Cloud
PassAudited by VirusTotal on May 12, 2026.
Overview
Type: OpenClaw Skill Name: cloud Version: 1.0.0 The skill bundle consists solely of documentation files (.md) and metadata (_meta.json). All content is informational, providing helpful advice and comparisons for managing personal cloud storage services (iCloud, Google Drive, Dropbox, OneDrive). There is no executable code, no prompt injection attempts in SKILL.md or other files, and no instructions that would lead an AI agent to perform any unauthorized or harmful actions. The documentation actively promotes good security practices, such as enabling 2FA and not storing sensitive data unencrypted. The skill's scope is clearly defined and limited to consumer cloud services.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Deleting or emptying trash in a cloud service can remove files across devices or make recovery harder.
The skill correctly notes that cloud sync can propagate deletions across devices; its cleanup guidance should therefore be followed only after confirming backups.
A local backup protects against account lockouts, service shutdowns, or accidental deletion that syncs everywhere.
Before following cleanup steps, verify that important files are backed up locally or elsewhere and understand how the chosen cloud service syncs deletions.
Choosing broad link access or editor permissions can expose personal files or allow recipients to change or delete shared items.
The sharing guidance describes permissions that can expose files broadly or allow others to modify/delete shared content. This is expected for a cloud-sharing skill, but it is a meaningful permission boundary.
"Anyone with link" = anyone who has the URL ... Editor | View + modify + delete
Use the most restrictive sharing option that works, prefer specific people over public links for private files, and review/remove old shares periodically.