Remote OpenClaw
Menu

OpenClaw · Skill

1password

Follow the official CLI get-started steps. Don't guess install commands.

Security & Passwords
v1.0.1
VirusTotal: Benign

Install

Start with the primary install command. Alternate entrypoints are included below for ClawHub and OpenClaw CLI users.

Primary command

clawhub install steipete/1password

ClawHub installer

npx clawhub@latest install steipete/1password

OpenClaw CLI

openclaw skills install steipete/1password

Direct OpenClaw install

openclaw install steipete/1password
View source

What this skill does

Follow the official CLI get-started steps. Don't guess install commands.

Why it matters

Using op run and op inject keeps secrets out of shell history, environment files, and logs without any extra tooling.

Typical use cases

  • Injecting API keys from a vault into a deploy script
  • Signing into multiple 1Password accounts from the terminal
  • Running commands with secrets via op run without touching disk
  • Setting up 1Password CLI on a new machine
  • Verifying vault access before automated secret reads

Source instructions

1Password CLI

Follow the official CLI get-started steps. Don't guess install commands.

References

  • references/get-started.md (install + app integration + sign-in flow)
  • references/cli-examples.md (real op examples)

Workflow

  1. Check OS + shell.
  2. Verify CLI present: op --version.
  3. Confirm desktop app integration is enabled (per get-started) and the app is unlocked.
  4. REQUIRED: create a fresh tmux session for all op commands (no direct op calls outside tmux).
  5. Sign in / authorize inside tmux: op signin (expect app prompt).
  6. Verify access inside tmux: op whoami (must succeed before any secret read).
  7. If multiple accounts: use --account or OP_ACCOUNT.

REQUIRED tmux session (T-Max)

The shell tool uses a fresh TTY per command. To avoid re-prompts and failures, always run op inside a dedicated tmux session with a fresh socket/session name.

Example (see tmux skill for socket conventions, do not reuse old session names):

SOCKET_DIR="${CLAWDBOT_TMUX_SOCKET_DIR:-${TMPDIR:-/tmp}/clawdbot-tmux-sockets}"
mkdir -p "$SOCKET_DIR"
SOCKET="$SOCKET_DIR/clawdbot-op.sock"
SESSION="op-auth-$(date +%Y%m%d-%H%M%S)"

tmux -S "$SOCKET" new -d -s "$SESSION" -n shell
tmux -S "$SOCKET" send-keys -t "$SESSION":0.0 -- "op signin --account my.1password.com" Enter
tmux -S "$SOCKET" send-keys -t "$SESSION":0.0 -- "op whoami" Enter
tmux -S "$SOCKET" send-keys -t "$SESSION":0.0 -- "op vault list" Enter
tmux -S "$SOCKET" capture-pane -p -J -t "$SESSION":0.0 -S -200
tmux -S "$SOCKET" kill-session -t "$SESSION"

Guardrails

  • Never paste secrets into logs, chat, or code.
  • Prefer op run / op inject over writing secrets to disk.
  • If sign-in without app integration is needed, use op account add.
  • If a command returns "account is not signed in", re-run op signin inside tmux and authorize in the app.
  • Do not run op outside tmux; stop and ask if tmux is unavailable.

Related OpenClaw skills

Browse all →

OpenClaw Skill

Gandi Skill

2.1K1

OpenClaw Skill

Dashlane

1.8K1

OpenClaw Skill

Glin Profanity

1.5K1

OpenClaw Skill

Go Security Vulnerability

1.5K1
Featured slot

Your product here

Reserve this slot to reach operators and coding-agent buyers.

Shown where builders are actively comparing tools and deployment options.

Advertise