CC3PO System Healthcheck
PassAudited by ClawScan on May 9, 2026.
Overview
This appears to be a disclosed local system health monitor; it uses scheduled local checks and shell utilities, but the provided artifacts do not show hidden exfiltration or malicious behavior.
This skill looks suitable if you want local OpenClaw/system monitoring. Review the cron setup before enabling it, confirm log locations, verify the publisher/repository because metadata is inconsistent, and be careful with the manual `rm -rf` uninstall command.
Findings (5)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The skill can execute local diagnostic commands when the user runs it or schedules it, which may reveal local system state in console or log output.
The health check runs fixed local system commands such as systemctl, pgrep, lsof, launchctl, sysctl, and vm_stat to inspect services and resources.
subprocess.Popen(["systemctl", "is-active", "cron"])
Use it only if you are comfortable with local system health checks, and review any cron output/log destinations you configure.
If enabled, the skill will keep running on a schedule and writing local logs until the user removes the cron entries.
The documentation tells users how to configure recurring cron jobs for heartbeat and health checks.
*/30 * * * * cd $HEALTHCHECK_DIR && $PYTHON scripts/heartbeat.py >> $WORKSPACE/logs/heartbeat.log 2>&1
Only add the cron entries if you want ongoing monitoring, and remove them with `crontab -e` when uninstalling.
The script touches agent definition and memory files to confirm they are present and readable, though the provided code only reads a small amount for a readability test and does not output their contents.
The L1 check verifies existence/readability of OpenClaw workspace definition and memory-related files, including MEMORY.md.
CRITICAL_FILES = ["SOUL.md", "IDENTITY.md", "AGENTS.md", "TOOLS.md", "MEMORY.md"]
Be aware that this health check accesses OpenClaw workspace metadata files; avoid running it in workspaces where even readability checks are not acceptable.
The runtime behavior appears coherent, but inconsistent package metadata makes provenance less clear.
The package metadata differs from the registry metadata shown for this review, which lists a different owner ID, slug, and version.
"ownerId": "kn789sa18me1qs29zr4js4e6bn82q87a", "slug": "system-healthcheck", "version": "1.0.1"
Verify the publisher and repository before installing, especially because the artifact source is listed as unknown.
Running the uninstall command deletes the local skill directory.
The uninstall instructions include a destructive delete command, but it is user-directed and scoped to the skill's installation directory.
rm -rf ~/.openclaw/skills/system-healthcheck
Before running the uninstall command, confirm the path is exactly the skill directory you intend to remove.