ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Openclaw Error Fix

v1.1.0

OpenClaw 常见错误修复 - 解决安装/配置/运行问题。适合:遇到错误的用户。

0· 486·2 current·2 all-time
by@yang1002378395-cmyk
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
Name/description match the content: SKILL.md is a troubleshooting guide for installation, configuration, and runtime errors in OpenClaw. Commands and suggestions (node version, ports, config resets, platform tokens) are consistent with that purpose.
!
Instruction Scope
The instructions tell users to run potentially risky commands: piping an external Node.js setup script into bash (curl ... | sudo -E bash -), globally installing packages (npm install -g openclaw), removing config files (rm ~/.openclaw/config.yaml), and killing processes (kill -9). They also reference an environment variable ($API_KEY) and external endpoints (api.deepseek.com) while the skill declares no required env — the SKILL.md accesses credentials/config not declared in the skill metadata and instructs making network calls and config changes that could leak secrets or be destructive if run blindly.
Install Mechanism
There is no formal install spec (instruction-only), which minimizes automatic disk write risk. However, the guidance explicitly recommends running external installer scripts (curl | bash) and global npm installs; these are common for Node installs but carry non-trivial supply-chain risk if users run them without verifying sources.
!
Credentials
The skill metadata declares no required environment variables or credentials, but the README uses $API_KEY (DeepSeek verification) and references platform tokens/webhooks (Telegram, Discord, DingTalk). Those credentials are plausible for the tasks, but their use without being declared is a mismatch and means the skill instructions expect access to sensitive secrets that the metadata does not advertise.
Persistence & Privilege
The skill does not request persistent presence or elevated platform privileges (always:false). Still, the runtime instructions modify user shell configuration (~/.zshrc), install global packages, and delete config files — actions that change the system and require user privileges. The skill itself does not claim or request those privileges in metadata.
What to consider before installing
This appears to be a legitimate OpenClaw troubleshooting guide, but do not run commands blindly. Before executing anything: 1) Back up configuration (e.g., copy ~/.openclaw/config.yaml) before deleting it. 2) Inspect any remote install script before piping into sh/sudo (curl ... | bash) — prefer packaged installers or distro repos when possible. 3) Be careful with npm -g installs and changes to ~/.zshrc/PATH; they modify your environment. 4) The document references $API_KEY and other tokens but the skill metadata doesn't declare required secrets — treat API keys and bot tokens as sensitive and do not paste them into unknown tools or public logs. 5) Verify the legitimacy of external domains (api.deepseek.com) and the offered paid support contact (WeChat/Telegram) before sending payment or sharing credentials. If you lack confidence, perform these troubleshooting steps in a disposable environment or ask a trusted administrator to inspect the commands first.

Like a lobster shell, security has layers — review code before you run it.

latestvk979aaaq0bb29ycy41b9facrqh8306g6

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🔧 Clawdis

SKILL.md

OpenClaw 常见错误修复指南

遇到错误不用慌,这里有你需要的解决方案。

安装错误

1. Node.js 版本不对

错误

error: node >= 20 required

解决

# macOS
brew install node@20

# Ubuntu
curl -fsSL https://deb.nodesource.com/setup_20.x | sudo -E bash -
sudo apt-get install -y nodejs

# 验证
node --version  # 应该显示 v20.x.x

2. 权限错误

错误

EACCES: permission denied

解决

# 不要用 sudo!修复 npm 权限
mkdir ~/.npm-global
npm config set prefix '~/.npm-global'
echo 'export PATH=~/.npm-global/bin:$PATH' >> ~/.zshrc
source ~/.zshrc

# 重新安装
npm install -g openclaw

3. 网络错误

错误

network timeout

解决

# 切换国内镜像
npm config set registry https://registry.npmmirror.com

# 或使用代理
npm config set proxy http://127.0.0.1:7890

配置错误

1. API Key 无效

错误

Invalid API key

解决

  1. 检查 API Key 是否正确(无空格)
  2. 检查是否过期
  3. 检查余额是否充足
# 验证 DeepSeek API Key
curl https://api.deepseek.com/v1/models \
  -H "Authorization: Bearer $API_KEY"

2. 模型不存在

错误

Model not found

解决

# 查看支持的模型
openclaw models list

# 使用正确的模型名
openclaw config set model deepseek-chat

3. 配置文件损坏

错误

Cannot read config file

解决

# 重置配置
rm ~/.openclaw/config.yaml
openclaw config init

运行错误

1. 端口被占用

错误

Port 3000 already in use

解决

# 查找占用进程
lsof -i :3000

# 杀掉进程
kill -9 <PID>

# 或换端口
openclaw config set port 3001

2. 内存不足

错误

JavaScript heap out of memory

解决

# 增加内存限制
export NODE_OPTIONS="--max-old-space-size=4096"
openclaw start

3. 连接超时

错误

Connection timeout

解决

# 检查网络
ping api.deepseek.com

# 增加超时时间
openclaw config set timeout 60000

平台连接错误

1. Telegram 连接失败

错误

Telegram bot token invalid

解决

  1. 重新创建 Bot:https://t.me/BotFather
  2. 复制新的 Token
  3. 更新配置

2. Discord 连接失败

错误

Discord token invalid

解决

  1. 重新生成 Token:https://discord.com/developers
  2. 检查 Bot 权限
  3. 邀请 Bot 到服务器

3. 钉钉连接失败

错误

DingTalk webhook invalid

解决

  1. 检查 Webhook URL
  2. 确认机器人未被禁用
  3. 检查关键词配置

快速诊断

# 运行诊断
openclaw doctor

# 查看日志
openclaw logs --tail 100

# 检查配置
openclaw config check

需要帮助?

如果以上方法都无法解决:

  • 技术支持:¥99
  • 远程调试:¥299
  • 企业支持:¥999

联系:微信 yang1002378395 或 Telegram @yangster151

创建:2026-03-14

Files

1 total
Select a file
Select a file to preview.

Comments

Loading comments…