Agent State Backup
PassAudited by ClawScan on May 1, 2026.
Overview
This skill is a local backup/restore guide for agent state, and its sensitive file access and cron persistence are disclosed and aligned with that purpose.
Before installing or using this skill, verify the referenced backup, restore, and cron setup scripts on your machine. Treat the generated .tgz archives as sensitive because they may contain user details, memories, identity/personality files, and knowledge-base content. Restore only from trusted backups because it can overwrite the current agent state.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Backups may preserve private user information or old/poisoned agent context and carry it into a restored environment.
The backup includes long-term memory, daily memory, user information, and knowledge-base content, which may contain sensitive or behavior-shaping agent context.
- `MEMORY.md` - 长期记忆 - `memory/*.md` - 每日记忆 - `USER.md` - 用户信息 - `knowledge/**/*` - 知识库
Store backup archives securely, review what is included, and only restore archives you trust.
A restore could replace the current agent state with older or incorrect files.
The restore workflow is explicitly documented as overwriting current files, which is a high-impact but disclosed and purpose-aligned mutation.
恢复操作 - 会覆盖当前文件,建议先备份当前状态
Create a fresh backup before restoring and confirm the archive is the intended one.
Once enabled, backups may continue running daily until the cron entry is removed.
The skill sets up ongoing scheduled behavior via cron, but this persistence is clearly disclosed and central to the backup purpose.
设置自动备份 (每日凌晨 2 点) ```bash ~/.openclaw/workspace/scripts/setup-backup-cron.sh ```
Enable cron only if you want automatic backups, and check your crontab if you later want to disable it.
The security of the backup and restore operations depends on the local scripts that are not included in the reviewed artifact.
The skill references local helper scripts, while the supplied artifact set contains only SKILL.md and no script contents for review.
~/.openclaw/workspace/scripts/agent-backup.sh ~/.openclaw/workspace/scripts/agent-restore.sh ~/.openclaw/workspace/scripts/setup-backup-cron.sh
Inspect the referenced scripts before running them, especially because they handle agent memory and overwrite state during restore.