ClawHub

OpenClaw GitHub Copilot

v1.0.0

Use GitHub Copilot as your OpenClaw coding agent via the built-in copilot-bridge. Use when setting up Copilot for the first time, switching the default model...

1· 107·0 current·0 all-time
by@yanglinzhen
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description describe switching and configuring OpenClaw to use GitHub Copilot. Required binary is `openclaw` and the scripts solely call `openclaw` commands (models list/status/auth/set/aliases). The node install for an `openclaw` CLI is consistent with this purpose.
Instruction Scope
SKILL.md and included scripts limit actions to calling the OpenClaw CLI and parsing its outputs, checking for a TTY before interactive login, and optionally adding an alias or switching the default model. The instructions do not read arbitrary system files, environment variables, or send data to external endpoints beyond the official OpenClaw/GitHub auth flow.
Install Mechanism
Install spec is a Node package named `openclaw` that creates an `openclaw` binary — this is a plausible distribution method. This is reasonable, but as with any package from a public registry, users should verify they are installing the official OpenClaw package from a trusted source (package provenance/signature) if they do not already have `openclaw` installed by other means.
Credentials
The skill declares no required environment variables or credentials. The only credential-related action is invoking `openclaw models auth login-github-copilot`, which uses the official interactive/device-code flow and requires a TTY — appropriate and proportional for the stated task.
Persistence & Privilege
The skill is not always-enabled and is user-invocable. It does not request persistent system-wide privileges or modify other skills' configuration beyond using OpenClaw commands to change model/alias state (the intended effect).
Assessment
This skill appears to do exactly what it says: run OpenClaw commands and, when requested, launch the official interactive GitHub Copilot login flow. Before installing or running it: 1) ensure you trust the source of the `openclaw` npm package (or install OpenClaw from official channels), 2) be prepared for an interactive device-code/browser login when running `--login` (requires a real TTY), and 3) understand the scripts will change your OpenClaw default model/aliases (they use `openclaw models set` and `openclaw models aliases add`). There is no evidence the skill collects or exfiltrates secrets beyond invoking OpenClaw's normal auth flow.

Like a lobster shell, security has layers — review code before you run it.

copilotvk972257x5px5sf44yfvgpm8qg983g17fgithubvk972257x5px5sf44yfvgpm8qg983g17flatestvk97094hshsym74117s28a9qwed83hpkkopenclawvk972257x5px5sf44yfvgpm8qg983g17f

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🐙 Clawdis
Binsopenclaw

Install

Install OpenClaw CLI
Bins: openclaw
npm i -g openclaw

Comments