Skillv1.0.0

ClawScan security

Neckr0ik Session Healer · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignMar 6, 2026, 9:51 PM

Verdict: benign
Confidence: medium
Model: gpt-5-mini
Summary: The skill's files and instructions are coherent with its stated purpose (detecting and clearing stale OpenClaw session locks) and do not request extra credentials or external installs, but you should review the full script and run with dry-run/backups before granting it access to live session data.
Guidance: This skill appears to do what it says: find stale .jsonl.lock files, check owning PIDs, remove stale locks, and recover/bak session files. Before installing or running: 1) Inspect the full scripts/healer.py (confirm there are no network calls or unexpected behaviors such as HTTP requests, telemetry, or exec/spawning of arbitrary commands). 2) Run in --dry-run mode first and verify reported targets. 3) Ensure recent backups of ~/.openclaw exist (the tool creates backups, but keep your own). 4) Avoid using --force unless you understand the risk of clearing locks for live processes (can cause data corruption). 5) If you allow the agent to invoke this skill autonomously, prefer limiting its scope or require manual confirmation for destructive actions. If you want higher assurance, provide the remaining truncated portion of healer.py for a complete review (my confidence is medium because a portion of the source was truncated in the supplied content).

Purpose & Capability: okName, description, SKILL.md, and the included healer.py all focus on scanning ~/.openclaw/agents/*/sessions for .jsonl.lock files, checking PIDs, removing stale locks, and recovering session files — the required actions match the stated purpose and no unrelated credentials/binaries are requested.
Instruction Scope: noteInstructions and code operate only on the OpenClaw session directory and session files (checking PIDs, unlinking lock files, backing up and sanitizing session JSONL). SKILL.md references a CLI name (neckr0ik-session-healer) but no install mechanism is provided — the shipped healer.py appears to be the implementation. The script reads and modifies session content (expected for recovery) so run with care and use --dry-run/backups first.
Install Mechanism: okNo install spec or external downloads are present — this is an instruction-only skill with an included Python script, which minimizes install risk. Nothing is fetched from remote URLs in the provided artifacts.
Credentials: okThe skill declares no required env vars, credentials, or config paths beyond the OpenClaw home (~/.openclaw). That access is proportional to its job of fixing session files.
Persistence & Privilege: okalways is false and there is no indication the skill modifies other skills or system-wide configuration. It acts on local files only and does not demand persistent elevated privileges in the provided material.