Codex Profiler

This package broadly does what it says (usage checks and OAuth helper), but there are important inconsistencies and risky behaviors you should consider before installing or running it: - Inconsistency: SKILL.md says prefer gateway-native commands and avoid hand-editing auth files, yet the included scripts do direct writes to ~/.openclaw/auth-profiles.json and OPENCLAW config and create/execute shell scripts that copy/replace those files and restart the gateway. - System effects: The scripts call pkill, spawn openclaw-gateway via nohup or systemd-run, and write staged files in /tmp. These are system-level operations that can affect your running gateway and auth state—backup first. - Review & test: Inspect the full scripts yourself (or with a trusted engineer). If you plan to run mutation/apply actions, test in a non-production environment or on a throwaway agent account first. - Operational safeguards: Require manual confirmation before any 'apply' or 'hard delete' action, keep backups of ~/.openclaw/*, and prefer running usage-only/read-only commands initially. Consider disabling autonomous invocation for mutation paths or enforcing a human-in-the-loop confirmation (especially for deletes or gateway restarts). - Ask the author: Request clarification on why scripts perform direct file writes and gateway restarts despite the SKILL.md guidance; ask for a mode that strictly uses only the gateway-native CLI commands without direct file mutation. - Note about code quality: There are signs of sloppy/unfinished code (a truncated/misspelled token in the gateway-start section) that may cause runtime errors; this suggests the code may not have been thoroughly tested in your environment. If you do not trust the author or cannot safely test in a sandbox, avoid granting this skill the ability to perform apply/delete operations.