ClawKit Logo
ClawKitReliability Toolkit
Back to Registry
Official Verified developer tools Safety 5/5

secretclaw

Securely input API keys and sensitive values into OpenClaw without typing them in chat. Uses a local HTTP server + Cloudflare Tunnel to serve an HTTPS form. Use when registering API keys, tokens, passwords, or any sensitive config values.

skill-install — Terminal

Install via CLI (Recommended)

clawhub install openclaw/skills/skills/apsntian/secretclaw
Or

What This Skill Does

SecretClaw provides a secure, privacy-focused mechanism for transmitting sensitive credentials, such as API keys and authentication tokens, into your OpenClaw environment. Rather than exposing plain-text secrets through standard communication channels like Discord—which may log your data or share it with unauthorized participants—SecretClaw generates a temporary, HTTPS-encrypted local HTTP server accessible via a Cloudflare Quick Tunnel. This creates a secure, ephemeral bridge between your local machine and your browser, allowing you to input sensitive information directly into a private form. Once the data is submitted, it is immediately persisted via openclaw config set, and the local server destroys itself, ensuring your credentials are never stored in your chat history or logs.

Installation

To integrate SecretClaw into your OpenClaw environment, execute the following command in your terminal: clawhub install openclaw/skills/skills/apsntian/secretclaw Ensure that you have cloudflared installed on your system path, as the skill relies on Cloudflare's tunneling service to generate the public-facing HTTPS link.

Use Cases

SecretClaw is essential for any scenario requiring the input of sensitive environment variables. Typical use cases include:

  • Provisioning API keys for external services like OpenAI, FAL, or Notion.
  • Updating system-level configuration files such as discord bot tokens.
  • Handling personal password entries or database credentials for custom integrations.
  • Ensuring compliance with security best practices by preventing sensitive data leakage in collaborative chat environments.

Example Prompts

  1. "OpenClaw, I need to add my new OpenAI API key. Can you use the secretclaw skill to let me input it securely?"
  2. "Please set up the configuration for my FAL_KEY using the secret input tool and send me the tunnel link."
  3. "I need to update my Discord bot token. Run secretclaw for the channel config and let me know when it's ready."

Tips & Limitations

  • Ephemeral URLs: Note that the Cloudflare tunnel generates a unique URL every time the skill is executed. Old links become invalid immediately after the session ends or the server self-destructs.
  • Restart Requirements: Some configuration changes (e.g., changing Discord bot tokens) may require a full restart of your OpenClaw gateway to take effect. Always check your agent's logs after a successful submission.
  • Tunnel Tracking: Always refer to workspace/TUNNELS.md if you need to identify active ports or verify if a tunnel is currently live.
  • Network Dependency: Because this skill uses Cloudflare tunnels, ensure your machine has an active internet connection and that outbound traffic is permitted on ports required by cloudflared.
Read Full Documentation on GitHub

Metadata

Author@apsntian
Stars4473
Views1
Updated2026-05-01
View Author Profile
AI Skill Finder

Not sure this is the right skill?

Describe what you want to build — we'll match you to the best skill from 16,000+ options.

Find the right skill
Add to Configuration

Paste this into your clawhub.json to enable this plugin.

{
  "plugins": {
    "official-apsntian-secretclaw": {
      "enabled": true,
      "auto_update": true
    }
  }
}

Tags(AI)

#security#secrets#authentication#api-keys#privacy
Safety Score: 5/5

Flags: network-access, file-write, code-execution