v0.1.0

OpenClaw Cost Guard (Budgets + Token-Saving Playbook)

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 5:17 AM.

Analysis

This skill is a coherent local cost-reporting tool that reads OpenClaw/Clawdbot session logs and does not show exfiltration, destructive actions, or hidden behavior.

GuidanceThis appears safe for local cost monitoring. Before installing, note that it reads OpenClaw/Clawdbot session logs and may include session IDs or file paths in JSON reports, so avoid sharing outputs publicly or sending them to alerting services without review.

Findings (2)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation

SeverityInfoConfidenceHighStatusNote

SKILL.md

The extractor can run as a **budget check** ... `python3 {baseDir}/scripts/extract_cost.py --today --budget-usd 5` ... exits with code **2**

The skill provides a local command intended for budget enforcement and optional alerting. This is disclosed and central to the purpose, but users should understand the exit-code behavior before wiring it into automation.

User impactIf connected to cron or alerts, the script can trigger automated notifications or failing checks when spending exceeds the chosen budget.

RecommendationSet budgets deliberately, test with `--budget-mode warn` first, and avoid sending report output to external services unless you have reviewed it.

Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Memory and Context Poisoning

SeverityLowConfidenceHighStatusNote

SKILL.md

Prefer **session JSONL** logs ... OpenClaw: `~/.openclaw/agents/*/sessions/*.jsonl` ... Legacy/compat: `~/.clawdbot/agents/*/sessions/*.jsonl`

The skill is designed to read persistent local agent session logs. This is purpose-aligned for cost reporting, but those directories can contain private usage history.

User impactRunning the tool will access local agent session logs and may reveal usage patterns, session identifiers, or file paths in reports.

RecommendationUse it only on machines where you are comfortable reading these logs, and review generated JSON or dashboard output before sharing it externally.