ClawHub

Healthcheck Ready

v1.0.0

Performs a quick risk posture check on the host and provides a concise snapshot of OpenClaw's security and readiness status.

0· 750·6 current·6 all-time
by@ankou11
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The name/description promise of a 'quick risk posture check' aligns with the shipped checks (disk, CPU load, memory, top processes, and presence of key services). However, SKILL.md's wording 'confirm OpenClaw is up-to-date and hardened' is not implemented: the script does not check package updates, versions, configuration hardening, file permissions, or CVEs. Overall capabilities are proportionate to a local healthcheck but the documentation overclaims a bit.
Instruction Scope
SKILL.md is a short scaffold that simply instructs running a healthcheck. The actual script only reads local system state via standard commands (df, uptime, free, ps, pgrep) and prints results. It does not access external endpoints, environment variables, or unrelated files. The minor scope issue is the mismatch described above (no update/hardening checks).
Install Mechanism
There is no install spec and the skill is instruction-only with a single shell script. Nothing will be downloaded or written by an installer. This is low risk from an install-mechanism perspective.
Credentials
The skill requests no environment variables, credentials, or config paths. The script runs only local, read-only system commands and checks process presence (pgrep). No secret access is requested or implied.
Persistence & Privilege
always:false and the skill has no install behavior or self-modification. The skill does not request persistent privileges or modify other skills or system configuration. It can be invoked by the agent but that is the platform default and not a problem here.
Assessment
This script appears benign and limited to local diagnostics: it checks disk/CPU/memory, lists top CPU processes, and looks for sshd, cron, and an 'openclaw-gateway' process. Before running, review the script (you already have its contents). Keep in mind: (1) it does not check whether software is up-to-date or systems are 'hardened' — if you need that, add package/version and configuration checks; (2) run it as a non-privileged user where possible (it reads system state but does not require root); (3) there are no network calls or credential access, so it does not exfiltrate data; (4) the SKILL.md is vague and overclaims scope—treat this as a lightweight local healthcheck, not a comprehensive security audit. If you want stronger guarantees, run it in a sandbox or extend it to include signed update/version checks and configuration validation.

Like a lobster shell, security has layers — review code before you run it.

latestvk978apt3dqtyd8kjkmqq7t0k6181jeme

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments