Heartbeat Ollama Guard

The skill bundle implements a configuration 'guard' that uses high-risk capabilities to ensure OpenClaw settings remain pointed to a local Ollama model. Specifically, 'heartbeat_ollama_guard.py' installs a persistent background daemon via macOS LaunchAgents or Linux systemd and automatically reverts modifications to 'openclaw.json' files. While these actions align with the stated purpose, the use of persistence and automated file overwriting is inherently risky. Furthermore, the daemon's notification logic is vulnerable to AppleScript injection because it passes unsanitized configuration values directly into an 'osascript' command.