warn
suspicious.destructive_delete_command
- Location
- INSTALL.md:160
- Finding
- Documentation contains a destructive delete command without an explicit confirmation gate.
CC3PO System Healthcheck
AdvisoryAudited by Static analysis on May 10, 2026.
Overview
Detected: suspicious.destructive_delete_command
Findings (1)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
What this means
The skill can execute local diagnostic commands when the user runs it or schedules it, which may reveal local system state in console or log output.
Why it was flagged
The health check runs fixed local system commands such as systemctl, pgrep, lsof, launchctl, sysctl, and vm_stat to inspect services and resources.
Skill content
subprocess.Popen(["systemctl", "is-active", "cron"])
Recommendation
Use it only if you are comfortable with local system health checks, and review any cron output/log destinations you configure.
What this means
If enabled, the skill will keep running on a schedule and writing local logs until the user removes the cron entries.
Why it was flagged
The documentation tells users how to configure recurring cron jobs for heartbeat and health checks.
Skill content
*/30 * * * * cd $HEALTHCHECK_DIR && $PYTHON scripts/heartbeat.py >> $WORKSPACE/logs/heartbeat.log 2>&1
Recommendation
Only add the cron entries if you want ongoing monitoring, and remove them with `crontab -e` when uninstalling.
What this means
The script touches agent definition and memory files to confirm they are present and readable, though the provided code only reads a small amount for a readability test and does not output their contents.
Why it was flagged
The L1 check verifies existence/readability of OpenClaw workspace definition and memory-related files, including MEMORY.md.
Skill content
CRITICAL_FILES = ["SOUL.md", "IDENTITY.md", "AGENTS.md", "TOOLS.md", "MEMORY.md"]
Recommendation
Be aware that this health check accesses OpenClaw workspace metadata files; avoid running it in workspaces where even readability checks are not acceptable.
What this means
The runtime behavior appears coherent, but inconsistent package metadata makes provenance less clear.
Why it was flagged
The package metadata differs from the registry metadata shown for this review, which lists a different owner ID, slug, and version.
Skill content
"ownerId": "kn789sa18me1qs29zr4js4e6bn82q87a", "slug": "system-healthcheck", "version": "1.0.1"
Recommendation
Verify the publisher and repository before installing, especially because the artifact source is listed as unknown.
What this means
Running the uninstall command deletes the local skill directory.
Why it was flagged
The uninstall instructions include a destructive delete command, but it is user-directed and scoped to the skill's installation directory.
Skill content
rm -rf ~/.openclaw/skills/system-healthcheck
Recommendation
Before running the uninstall command, confirm the path is exactly the skill directory you intend to remove.