ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Openclaw Backup

v1.0.0

定期备份和加密保护 OpenClaw 数据,支持手动执行、定时调度及备份文件云端同步和校验。

0· 177·0 current·0 all-time
by@halaoluan
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Benign
medium confidence
Purpose & Capability
Name/description say 'backup OpenClaw data' and the repository contains shell scripts that copy ~/.openclaw and ~/.clawdbot, create tar.gz archives, optionally encrypt with openssl, produce SHA256 checksums, and offer cron setup and rsync/cloud copy examples — all coherent with the stated purpose.
Instruction Scope
Runtime instructions and scripts operate on expected paths (~/.openclaw, ~/.clawdbot), stop/start the OpenClaw gateway if present, and can add cron entries. This is within scope, but backups will contain sensitive items (API keys, tokens, memory files). The SKILL.md and scripts do not exfiltrate data by default, but they include examples to copy to cloud or remote servers (rsync/Cloud Drive) which — if used — will transfer those sensitive files.
Install Mechanism
No remote download/install step is declared; this is an instruction-only skill with plain shell scripts included. No obfuscated binaries or external archives are pulled during install. Low install risk.
Credentials
The skill does not declare required credentials. Scripts honor optional env vars (OPENCLAW_BACKUP_DIR, OPENCLAW_BACKUP_PASSWORD, OPENCLAW_BACKUP_SCRIPT) documented in README. That is reasonable. Important: backups contain API keys, tokens and channel data — encrypt before uploading or storing off-machine; the skill warns about this. Avoid setting passwords in plaintext environment variables unless you understand the risk.
Persistence & Privilege
always:false. The only persistent system change the skill can make is adding a crontab entry (setup_cron.sh) and writing files to the chosen backup directory and /tmp logs. Adding a cron job is expected for a backup tool but is a privileged action that should be performed with user confirmation.
Scan Findings in Context
[unicode-control-chars] unexpected: The static scan flagged unicode control characters in SKILL.md. This can be used for prompt-injection or rendering tricks. The rest of the content looks normal, but you should inspect SKILL.md and the repository files in a text editor that shows hidden/control characters before installing.
Assessment
This skill appears to do exactly what it claims: bundle and run shell scripts to copy and optionally encrypt your OpenClaw data and optionally schedule cron jobs. Before installing or running: 1) Inspect the scripts yourself (they are plain shell) and ensure you trust any sample remote hosts (rsync example uses backup.example.com). 2) Understand backups include sensitive secrets (API keys, bot tokens, memory); always use encrypted backups before uploading to cloud or remote servers and do not store passwords in plaintext env vars. 3) Running setup_cron.sh will modify your crontab — back up your crontab or confirm the change. 4) Address the static-scan flag: open SKILL.md in an editor that reveals hidden/control characters to ensure there is no hidden/injected content. If you need higher assurance, run the scripts manually step-by-step rather than enabling automated cron immediately.

Like a lobster shell, security has layers — review code before you run it.

latestvk97ebtff8fzgep0gx8jemwb9bd82t01j

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments