Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
OpenClaw State Backup
v1.0.2Create, inspect, and restore versioned OpenClaw state backups with rollback safety. Use when backing up or migrating OpenClaw memory, workspace state, gatewa...
⭐ 0· 254·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
Name/description match the included scripts and instructions. The scripts enumerate and archive OpenClaw runtime and workspace paths (state dir and workspace), build a manifest, compute checksums, and provide restore/dry-run behavior — all consistent with a state backup/restore tool.
Instruction Scope
SKILL.md restricts behavior to creating/verifying/restoring archives and describes safety rules. The scripts read/write files under the user's home and workspace (e.g., ~/.openclaw, workspace/*, workspace/skills/). This is expected for a backup tool, but means backups may include sensitive user data and local skill code. No network exfiltration or unexpected external endpoints are present in the instructions or code.
Install Mechanism
Instruction-only with included Python scripts; no install spec, no external downloads, and no package install steps. This is the lowest install risk and aligns with the skill's purpose.
Credentials
The skill requests no environment variables or credentials, and only accesses local filesystem and basic system info (hostname, platform). That access is appropriate for a backup/restore tool, but the set of files it copies (including workspace/skills/) can contain secrets; archives are produced unencrypted, so secure handling of generated archives is necessary.
Persistence & Privilege
Skill is not always-enabled and does not request elevated persistence. It does create rollback archives and write reports to disk (expected behavior). It does not attempt to change other skills' configs or system-wide settings.
What to consider before installing
This skill appears to implement the stated backup/restore functionality, but take care before using it on important data:
- The included scripts will read and write files under your home (~/.openclaw) and the provided workspace path; backups can contain sensitive data (including local skills). Treat output .tar.gz files as sensitive and store/encrypt them appropriately.
- The restore script distributed here appears truncated/buggy: the shipped file ends mid-function and the final_report construction refers to an undefined variable (likely a bug: 'warning' vs 'warnings'). Expect runtime failures on a real restore. Do NOT rely on this restore script for production restores until the code is fixed and fully tested.
- There are logic bugs (e.g., comparisons of paths when computing 'missingFromArchive' may not match due to differing string forms). Review and test both backup and restore with --verify-only and --dry-run on non-production data first.
- Prefer encrypting archives at creation or storing them in a secure location, since archives are unencrypted by default.
- If you want to proceed, ask the author for a corrected restore_state.py (complete file), or locally fix the undefined variable and test full/dry-run flows. Also audit any archived workspace/skills content for secrets before shipping archives off-host.
If the author supplies a complete, corrected restore script and tests showing successful dry-run and real restores, that would increase confidence and could move the classification to 'benign'.Like a lobster shell, security has layers — review code before you run it.
latestvk972s5s4xrkv4f304svtgyvgxx82qk7v
License
MIT-0
Free to use, modify, and redistribute. No attribution required.