System Vigil
PassAudited by ClawScan on May 1, 2026.
Overview
System Vigil appears benign: it runs fixed local health-check commands and prints system metrics as JSON, with no evidence of credential use, network transfer, persistence, or data mutation.
This skill is suitable if you want the agent to check local disk, memory, and CPU load. It appears read-only and limited to system metrics, but those metrics may be included in the agent conversation or downstream outputs.
Findings (1)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent can learn basic host resource information such as disk usage, memory usage, and load average.
The script executes fixed, read-only local health-check commands and reads a kernel metrics file. This is directly aligned with the stated monitoring purpose and does not use user-controlled command arguments.
subprocess.check_output(['df', '-h', '/']) ... subprocess.check_output(['free', '-m']) ... open('/proc/loadavg', 'r')Install if you are comfortable sharing local system health metrics with the agent; no special credentials or elevated permissions are indicated by the artifacts.