Doc Sysadmin
WarnAudited by ClawScan on May 10, 2026.
Overview
This Ubuntu maintenance skill is mostly purpose-aligned, but its cleanup script can remove packages and delete broad temp directories without clear confirmation or safe scoping.
Review the cleanup script before installing or invoking this skill. Use it only on Ubuntu systems, do not run it unattended, and require confirmation before any package removal or broad file deletion.
Findings (2)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Running the cleanup script with privileges could break software, remove needed packages, or delete temporary files still being used.
These commands can remove packages without an interactive prompt and delete all files under /tmp and /var/tmp, which is broader than a cautious cleanup workflow and can affect running applications or user work.
apt autoremove -y apt autoclean apt clean ... rm -rf /tmp/* /var/tmp/*
Require an explicit user confirmation and dry-run/report before cleanup, remove automatic '-y' package removal, and restrict temp cleanup to older safe files with exclusions for active files.
If invoked carelessly, the skill can run privileged commands that change the local system.
The skill explicitly requests elevated/sudo capability, which is expected for host maintenance but gives the agent authority to make system-wide changes.
metadata: elevated: true ... 1. **elevated: true** - Pode usar sudo quando necessário
Only use this skill for intentional Ubuntu maintenance, review sudo commands before approval, and avoid granting unattended privileged execution.