Skillv1.0.2

ClawScan security

Config Rollback · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignMar 16, 2026, 4:23 PM

Verdict: Benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's files, instructions, and requested actions are consistent with a local config-backup-and-rollback utility; it modifies the user's home (creates ~/.openclaw/*), installs a per-user cron job, and invokes the local openclaw CLI — all of which match the stated purpose.
Guidance: This skill appears internally consistent and implements a local backup-and-rollback flow. Before enabling or running the installer, review the provided scripts yourself (prepare-config-change.sh, rollback-guardian.sh, install.sh, config-alias.sh). Note the script will: - copy files into ~/.openclaw and create ~/.openclaw/backups - add a per-user cron job that runs every minute (crontab modification) - invoke the local openclaw CLI to check status and restart the gateway - automatically copy the most recent backup back to ~/.openclaw/openclaw.json after a 5-minute timeout Actions you may want to take first: - Inspect the scripts to confirm they contain only the shown behavior and no additional commands or network calls. - Backup your existing ~/.openclaw/openclaw.json and your current crontab (crontab -l > crontab.bak). - Confirm the openclaw CLI behaves as expected on your system (openclaw gateway status/restart). - Be aware the scripts use date -v+5M which is BSD/macOS-specific and may behave differently on some Linux distributions; test in a safe environment. If you trust the author and are comfortable with the cron-based guardian behavior, the skill is coherent for its stated purpose. If you do not trust the source, do not run the install script and inspect the code in a sandbox first.

Review Dimensions

Purpose & Capability: okName/description (config backup, timeout protection, automatic rollback) match the provided scripts and README. Required binary is only bash and the scripts act on ~/.openclaw and the openclaw CLI, which is appropriate for the stated purpose.
Instruction Scope: okSKILL.md and the shell scripts confine their actions to the user's home (~/.openclaw), workspace docs, /tmp logs, and the local openclaw CLI. They create backups, write a state file, update a PENDING_VERIFICATION.md, and call openclaw gateway status/restart — all within the expected scope.
Install Mechanism: okNo network downloads or external installers are used. An install.sh is provided that copies bundled scripts into ~/.openclaw and adds a cron entry. This is a typical local, instruction-only install and not disproportionate to the feature set.
Credentials: okThe skill requests no environment variables or external credentials. It writes files under the user's home and updates the user's crontab — these are necessary for the stated functionality and are proportionate.
Persistence & Privilege: noteThe install script modifies the user's crontab to run rollback-guardian.sh every minute and installs scripts under ~/.openclaw. This is expected for a guardian service but is a persistent change the user should explicitly review before enabling.