no required config paths, yet the tool operates on ~/.ssh/config and creates ~/.ssh/backups; this should be declared but is proportionate to the stated purpose.
Instruction Scope
SKILL.md instructs the agent/user to run the included Python CLI which reads and writes the user's SSH config and can run ssh to test connections—this is within scope. Caution: generate/write operations can overwrite ~/.ssh/config (a backup is created), and connection testing invokes local ssh which will use the user's SSH keys and any directives in the config (e.g., ForwardAgent, ProxyCommand). The instructions do not tell the agent to read unrelated system files or exfiltrate data.
Install Mechanism
There is no install spec (instruction-only install) and the only required binary is python3 (plus the system ssh client). No remote downloads or obscure installers are used. The included code file is run locally.
Credentials
The skill requests no environment variables or credentials, and the code does not access secret env vars. However, it requires read/write access to ~/.ssh/config and will invoke the system ssh client (which can use your private keys/agent). This level of access is appropriate for an SSH config manager but is sensitive—templates or generated config content from untrusted sources could introduce malicious ProxyCommand or ForwardAgent settings.
Persistence & Privilege
The skill is user-invocable and not always-enabled. It creates files under ~/.ssh/backups and writes to ~/.ssh/config (its own scope). It does not modify other skills or global agent settings.
Assessment
This skill appears to do what it claims, but your SSH config and keys are sensitive. Before installing/using: (1) review scripts/main.py (you already have it) to confirm behavior; (2) run list/validate first and avoid immediate generate->write unless you inspect the generated output; (3) never feed untrusted templates or remote YAML into generate without reviewing for ProxyCommand, PermitLocalCommand, or ForwardAgent directives; (4) keep local backups (tool creates backups, but keep your own copy before major changes); (5) when using test, be aware it will run your ssh client (which can use your keys/agent); (6) if you need stronger guarantees, run the tool in a separate user account or container before applying changes to your real ~/.ssh/config.

Like a lobster shell, security has layers — review code before you run it.

latestvk977t51cgqdy10j1jxc7ng0kp18241j2

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

Binspython3

Comments