Skillv1.0.0

ClawScan security

maxclaw-doctor · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignMar 15, 2026, 12:24 PM

Verdict: Benign
Confidence: medium
Model: gpt-5-mini
Summary: The skill's code, instructions, and requested resources are consistent with a local file-versioning/protection utility; it reads and modifies local files and creates backups under ~/.openclaw/minivcs, which matches its stated purpose.
Guidance: This skill appears coherent with its stated purpose: it includes a local Python script that implements diffs, snapshots, trash, and retention policies and SKILL.md shows how to invoke it. Before installing/using: - Understand it operates on arbitrary file paths and will read/copy/move files under your user account; it will create ~/.openclaw/minivcs/ and store backups there. Back up critical data separately before first use. - SKILL.md suggests commands that fetch and run remote installers (Homebrew via curl|bash) and appends exports into shell rc files; review those commands yourself and avoid running remote install scripts blindly. - The tool treats files in your home and system paths as "important" (longer retention). If you plan to use it on system directories (/etc, root) be aware it may attempt file operations that require elevated permissions — run only with appropriate privileges. - If you have security concerns, review the full minivcs.py source (it's included) before invoking, and run it in a safe environment (container or non-production VM) to confirm behavior. Overall this skill is internally consistent with a local file-versioning utility, but because it manipulates local files (including potentially sensitive ones) follow the above precautions.

Review Dimensions

Purpose & Capability: okName/description (file protection, versioning, restore) match the provided Python implementation and SKILL.md. There are no unrelated environment variables, external credentials, or surprising install steps required by the skill itself. The included minivcs.py implements diffs, snapshots, trash/backups and retention as advertised.
Instruction Scope: noteSKILL.md instructs the agent/user to run the shipped Python script and to check/install Python. It also provides shell commands that download and execute remote installers (Homebrew) and writes export lines into shell rc files — these are typical for guiding Python installation but are actions that modify user shell configuration and would execute remote code if run. The core runtime instructions (record, delete, restore) operate on arbitrary file paths and will read/move/copy files across the filesystem (including user home and system paths), which is expected for this tool but is sensitive by nature.
Install Mechanism: okNo install spec; this is instruction-only with a local Python script included. Nothing in the manifest downloads or installs third-party code automatically. The only potentially remote commands are suggested in the SKILL.md for the user to install Homebrew/Python manually (via curl|bash), which the skill does not itself perform.
Credentials: okThe skill requests no environment variables or external credentials. It does access filesystem paths (and treats home/C: and /etc etc. as 'important'); that file-system access is proportional to a versioning/backup tool but does mean the skill can read and copy arbitrary local files when invoked.
Persistence & Privilege: okThe skill does not request always:true and does not modify other skills or global agent settings. It stores its data under ~/.openclaw/minivcs/, which is self-contained. The SKILL.md suggests writing shell environment variables only when advising Homebrew mirrors — that modifies user shell configs but is an optional installation hint, not an automatic persistent privilege requested by the skill.