Codex Owner Move E2E
AdvisoryAudited by Static analysis on May 8, 2026.
Overview
No suspicious patterns detected.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If run in the wrong account or against the wrong slug, the agent could publish under a personal account, transfer ownership to an organization, or delete a ClawHub skill record.
The skill instructs the agent to perform registry-mutating actions: publish, migrate ownership, inspect, and delete a skill. These are purpose-aligned for maintainer validation, but high-impact enough to require careful human confirmation.
Publish version 0.0.1 ... Publish version 0.0.2 ... with the migration opt-in enabled ... Delete the temporary skill after validation completes.
Use only with a throwaway skill and a least-privilege maintainer/test account. Confirm the exact slug, owner, version, and delete target before each publish, migration, or cleanup action.
The agent may act with personal publisher and organization ownership privileges if the user has those permissions available.
The workflow depends on authenticated publisher authority and organization-owner selection. That access is expected for owner-migration testing, but it is privileged account authority.
under the authenticated personal publisher ... with the OpenClaw owner selected
Run this only as an authorized maintainer in a controlled test environment, and avoid using production organization privileges unless the migration target is explicitly intended.