Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
The skill claims to coordinate multiple sub-agents (Hub/Spoke). The included script implements a coordinator health/status check by reading workflow, gate, skills, and task-status files under the agent workspace. These file accesses and checks are consistent with a coordinator's purpose.
Instruction Scope
SKILL.md describes task decomposition and coordination but does not explicitly mention running the included shell script. The script reads agent workspace files (e.g., /root/.openclaw/workspace/.workflow, /root/.openclaw/workspace/skills, /root/.openclaw/workspace/.dream/task-state.json and /tmp lock files) and writes a local state file. That file I/O is relevant to coordination, but users should be aware the skill inspects other files under the workspace.
Install Mechanism
There is no install spec or external download — the skill is instruction-only with a bundled script. No network installs or third-party package pulls are present.
Credentials
The skill does not request environment variables or credentials. It does read and write files under /root/.openclaw/workspace and /tmp; this is proportionate to a coordinator but means it can observe other skills' workspace files, so verify no sensitive secrets are stored there.
Persistence & Privilege
always:false (normal). The script creates and writes a persistent state file at /root/.openclaw/workspace/.coordinator/state.json. This is confined to the OpenClaw workspace and does not modify other skills' configurations, but it does create persistent data on disk.
Assessment
This skill appears to do what it claims: it inspects the agent workspace and reports coordinator health, and writes a local state file. Before installing, review whether your OpenClaw workspace (/root/.openclaw/workspace) contains any secrets or sensitive files, since the script enumerates the skills directory and reads JSON files there. If you run agents under a different user or directory, confirm the paths are acceptable or adjust them. Also note SKILL.md doesn't explicitly document the bundled script, so if you want to limit file access, consider inspecting or sandboxing the script (or running it manually) before allowing autonomous agent invocation.Like a lobster shell, security has layers — review code before you run it.
latestvk97cbf7e3kfe9nsv1mwen65a4584cvy8
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
Runtime requirements
🤖 Clawdis