ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

LLM Switcher

v1.0.0

Change OpenClaw's global default AI model in config, save the change, and restart the gateway after explicit confirmation. Before writing default config, fir...

0· 341·0 current·0 all-time
byWilliam@winlinvip
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Benign
high confidence
!
Purpose & Capability
The skill's name/description align with its behavior (changing the global default model and restarting the gateway). However, SKILL.md relies on the 'openclaw' CLI and an in-agent 'session_status' capability even though the skill metadata declares no required binaries or config paths — an inconsistency that should be resolved (the CLI/agent runtime capabilities are required for this skill to work).
!
Instruction Scope
Instructions stay within the model-switching use case (list models, test via session override, set config, restart gateway). They do, however, require read/write access to global agent config and the ability to restart the gateway — privileged actions. The instructions do not include checks for user authorization, logging, or rollback/backups, which are relevant when changing global defaults.
Install Mechanism
Instruction-only skill with no install spec and no code files. This has low installation risk because nothing is downloaded or written by an installer.
Credentials
The skill requests no environment variables or credentials, which is appropriate for its described purpose. It does rely on in-environment tools (openclaw) and agent capabilities that are not declared in metadata.
Persistence & Privilege
The skill modifies global configuration and can restart the gateway (privileged operations). It does require explicit user confirmation before restart and is not always-enabled. Be aware that if the agent is allowed to invoke skills autonomously, an agent with sufficient permissions could prompt or act toward changing config — the SKILL.md's confirmation step mitigates but does not eliminate privilege risk if the agent runs without an interactive human to confirm.
Assessment
This skill appears to do what it says: list configured models, test a session-only override, update the global default, and restart the gateway upon confirmation. Before installing, verify: 1) the OpenClaw CLI (openclaw) and the agent's session-status capability exist on the host (the SKILL.md assumes them even though metadata doesn't list them), 2) the agent/process running skills has appropriate admin rights to modify global config and restart the gateway (and that you are comfortable granting that), and 3) you have a backup or can roll back config changes. Also consider asking the publisher to update metadata to declare the required 'openclaw' binary and to add explicit authorization/logging/rollback guidance. If you lack admin rights or the CLI, do not enable this skill.

Like a lobster shell, security has layers — review code before you run it.

latestvk97abjc5be19a9mh4ppfh90c5h826739
341downloads
0stars
1versions
Updated 17h ago
v1.0.0
MIT-0
William@winlinvip
latest
Download

Model Switcher

Change the global default LLM model in OpenClaw config, with a session-level availability check first.

Workflow

1) Read config and show available models first

Run:

openclaw config get agents.defaults.models
openclaw config get agents.defaults.model.primary

Extract and show:

  • model key (for example openai-codex/gpt-5.3-codex)
  • alias (for example codex, opus) when present
  • current default model

Do not switch anything before showing options.

2) Ask user to choose model

Ask for the model name they want to set as the global default. Accept:

  • alias (preferred): codex, opus
  • full provider/model id when configured

If the name is not in configured options, reject and ask again with the valid list.

3) Test selected model in current session first (availability/conflict check)

Before changing default config, apply a session-only override and run a live reply test.

In OpenClaw agent/tooling context:

  • Use session_status with model=<selected-model>.
  • Confirm the override succeeds (no error about unknown/unavailable model).
  • Then send a short test prompt to the model and require an actual response, for example:
    • "What model/version are you currently running? Return provider/model id and a one-line status."
  • Treat this as pass only if the model returns a normal reply.

If override or live reply test fails:

  • Do not update default config.
  • Report the error clearly.
  • Explain that the model appears unavailable/misconfigured.
  • Ask user to choose a different configured model.

If override and live reply test both succeed:

  • Continue to update default config.

4) Apply default-config change

Update default model in config:

openclaw config set agents.defaults.model.primary '"<selected-model>"'

Then verify:

openclaw config get agents.defaults.model.primary

Never claim success without verification output.

5) Ask before restarting gateway

After updating config, explicitly ask:

  • "Do you want me to restart the gateway now so the change takes effect?"

Only restart after a clear yes.

6) Restart gateway on confirmation

Run:

openclaw gateway restart

Then verify status:

openclaw gateway status

If restart fails, report the error and suggest:

openclaw gateway stop
openclaw gateway start
openclaw gateway status

Response style

  • Be short and direct.
  • Always show current default and valid model choices before asking for selection.
  • Do not ask scope questions (no session-only final path in this skill).
  • Always run a session-level availability check before writing default config.
  • Always require explicit confirmation before restarting gateway.
  • Never claim success without verification output.

Comments

Loading comments...