Hope Client

v1.0.0

Hope Server Max API 客户端技能。用于发起对 Hope Server Max 服务端的 API 请求。

⭐ 0· 115·0 current·0 all-time

byAndy Tien@linux2010

OpenClaw Prompt Flow

Install with OpenClaw

Best for remote or guided setup. Copy the exact prompt, then paste it into OpenClaw for linux2010/hope-client.

Previewing Install & Setup.

Prompt PreviewInstall & Setup

Install the skill "Hope Client" (linux2010/hope-client) from ClawHub.
Skill page: https://clawhub.ai/linux2010/hope-client
Keep the work scoped to this skill only.
After install, inspect the skill metadata and help me finish setup.
Use only the metadata you can verify from ClawHub; do not invent missing requirements.
Ask before making any broader environment changes.

Command Line

CLI Commands

Use the direct CLI path if you want to install manually and keep every step visible.

OpenClaw CLI

Bare skill slug

openclaw skills install hope-client

ClawHub CLI

Package manager switcher

npx clawhub@latest install hope-client

Security Scan

Capability signals

Requires sensitive credentials

These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.

VirusTotal

Suspicious

View report →

OpenClaw

Suspicious

high confidence

Purpose & Capability

The declared purpose is a simple Hope Server Max API client, which plausibly needs HOPE_HOST/HOPE_PORT and an API key. However the registry metadata lists no required env vars or binaries while the SKILL.md and scripts clearly depend on HOPE_API_KEY, HOPE_HOST, HOPE_PORT and use remote SSH + curl. The script also defaults to specific host (hope05) and API key values — these hardcoded defaults are unexpected and inconsistent with the registry manifest.

Instruction Scope

SKILL.md and the included script instruct the agent to SSH to a host using sshpass and then run curl against 127.0.0.1 on that remote host. The instructions reference environment loading from ~/.openclaw/.env but also embed literal credential values in examples and the script. The runtime instructions access HOPE_SSH_PASS (used by sshpass) even though that variable is not documented in registry metadata. Using sshpass to pass a plaintext password ('hope' default) and running remote curl is outside a minimal API-client scope and expands the skill's operational footprint.

ℹ

Install Mechanism

There is no install spec (instruction-only with an included helper script), so nothing will be downloaded at install time. That lowers installer risk, but the provided script expects external binaries (sshpass, ssh, curl) that are not declared — the skill assumes host environment capabilities without declaring them.

Credentials

The registry lists no required env vars, but SKILL.md metadata and the script use HOPE_API_KEY, HOPE_HOST, HOPE_PORT and HOPE_SSH_PASS; the script also embeds default HOPE_API_KEY and a default SSH password. Requesting or embedding credentials (even defaults) without declaring them is disproportionate and risky: the default values may be sensitive or allow unintended access, and sshpass usage implies plaintext password handling.

✓

Persistence & Privilege

The skill does not request always:true, does not modify other skills' configuration, and has no install-time persistence. It runs only when invoked and does not claim elevated system privileges.

What to consider before installing

This skill is functionally an API client for an internal service, but it has several red flags you should consider before installing or using it: - Mismatched metadata: the registry lists no required env vars or binaries, yet SKILL.md and scripts expect HOPE_API_KEY, HOPE_HOST, HOPE_PORT and use ssh/sshpass/curl. Ask the author to update the manifest. - Hardcoded defaults: the SKILL.md and script contain a default API key and default SSH password. These may be secrets or allow unwanted access. Do not rely on defaults; require the maintainer to remove hardcoded credentials. - sshpass and plaintext password: the script uses sshpass with a plaintext password (default 'hope'). Prefer SSH keys and avoid plaintext password automation. Confirm whether sshpass is actually required and whether SSH keys can be used instead. - Undeclared binary dependencies: ensure the runtime environment has ssh, curl (and sshpass if needed). The skill should declare these requirements. - Scope check: the script SSHes to a host and curls 127.0.0.1 on that host (lateral access). That may be legitimate for an admin tool, but verify you trust the target host and network. Recommended actions: 1. Ask the skill author to correct the manifest (declare required env vars and binaries) and to remove any hardcoded credentials. 2. Replace sshpass with SSH key-based auth, or at minimum require HOPE_SSH_PASS to be set explicitly in the environment (and documented). 3. Inspect and run the script in an isolated environment before granting to production agents. 4. If you don't trust the source (unknown origin, no homepage), do not install or run it on systems with sensitive data or network access until the issues above are resolved.

Like a lobster shell, security has layers — review code before you run it.

latestvk97bnjqcjttf2k88sqkgsx4x1h857t33

115downloads

0stars

1versions

Updated 1w ago

v1.0.0

MIT-0

hope-client

Hope Server Max API 客户端技能。用于发起对 Hope Server Max 服务端的 API 请求。

环境变量配置

OpenClaw 自动加载 ~/.openclaw/.env 文件中的环境变量：

# ~/.openclaw/.env
HOPE_API_KEY=hope-openclaw-apikey-2026-0411
HOPE_HOST=hope05
HOPE_PORT=8088

加载优先级（官方文档）：

进程已存在的环境变量（不会被覆盖）
CWD .env 文件
~/.openclaw/.env 文件

技能脚本通过环境变量读取配置：

环境变量	说明	默认值
`HOPE_API_KEY`	Hope Server Max API Key	-
`HOPE_HOST`	服务器地址	`hope05`
`HOPE_PORT`	服务端口	`8088`

认证方式

所有请求必须携带 X-OpenClaw-Key 请求头：

# 使用环境变量
curl -H "X-OpenClaw-Key: $HOPE_API_KEY" \
  http://$HOPE_HOST:$HOPE_PORT/system/channel/list

从本地通过 SSH 调用：

sshpass -p 'hope' ssh $HOPE_HOST \
  "curl -s -H 'X-OpenClaw-Key: $HOPE_API_KEY' http://127.0.0.1:$HOPE_PORT/system/channel/list"

API 接口文档

1. 频道管理 (Channel)

1.1 查询频道列表

GET /system/channel/list

查询参数：

channelName - 频道名称（可选）
channelType - 频道类型：bili、youtube、xigua（可选）
channelOffOn - 启用状态：on、off（可选）
pageNum - 页码（默认 1）
pageSize - 每页数量（默认 10）

响应示例：

{
  "total": 88,
  "rows": [
    {
      "channelId": 267,
      "channelName": "CopyCat-bili",
      "channelType": "bili",
      "channelOffOn": "on",
      "cookieEnable": "true",
      "engineId": 3,
      "engineName": "hope03"
    }
  ],
  "code": 200,
  "msg": "查询成功"
}

1.2 获取所有频道名称

GET /system/channel/listAllNames

响应示例：

{
  "code": 200,
  "msg": "操作成功",
  "data": ["CopyCat-bili", "CopyCat-youtube", ...]
}

1.3 搜索频道名称

GET /system/channel/searchNames?channelName=Copy

查询参数：

channelName - 搜索关键词（可选，最多返回 5 条）

1.4 获取频道详情

GET /system/channel/{channelId}

1.5 频道统计信息

GET /system/channel/statistics

1.6 刷新频道 Cookie

POST /system/channel/refresh/{channelId}

2. 上传实例 (Upload Instance)

2.1 查询上传实例列表

GET /system/instance/list

查询参数：

channelName - 频道名称（可选）
status - 状态：0=成功, 1=失败, 2=执行中, 3=排队（可选）
engineName - 引擎名称（可选）
videoName - 视频名称（可选）
pageNum - 页码
pageSize - 每页数量

响应示例：

{
  "total": 150,
  "rows": [
    {
      "instanceId": "abc123",
      "channelName": "CopyCat-bili",
      "videoName": "测试视频",
      "videoPath": "/path/to/video.mp4",
      "status": "0",
      "uploadLog": "上传成功",
      "createTime": "2026-04-16 10:00:00"
    }
  ],
  "code": 200
}

2.2 获取上传实例详情

GET /system/instance/{instanceId}

2.3 查询上传趋势数据

GET /system/instance/queryTrend

查询参数：

channelName - 频道名称（可选）
beginTime - 开始时间（可选）
endTime - 结束时间（可选）

2.4 查询失败排行列表

GET /system/instance/failList

2.5 查询失败日志

POST /system/instance/queryFailLog

请求体：

{
  "engineName": "hope02",
  "videoPath": "/path/to/video.mp4"
}

3. 下载实例 (Download Instance)

3.1 查询下载实例列表

GET /system/downloadInstance/list

查询参数：

downloadId - 下载 ID（可选）
videoName - 视频名称（可选）
cleanFlag - 清理状态：0=已清理, 1=手动清理, 2=未清理（可选）
pageNum - 页码
pageSize - 每页数量

3.2 获取下载实例详情

GET /system/downloadInstance/{pkInstanceId}

3.3 查询待上传视频列表

GET /system/downloadInstance/pending

查询参数：

downloadId - 下载 ID（可选）
limit - 返回数量限制（可选）

响应示例：

{
  "total": 500,
  "rows": [
    {
      "pkInstanceId": "md5hash...",
      "videoName": "待上传视频",
      "videoPath": "/path/to/video.mp4",
      "channelName": "CopyCat-bili",
      "cleanFlag": 2
    }
  ],
  "code": 200
}

3.4 统计待上传视频数量

GET /system/downloadInstance/pending/count

查询参数：

downloadId - 下载 ID（可选）

响应示例：

{
  "code": 200,
  "msg": "操作成功",
  "data": 500
}

3.5 查询下载趋势数据

GET /system/downloadInstance/trend

3.6 更新清理状态

PUT /system/downloadInstance/clean/{pkInstanceIds}

4. 账户管理 (Account)

4.1 查询账户列表

GET /system/account/list

查询参数：

accName - 账户名称（可选）
accPhone - 手机号（可选）
accDue - 到期时间（可选）

4.2 获取账户详情

GET /system/account/{accId}

5. 引擎管理 (Engine)

5.1 查询引擎列表

GET /system/engineInfo/list

响应示例：

{
  "total": 6,
  "rows": [
    {
      "engineId": 1,
      "engineName": "hope01",
      "engineIp": "192.168.31.54",
      "engineType": "youtube"
    }
  ],
  "code": 200
}

5.2 获取所有引擎信息

GET /system/engineInfo/listAll

5.3 获取引擎详情

GET /system/engineInfo/{engineId}

快速调用函数

技能提供以下快捷调用函数（写入 scripts/api_client.sh）：

基础调用

# 调用 API 的基础函数
hope_api() {
  local endpoint="$1"
  local params="${2:-}"
  
  sshpass -p 'hope' ssh hope@hope05 \
    "curl -s -H 'X-OpenClaw-Key: hope-openclaw-apikey-2026-0411' \
     'http://127.0.0.1:8088${endpoint}?${params}'"
}

常用快捷命令

# 查询频道列表
hope_channel_list() {
  hope_api "/system/channel/list" "pageSize=100"
}

# 查询待上传视频数量
hope_pending_count() {
  hope_api "/system/downloadInstance/pending/count"
}

# 查询待上传视频列表
hope_pending_list() {
  hope_api "/system/downloadInstance/pending" "limit=20"
}

# 查询上传实例列表
hope_upload_list() {
  hope_api "/system/instance/list" "pageSize=50"
}

# 查询引擎列表
hope_engine_list() {
  hope_api "/system/engineInfo/listAll"
}

使用场景

场景 1：检查待上传视频数量

hope_pending_count
# 输出：{"code":200,"data":500}

场景 2：查询某频道的上传记录

hope_api "/system/instance/list" "channelName=CopyCat-bili&pageSize=20"

场景 3：查询失败的上传任务

hope_api "/system/instance/list" "status=1&pageSize=50"

场景 4：查询今日下载入库数量

hope_api "/system/downloadInstance/trend" "beginTime=2026-04-16"

状态码说明

upload_instance.status

值	含义
0	成功
1	失败
2	执行中
3	排队/初始化

download_instance.clean_flag

值	含义
0	已上传清理
1	手动清理
2	未清理（待上传）

注意事项

网络访问：hope05 是内网服务器（192.168.31.167），需通过 SSH 或内网访问
认证必须：所有请求必须携带 X-OpenClaw-Key 请求头
分页参数：列表接口默认 pageNum=1, pageSize=10
时间格式：时间参数格式为 yyyy-MM-dd HH:mm:ss 或 yyyy-MM-dd

Comments

Loading comments...