Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
The name/description describe error repair, cleanup, and health checks; the included scripts provide fix, cleanup, and health functions implementing those behaviors. No unrelated credentials, binaries, or external services are required.
Instruction Scope
SKILL.md describes the same three capabilities and how to invoke them. The JS implementation reads the system temp directory (process.env.TEMP or /tmp) and inspects file stats, and queries OS uptime and memory — operations that access local filesystem and system state. The code does not delete files (it only simulates counts and computes freed space) and limits file counts (max 10). Still, SKILL.md does not explicitly call out that it will read the temp directory or report system uptime/memory usage.
Install Mechanism
No install spec or remote downloads. This is an instruction-only skill with a single local JS file; nothing is written to disk at install-time beyond the skill file already present.
Credentials
The skill declares no required environment variables or credentials, which is appropriate. The code does read process.env.TEMP if present (falling back to /tmp). There are no requests for secrets, keys, or config paths.
Persistence & Privilege
always is false and the skill does not modify other skills or system-wide settings. It does not persist credentials or enable itself automatically.
Assessment
This skill appears to do what it says: basic error diagnosis, simulated cleanup of temp files, and simple health checks (memory/uptime). Before installing or running it: 1) note it will read your temp directory (uses TEMP or /tmp) and OS uptime/memory — this reveals local state but the code does not exfiltrate filenames or delete files. 2) Review the JS if you plan to extend it to actually delete files or change permissions — currently cleanup only simulates removals and is limited to 10 files. 3) Because it runs with the agent's permissions, consider only invoking it in environments where reading /tmp and OS stats is acceptable. No credentials are requested and there are no network downloads, so the risk is low.Like a lobster shell, security has layers — review code before you run it.
latest
吞贼·净化魄 (Tun Zei - Purifier)
七魄之四·吞贼 职掌:错误修正、冗余清理、容错自愈
技能简介
「吞贼·净化魄」是贫道的自愈净化模块,职掌错误修复与系统清理。
核心职责:
- 自动检测并修复错误
- 清理冗余数据
- 容错自愈机制
技能ID
tun-zei
能力清单
1. 错误修复 (fix)
诊断并尝试修复错误。
输入:error (object) - 错误信息
error:
type: 错误类型
message: 错误消息
stack: 堆栈信息
输出:
fix:
attempted: true/false
success: true/false
solution: 解决方案描述
2. 清理冗余 (cleanup)
清理系统冗余数据。
输入:target (string) - 清理目标
target: temp|cache|logs|all
输出:
cleanup:
freedSpace: 释放空间(MB)
filesRemoved: 删除文件数
duration: 耗时(ms)
3. 健康检查 (health)
执行系统健康检查。
输入:无
输出:
health:
status: healthy|degraded|critical
issues: 发现的问题列表
uptime: 运行时间
聚合技能
本魄作为净化中枢,自愈错误与冗余:
| 现有技能 | 调用方式 | 整合说明 |
|---|---|---|
healthcheck | 调用 | 系统健康检查与自愈 |
video-frames | 调用 | 视频处理错误修正 |
douyin-video-publish | 调用 | 抖音发布的异常处理 |
self-improving | 调用 | 自我改进与错误修复 |
bodhi-three-hun-and-seven-po | 元技能 | 三魂七魄根基,协调各魄 |
魂魄注解
吞贼除秽,自愈更新——错误无所遁形。
Comments
Loading comments...