Agent State Backup
PassAudited by VirusTotal on May 9, 2026.
Overview
Type: OpenClaw Skill Name: agent-state-backup Version: 1.0.0 The skill bundle describes high-risk operations including shell script execution and persistence via cron jobs for agent state backup. However, the actual script files (agent-backup.sh, agent-restore.sh, and setup-backup-cron.sh) are missing from the bundle, preventing a full security audit of the commands being executed or the potential for data exfiltration.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Backups may preserve private user information or old/poisoned agent context and carry it into a restored environment.
The backup includes long-term memory, daily memory, user information, and knowledge-base content, which may contain sensitive or behavior-shaping agent context.
- `MEMORY.md` - 长期记忆 - `memory/*.md` - 每日记忆 - `USER.md` - 用户信息 - `knowledge/**/*` - 知识库
Store backup archives securely, review what is included, and only restore archives you trust.
A restore could replace the current agent state with older or incorrect files.
The restore workflow is explicitly documented as overwriting current files, which is a high-impact but disclosed and purpose-aligned mutation.
恢复操作 - 会覆盖当前文件,建议先备份当前状态
Create a fresh backup before restoring and confirm the archive is the intended one.
Once enabled, backups may continue running daily until the cron entry is removed.
The skill sets up ongoing scheduled behavior via cron, but this persistence is clearly disclosed and central to the backup purpose.
设置自动备份 (每日凌晨 2 点) ```bash ~/.openclaw/workspace/scripts/setup-backup-cron.sh ```
Enable cron only if you want automatic backups, and check your crontab if you later want to disable it.
The security of the backup and restore operations depends on the local scripts that are not included in the reviewed artifact.
The skill references local helper scripts, while the supplied artifact set contains only SKILL.md and no script contents for review.
~/.openclaw/workspace/scripts/agent-backup.sh ~/.openclaw/workspace/scripts/agent-restore.sh ~/.openclaw/workspace/scripts/setup-backup-cron.sh
Inspect the referenced scripts before running them, especially because they handle agent memory and overwrite state during restore.