ClawHub

Docker Manager

v1.0.2

Docker 容器管理。查看、启动、停止、删除容器,监控资源使用,查看日志。适合运维和开发。

0· 730·8 current·8 all-time
by@sxliuyu
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The name, description, SKILL.md, and the included script all align: this is a local Docker CLI helper. Minor inconsistency: the registry-level Requirements block earlier reported 'none', but _meta.json declares required binaries ['python3','docker']. The script clearly needs python3 and docker available.
Instruction Scope
Runtime instructions and examples only call the included Python script or standard docker commands (ps, start, stop, stats, logs, inspect, images, rm, rmi, prune, exec). They do not attempt to read unrelated files, contact external endpoints, or access secrets.
Install Mechanism
No external install/download steps are present (instruction-only plus an included script). There are no network downloads or archive extraction steps in the package.
Credentials
The skill requests no environment variables or credentials, which is appropriate. Important caveat: executing docker CLI commands requires access to the Docker engine (e.g., the docker socket). That access effectively grants high privileges on the host, so the skill's operational power (start/stop/exec/delete containers) is significant even without explicit credentials.
Persistence & Privilege
The skill does not set always:true, does not request persistent system-wide changes, and does not modify other skills' configurations. Autonomous invocation is allowed (default) but not combined with other high-risk requests.
Assessment
This skill appears to do what it says: it runs local docker commands via the included Python script. Before installing or running it, verify you trust the skill source because it will invoke docker on your machine (start/stop/remove containers, exec inside containers). Access to the Docker engine can be used to escalate to the host — only run this in environments where you control or trust the containers and the agent. Note the minor metadata inconsistency (requirements omitted in one place but present in _meta.json). If you want extra safety, review the provided scripts locally or run the skill in an isolated sandbox/VM that has docker installed.

Like a lobster shell, security has layers — review code before you run it.

latestvk97ev4jv6hca131kc71jkgtxg18306h7

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments