ClawHub
Back to skill
v1.0.0

Config Safe

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 5:29 AM.

Analysis

This instruction-only skill is coherent and safety-focused, but users should notice that it can guide persistent OpenClaw configuration changes and may handle configuration secrets.

GuidanceThis skill appears safe to install if you want guided OpenClaw configuration edits. Before approving any change, review the before/after preview, ensure secrets are masked, prefer config.patch over config.apply, and be prepared to use openclaw doctor or manual config repair if the Gateway fails to restart.

Findings (2)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation
SeverityMediumConfidenceHighStatusNote
SKILL.md
openclaw gateway call config.patch ... # 全量替换 ... openclaw gateway call config.apply ... 写入成功后 Gateway 会自动重启。

The skill instructs use of OpenClaw CLI methods that can persistently change configuration and restart the Gateway. This is aligned with the skill purpose and guarded by preview/confirmation steps, but it is still high-impact authority users should notice.

User impactA confirmed change could alter OpenClaw behavior or temporarily break Gateway communication if the configuration is wrong.
RecommendationOnly approve changes after reviewing the preview, prefer partial patches over full replacement, and keep a way to recover the configuration.
Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse
SeverityLowConfidenceHighStatusNote
SKILL.md
channels.telegram.botToken: [已隐藏] ... botToken: "your-token"

The skill may handle configuration values that include service credentials such as Telegram bot tokens. It explicitly shows masking in previews, which is appropriate, but users should be aware that credentials may be present in the config being read or changed.

User impactThe agent may see or modify service tokens stored in OpenClaw configuration while helping with setup.
RecommendationMake sure sensitive values remain masked in previews and do not paste or approve unnecessary credential changes.