Clawsync Skill龙虾配置同步

The skill mostly matches a backup/restore purpose, but it overclaims features (cloud backends, GPG/encryption) that are not implemented and contains a dangerous zip extraction pattern that can lead to path-traversal during restore; it also will archive sensitive credentials unencrypted unless fixed.

This skill is plausibly a useful backup tool, but there are important red flags you should address before trusting it with real data: - Encryption is not implemented: The script prints that encryption is TODO. If you run backups that include credentials or memory, those files may be stored unencrypted. Do not back up secrets with this tool unless you implement proper encryption (password-based or GPG) yourself. - Zip-slip (path traversal) vulnerability on restore: The restore code extracts zip entries directly without validating paths. A malicious or corrupted backup could overwrite arbitrary files on restore. Only restore archives you created and trust. Prefer to inspect archive contents (zip -l) before restoring. - Overclaimed features: SKILL.md/README promise cloud backends and GPG integration but the provided script does not implement them. Treat those claims as unimplemented; do not expect safe cloud upload/restore behavior unless the code is extended and audited. - Inconsistent paths: The documentation references running the script from ~/.openclaw/workspace/..., but the packaged script path is scripts/clawsync.py. Confirm where the script will actually be installed/executed to avoid accidental invocation of a different binary. Recommendations before installing or using: - Inspect and run the script in a sandbox or VM first. Review the full script for any additional truncated code paths. - Add path-sanitization for zip extraction (validate that each extracted path is inside the intended target directory) or use a safe extraction helper. - Implement and verify strong encryption (GPG or password-based) before enabling backups that include credentials or history. - Only restore backups you created or that come from fully trusted sources. - Prefer to export credentials separately and avoid including them in automated backups when possible. If you want, I can: (1) show a safe zip-extraction snippet to replace the current restore extraction, (2) point out exactly where to add encryption/GPG, or (3) produce a short checklist for safely using this tool in migration scenarios.