ClawHub

Safe Cron Runner

v1.0.2

Executes background tasks safely by dropping privileges and enforcing timeouts. Includes ISNAD signed manifest.

0· 343·2 current·2 all-time
by@horn111
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
medium confidence
Purpose & Capability
Name/description match the code: the module drops privileges when run as root, enforces a timeout, runs subprocesses without shell=True, and logs results. No unexpected binaries, env vars, or external services are requested.
Instruction Scope
SKILL.md describes exactly the behaviors implemented in safe_cron.py. However, SKILL.md does not call out that the runner writes an audit log to /tmp/safe_cron.log containing the joined command string and stdout/stderr previews — this can leak arguments or sensitive data. Also the bundle includes an ISNAD manifest and PGP signature, but the runtime code does not verify the manifest or signature.
Install Mechanism
There is no install spec (instruction-only skill) and no downloads. The only code is included in the package; nothing is fetched from external URLs during install.
Credentials
The skill requests no environment variables or credentials. A minor proportionality concern: it writes logs to /tmp (world-writable area on many systems), potentially exposing commands/arguments and output. Privilege dropping only takes effect when the process is started as root; otherwise it's a no-op (this is expected but worth noting).
Persistence & Privilege
always:false and no install hooks or configuration changes are requested. The skill does allow subprocess execution (normal for a cron runner); autonomous invocation is allowed by default but not in itself a red flag here.
Assessment
This skill appears to do what it claims and does not ask for credentials or network access. Before installing, consider: (1) Logs: the runner appends executed commands and output previews to /tmp/safe_cron.log — avoid passing secrets or sensitive arguments to commands you run with this skill, and if you adopt it, change the log path and tighten permissions. (2) Privilege drop: the code only drops privileges when started as root (expected behavior); validate that your runtime environment behaves as you expect. (3) ISNAD manifest: a signed manifest is included but the code does not verify it at runtime — if provenance matters, verify the signature externally. (4) Audit: review/monitor agent use of this skill before allowing autonomous invocations to ensure it isn't used to run unexpected commands. If you want stronger privacy, modify the code to sanitize logged arguments and to write logs to a controlled location with restricted permissions.

Like a lobster shell, security has layers — review code before you run it.

Runtime requirements

🛡️ Clawdis
latestvk9785ge185e0maha4fc786d9zs8292nz
343downloads
0stars
3versions
Updated 1mo ago
v1.0.2
MIT-0
@horn111
latest
Download

Safe Cron Runner 🛡️

A secure background task executor for AI Agents.

Overview

This skill wraps background task execution to ensure that autonomous agents don't accidentally (or maliciously) execute long-running or privileged commands.

Key Protections

  1. Privilege Dropping: Automatically drops root privileges (switches to nobody) before executing the subprocess.
  2. Strict Timeouts: Enforces hard timeouts to prevent infinite loops or resource exhaustion.
  3. Shell Injection Protection: Uses list-based command execution (subprocess without shell) to prevent common command injection attacks.
  4. Transparent Logging: Separates and logs stdout, stderr, and execution status for auditability.

ISNAD Signed

This skill includes an ISNAD manifest (isnad_manifest.json) verifying the integrity of the release.

Usage

from safe_cron import SafeCronRunner

runner = SafeCronRunner(safe_user="nobody", timeout_sec=60)

# Execute command as a list for safety
result = runner.run_task(["ls", "-la", "/tmp"])
print(result)

Comments

Loading comments...