Openclaw Vault
v1.0.2Credential lifecycle security for agent workspaces. Audit credential exposure, detect misconfigured permissions, inventory all secrets, and identify stale credentials needing rotation. Free alert layer — upgrade to openclaw-vault-pro for automated remediation, credential rotation, and access control.
⭐ 5· 1.4k·5 current·5 all-time
by@atlaspa
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
Name/description (credential lifecycle auditing) matches the shipped script's capabilities (scanning permissions, history, git, configs, docker, staleness). Requiring only python3 is proportionate. However the repository and README advertise additional remediation/automation features and the included script exposes commands to change files (fix-permissions, quarantine, protect) that go beyond the read-only audit commands shown in SKILL.md's Commands section — this inconsistency should be explained by the author.
Instruction Scope
SKILL.md instructs running audit/exposure/inventory/status and documents local-only operation. The script itself (vault.py) includes additional subcommands that can modify or move files (fix-permissions, quarantine, unquarantine, protect, rotate-check, gitguard). The skill auto-detects a workspace via OPENCLAW_WORKSPACE / cwd / ~/.openclaw/workspace and will scan sensitive locations (shell histories, git, configs) — this is expected for an auditor but is invasive. SKILL.md does not declare OPENCLAW_WORKSPACE as a required env var, and the docs differ between README, SKILL.md, and the code, which increases the chance an agent or user will run a modifying command unintentionally.
Install Mechanism
No install spec — instruction-only with an included Python script. That is low-risk relative to arbitrary network installs. The code claims to use only Python stdlib and the file headers/imports shown are consistent with local-only operation (no obvious network libraries).
Credentials
The skill declares no required credentials or env vars. It does optionally read OPENCLAW_WORKSPACE for workspace auto-detection (documented in SKILL.md), which is reasonable. No unexpected cloud credentials or unrelated secrets are requested.
Persistence & Privilege
always:false (no forced persistent inclusion). The script can write to the filesystem (quarantine, fix-permissions, protect); those side-effectful commands are appropriate for remediation features but increase risk if invoked inadvertently. There's no evidence the skill modifies other skills or global agent configs.
What to consider before installing
This skill appears to implement credential discovery and remediation and runs locally with only Python. However: 1) the code contains modifying operations (fix-permissions, quarantine, protect) that are not fully reflected in the SKILL.md Commands section — treat those as potentially destructive until you inspect them; 2) it will scan sensitive files (shell histories, keys, git history) in whatever workspace it targets (defaulting to OPENCLAW_WORKSPACE, cwd, or ~/.openclaw/workspace) — point it only at a safe copy or test workspace first; 3) review scripts/vault.py (especially the implementations of quarantine, fix-permissions, protect, gitguard, rotate-check) before running to confirm behavior and where it writes/moves files; 4) run read-only commands (audit, exposure, inventory, status) first and do not run remediation commands until you have backups and understand what changes will be made; 5) prefer obtaining this skill from a known repository/author or verify the code hash if you must install it. If you want, I can scan the remainder of vault.py for specific filesystem operations and show the exact lines that perform moves/permission changes and where quarantined files are stored.Like a lobster shell, security has layers — review code before you run it.
latestvk97abbz42fhwx2gc7kfw22bpj9811hst
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
Runtime requirements
🔐 Clawdis
OSmacOS · Linux · Windows
Binspython3