📦 Claw2claw Filetransfer — 跨机秒传
v1.0.0基于 rsync+SSH 的跨平台文件秒传,专为 OpenClaw 智能体设计,一键在 Claw 之间互传大文件,无需公网 IP、不怕断网重传,全程加密,速度飞快。
0· 585·1 当前·1 累计
by 下载技能包
最后更新
2026/4/22
安全扫描
OpenClaw
可疑
medium confidenceNULL
评估建议
This package is documentation for using rsync over SSH rather than a runnable plugin. Before installing or using it:
- Understand it does not include a 'claw2claw' binary — you must either install a separate CLI from a trusted source or run the shown rsync/ssh commands yourself.
- The instructions assume access to your SSH key files (~/.ssh/) and will (per docs) add keys to remotes and create ~/.claw2claw.conf; only proceed if you trust the remote host and you understand where keys/configs wil...详细分析 ▾
⚠ 用途与能力
The SKILL.md advertises a runnable 'claw2claw' CLI with commands (setup, send, get, sync-*) and an uninstall step that removes /usr/local/bin/claw2claw, but the package is instruction-only and contains no executable or installer for that CLI. The only declared install action is to install rsync/openssh-client via apt, which does not provide the claimed 'claw2claw' binary. This mismatch means the skill as published cannot actually perform the advertised automated functionality unless an external binary is installed separately.
⚠ 指令范围
The instructions tell the agent to test SSH connectivity, add SSH keys to a remote, and write/read config at ~/.claw2claw.conf and ~/.ssh/. Those file and key operations are outside the declared requirements (requires.config_paths is empty). The docs also instruct running ssh/rsync commands and warn about destructive rsync options (deletes on sync), which could lead to data loss if blindly followed. The instructions are concrete about manipulating keys/config but provide no safe, constrained procedure or requirement declarations.
✓ 安装机制
There is no install spec that fetches code from arbitrary URLs; the metadata suggests installing rsync/openssh-client via the system package manager (apt) which is a standard, low-risk operation. Because the skill is instruction-only, nothing in the registry package will write code to disk automatically.
⚠ 凭证需求
The skill declares no required environment variables, but the SKILL.md examples reference REMOTE_HOST, REMOTE_USER, REMOTE_PORT, SSH_KEY, and RSYNC_BWLIMIT, and the Security section references ~/.ssh/ and a config file. That implicitly requires access to SSH keys (potentially private keys) and to create/read config files, yet these accesses are not declared as required credentials. This gap makes it unclear what sensitive data the agent or user must expose for 'setup' to work.
ℹ 持久化与权限
always:false and user-invocable:true (defaults) — the skill does not request persistent platform privileges. However, SKILL.md describes installation/uninstallation of a CLI and writes a config file (~/.claw2claw.conf). Because no installer is bundled, any persistent artifacts would come from external software the user installs; the skill itself does not create that persistence.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
版本
latestv1.0.02026/2/16
NULL
● 可疑
安装命令
点击复制官方npx clawhub@latest install claw2claw-filetransfer-v2
镜像加速npx clawhub@latest install claw2claw-filetransfer-v2 --registry https://cn.longxiaskill.com