ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Skylv Openclaw Quick Deploy

v1.0.3

OpenClaw 一键部署助手。5 分钟快速部署 OpenClaw 到 VPS/Docker/本地,包含环境检测、依赖安装、配置生成。Triggers: deploy openclaw, install openclaw, openclaw setup, quick start.

0· 45·1 current·1 all-time
by@sky-lv
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
The name/description claim a one‑click OpenClaw deploy to VPS/Docker/local, and the SKILL.md contains deployment instructions that are consistent with that purpose (deploy script, docker usage, npm-based local start). However there are oddities: references to both 'skylv/openclaw' and 'sky lv/openclaw' (space in image name) and links to a personal repo (SKY-lv) rather than an obvious official release — these are plausible for a community script but deserve verification.
!
Instruction Scope
The instructions include running remote scripts via curl | bash and globally installing an npm package (npm install -g openclaw). The included deploy.sh also incorrectly assumes apt-get on CentOS (OS detection sets OS=centos but still runs Debian-specific install steps) and does not handle privilege escalation (sudo) or non-root scenarios. While these steps are related to deployment, piping unknown remote scripts to shell and global npm installs are high-risk operations that go beyond innocuous instructions.
!
Install Mechanism
There is no packaged install spec, but the instructions rely on fetching and executing code from external sources: a raw.githubusercontent.com URL and Docker images / npm packages from the network. The raw URL points to a personal GitHub repo (SKY-lv) — not an obvious official release host — and the Docker image name in one example contains a space (likely a typo), which is inconsistent. These are legitimate deployment mechanisms but represent supply-chain risk and need source verification.
Credentials
The skill declares no required environment variables or credentials, and the instructions only reference typical runtime locations (e.g., ~/.openclaw) and an optional OPENCLAW_CONFIG env var. No unrelated secrets or config paths are requested by the skill itself. That said, executing remote scripts could attempt to access other credentials at runtime — inspect the script before running.
Persistence & Privilege
The skill does not request always-on presence and uses normal, user-invocable behavior. There is no instruction to modify other skills or system-wide agent settings. The main persistence concern is operational (installing a global npm package, enabling a gateway service), which is expected for a deploy tool but should be reviewed.
What to consider before installing
This skill appears to be a legitimate quick-deploy helper, but treat it as untrusted until you verify the external artifacts and fix the inconsistencies. Before running anything: 1) Inspect the deploy.sh and any referenced scripts by visiting the GitHub/raw URLs rather than piping to bash; 2) Verify the publisher of the npm package 'openclaw' and the Docker image (confirm the correct image name and owner); 3) Do not run the script as root on production systems—test in a disposable VM or container; 4) Note the deploy.sh has bugs (it uses apt-get even for CentOS and lacks sudo handling); 5) Prefer cloned repos and pinned releases or signed artifacts (SHA/GPG) over curl|bash; 6) If you don't trust the SKY-lv repo or maintainers, use official OpenClaw docs/releases from the upstream project instead. If you want, I can fetch and summarize the referenced remote deploy.sh and the npm package metadata for further review (I cannot execute them, but I can inspect their public sources).

Like a lobster shell, security has layers — review code before you run it.

latestvk9781mrp89017yw6g52bbe20zh856y73
45downloads
0stars
4versions
Updated 4h ago
v1.0.3
MIT-0
@sky-lv
latest
Download

OpenClaw Quick Deploy — 一键部署助手

功能说明

5 分钟快速部署 OpenClaw 到 VPS、Docker 或本地环境。自动检测系统环境、安装依赖、生成配置文件,让 OpenClaw 开箱即用。

支持平台

平台支持状态部署时间
Ubuntu 20.04/22.04✅ 原生支持5 分钟
Debian 11/12✅ 原生支持5 分钟
CentOS 7/8✅ 原生支持7 分钟
Docker✅ 容器化部署3 分钟
macOS✅ Homebrew 安装5 分钟
Windows (WSL2)✅ WSL2 部署7 分钟

快速开始

方式一:VPS 一键部署(推荐)

# Ubuntu/Debian/CentOS
curl -fsSL https://raw.githubusercontent.com/SKY-lv/awesome-openclaw-skills/main/scripts/deploy.sh | bash

# 部署完成后
openclaw gateway status

方式二:Docker 部署

# 拉取镜像
docker pull sky lv/openclaw:latest

# 运行容器
docker run -d \
  --name openclaw \
  -p 8080:8080 \
  -v ~/.openclaw:/root/.openclaw \
  -e OPENCLAW_CONFIG=/root/.openclaw/config.json \
  skylv/openclaw:latest

# 查看日志
docker logs -f openclaw

方式三:本地开发环境

# Node.js 环境(v18+  required)
git clone https://github.com/openclaw/openclaw.git
cd openclaw
npm install
npx openclaw gateway start

# 验证安装
openclaw gateway status

部署流程

1. 环境检测

checks:
  - nodejs: ">=18.0.0"
  - npm: ">=9.0.0"
  - git: installed
  - disk_space: ">=1GB free"
  - memory: ">=512MB free"
  - ports: "8080 available"

2. 依赖安装

dependencies:
  - openclaw (core)
  - openclaw-gateway (daemon)
  - openclaw-cli (command line)
  - optional: playwright (browser automation)
  - optional: puppeteer (headless Chrome)

3. 配置生成

config:
  - gateway.port: 8080
  - gateway.host: 0.0.0.0
  - session.timeout: 3600s
  - log.level: info
  - plugins: []

4. 服务启动

# 启动 Gateway
openclaw gateway start

# 设置开机自启
openclaw gateway enable

# 验证状态
openclaw gateway status

环境要求

最低配置

  • CPU: 1 核
  • 内存:512MB
  • 磁盘:1GB
  • 系统:Ubuntu 20.04+ / Debian 11+ / CentOS 7+

推荐配置

  • CPU: 2 核
  • 内存:2GB
  • 磁盘:10GB SSD
  • 系统:Ubuntu 22.04 LTS

网络要求

  • 开放端口:8080(HTTP)、443(HTTPS,可选)
  • 出站访问:GitHub、npm、技能市场

故障排查

常见问题

1. 端口被占用

# 查看端口占用
lsof -i :8080

# 修改端口
openclaw config set gateway.port 8081
openclaw gateway restart

2. 内存不足

# 查看内存使用
free -h

# 优化配置
openclaw config set session.max_concurrent 5

3. 依赖安装失败

# 清理缓存
npm cache clean --force

# 重新安装
npm install --legacy-peer-deps

4. Gateway 无法启动

# 查看日志
openclaw gateway logs --tail 100

# 重置配置
rm ~/.openclaw/config.json
openclaw gateway init

部署脚本

deploy.sh(Linux/macOS)

#!/bin/bash
set -e

echo "🦞 OpenClaw Quick Deploy"
echo "========================"

# 检测系统
if [ -f /etc/debian_version ]; then
    OS="debian"
elif [ -f /etc/redhat-release ]; then
    OS="centos"
else
    echo "❌ Unsupported OS"
    exit 1
fi

# 安装 Node.js
if ! command -v node &> /dev/null; then
    echo "📦 Installing Node.js..."
    curl -fsSL https://deb.nodesource.com/setup_20.x | bash -
    apt-get install -y nodejs
fi

# 安装 OpenClaw
echo "📦 Installing OpenClaw..."
npm install -g openclaw

# 初始化配置
echo "⚙️  Initializing configuration..."
openclaw gateway init

# 启动服务
echo "🚀 Starting Gateway..."
openclaw gateway start

echo "✅ OpenClaw deployed successfully!"
echo "📍 Access: http://localhost:8080"

相关文件

触发词

  • 自动:检测 deploy、install、setup、openclaw 相关关键词
  • 手动:/openclaw-deploy, /quick-start, /install-openclaw
  • 短语:部署 OpenClaw、安装 OpenClaw、快速开始

Usage

  1. Install the skill
  2. Configure as needed
  3. Run with OpenClaw

Comments

Loading comments...