skill-cross-agent-v1.0.0.tar

This skill behaves like an SSH-based remote control tool and is coherent with the description, but it has multiple risky practices you should consider before installing: - Credentials: The skill stores default_pass in plaintext under ~/.config/openclaw/cross-agent.conf (it appends values). Avoid saving passwords; prefer SSH key authentication instead. - sshpass and process exposure: The scripts use sshpass and pass passwords on the command line, which can be visible to local users via process listings—only use in trusted, isolated environments. - Host key checking disabled: All SSH calls set StrictHostKeyChecking=no and UserKnownHostsFile=/dev/null, disabling host-key verification and increasing MITM risk on untrusted networks. - Network scanning and remote exec: The skill scans subnets and can run arbitrary commands on remote machines; this can be intrusive and should only be used on networks and hosts you control and trust. - Silent metadata mismatch: Metadata declares no required config paths, but the skill reads/writes ~/.config/openclaw/cross-agent.conf—this is an incoherence to be aware of. - Installer prompts for sudo: The wizard/install may run apt install under sudo to add dependencies—review before consenting. Actions you can take: - Inspect the included scripts locally before running; consider removing or altering insecure behaviors (remove sshpass usage, enable host-key checking, stop storing plaintext passwords). - Use SSH key-based auth and remove config storage of passwords; if you must store secrets, use a secure credential store (not plain files). - Run initial tests in an isolated network or VM. - If you need stronger assurance, ask the publisher for provenance (source repo, signed releases) or request a version that uses key-based auth and does not disable host-key verification. Given the combination of insecure credential handling and the mismatch between metadata and file behavior, proceed only if you accept these risks and have verified the code.