gopass
Store, retrieve, list, and manage secrets using gopass (the team password manager). Use when the user asks to save credentials, look up passwords, generate secrets, manage password entries, or interact with a gopass password store. Covers CRUD operations, secret generation, TOTP, recipients, mounting stores, and clipboard operations.
Why use this skill?
Manage your passwords, TOTP codes, and encrypted secrets directly from OpenClaw with the gopass skill. Secure, efficient, and team-ready.
Install via CLI (Recommended)
clawhub install openclaw/skills/skills/erdgeclaw/gopassWhat This Skill Does
The gopass skill provides the OpenClaw agent with full capability to interact with gopass, the standard CLI password manager for teams. It acts as an interface between the user and their encrypted gopass store, enabling secure retrieval, creation, modification, and management of sensitive credentials. By leveraging GPG encryption and Git-backed storage, the skill ensures that secrets remain protected while being accessible for team collaboration. It supports the full lifecycle of a password entry: generating random secure passwords, managing TOTP codes for multi-factor authentication, organizing secrets into hierarchical structures, and handling team-based access via recipient management.
Installation
To integrate this capability, use the OpenClaw command-line installer. Ensure your local environment is already configured with gopass and a GPG key.
Command: clawhub install openclaw/skills/skills/erdgeclaw/gopass
Prerequisites:
- gopass binary must be available in the system PATH.
- A valid GPG key must be configured.
- The password store must be initialized using
gopass setuporgopass initprior to skill usage.
Use Cases
This skill is designed for scenarios where security and velocity intersect. Use it to:
- Retrieve passwords during automated login tasks or application configuration.
- Generate cryptographically strong, high-entropy passwords for new accounts.
- Manage TOTP tokens for services requiring two-factor authentication.
- Onboard new team members by adding their GPG keys as store recipients.
- Sync local secret stores with remote Git repositories to maintain consistency across distributed teams.
- Search for credentials within deep directory structures or across metadata fields.
Example Prompts
- "Generate a 32-character random password and store it under cloud/aws/root-account."
- "What is the current TOTP code for my github-personal entry?"
- "List all secrets in the work/projects/clients directory and copy the password for the primary database login to my clipboard."
Tips & Limitations
- Safety First: The skill is powerful; ensure you have appropriate GPG backups. Do not store the GPG master key on the same machine without appropriate physical security.
- Non-Interactive: When using this in scripted workflows, always include the
-fflag forgopass insertand useGOPASS_NO_NOTIFY=trueto prevent UI noise. - Clipboard Management: The
gopass show -ccommand is effective but sensitive. Ensure your OS clipboard manager is configured to clear sensitive data after a short timeout. - Performance: Large password stores with many mounts may take longer to sync; utilize
gopass syncperiodically to keep local state updated.
Metadata
Not sure this is the right skill?
Describe what you want to build — we'll match you to the best skill from 16,000+ options.
Find the right skillPaste this into your clawhub.json to enable this plugin.
{
"plugins": {
"official-erdgeclaw-gopass": {
"enabled": true,
"auto_update": true
}
}
}Tags(AI)
Flags: file-write, file-read