OpenClaw Integration

Give your local AI assistant secure access to ephemeral secrets. The @sirrlock/openclaw-skill workspace skill connects OpenClaw to your Sirr server, letting you push, retrieve, and manage secrets through natural language.

View on GitHub →

Installation

Install the skill from npm:

npm install @sirrlock/openclaw-skill

Then add it to your OpenClaw workspace skills:

// openclaw.config.js
module.exports = {
  skills: [
    "@sirrlock/openclaw-skill"
  ]
};

Configuration

The skill reads configuration from its skill.json manifest. Set these in your OpenClaw workspace config:

Field	Description	Default
serverUrl	Base URL of your Sirr server	http://localhost:39999
token	Bearer token (master key or scoped API key)	—

// skill config example
{
  "serverUrl": "https://sirr.example.com",
  "token": "your-api-key"
}

Triggers

The skill activates when it detects keywords like secret, sirr, credential, or burn after read in your conversation. You can also invoke it directly.

Operations

The skill exposes the same 13 operations as the Sirr MCP server:

Category	Operations
Secrets	Get, Push, List, Delete, Prune
Audit	Query events
Webhooks	Create, List, Delete
API Keys	Create, List, Delete
Server	Health Check

Example Usage

Once installed, just talk to your OpenClaw assistant naturally:

> Store my database password as a secret that expires in 1 hour

✓ Secret stored with key "db-password"
  Expires: 1 hour | Max reads: unlimited

> Get the secret "db-password"

✓ Secret retrieved:
  Value: postgres://admin:[email protected]/mydb
  ⚠ This secret has been read 1 time

> Show me the audit log for the last hour

✓ 3 events found:
  • secret.create  db-password  10:30:01
  • secret.read    db-password  10:31:15
  • secret.delete  api-token    10:45:22

Contribute

The OpenClaw skill is open source under the MIT license. Bug reports, feature requests, and pull requests are welcome.

github.com/sirrlock/openclaw-skill →