中文 EN

Scan Report

Scan New Files

Trusted — Risk Score 5/100
Last scan:1 day ago Rescan
5 /100
openclaw-healthcheck
Lightweight operational and security review for an OpenClaw deployment — checks gateway reachability, exposed ports, config patterns, browser session/relay surface, log errors, and runtime hygiene.
A legitimate OpenClaw operational health-check tool with no malicious behavior — all filesystem and shell access is directly declared and purpose-appropriate for the stated audit functionality.
Skill Nameopenclaw-healthcheck
Duration27.2s
Enginepi
Safe to install
No action needed. The skill is safe to run as described.

Findings 1 items

Severity Finding Location
Low
Missing allowed-tools declaration Doc Mismatch
SKILL.md declares a command-based workflow but does not include an allowed-tools mapping. The permission boundary is therefore implicit rather than explicit.
---
→ Add an allowed-tools declaration to SKILL.md for transparency, e.g., 'allowed-tools: Bash→shell:WRITE, Read→filesystem:READ, fs.readFileSync→filesystem:READ'.
 SKILL.md:1
ResourceDeclaredInferredStatusEvidence
Shell WRITE WRITE ✓ Aligned execSync('openclaw status'), execSync('lsof ...'), execSync('tail ...') — all de…
Filesystem READ READ ✓ Aligned fs.readFileSync(configPath) and log tail — explicitly reading runtime state for …
Environment NONE READ ✓ Aligned os.homedir() is called to resolve ~/.openclaw; environment is passed through to …

File Tree

6 files · 12.4 KB · 426 lines
Markdown 3f · 270L JavaScript 2f · 122L JSON 1f · 34L
├─ 📁 references
│ └─ 📝 checklist.md Markdown 24L · 731 B
├─ 📁 scripts
│ └─ 📜 healthcheck.mjs JavaScript 80L · 3.5 KB
├─ 📁 tests
│ └─ 📜 test.mjs JavaScript 42L · 1.3 KB
├─ 📋 package.json JSON 34L · 832 B
├─ 📝 README.md Markdown 189L · 4.4 KB
└─ 📝 SKILL.md Markdown 57L · 1.7 KB

Dependencies 1 items

PackageVersionSourceKnown VulnsNotes
none (pure Node.js stdlib) N/A stdlib only No healthcheck.mjs imports only child_process, fs, and os from the Node.js standard library

Security Positives

✓ No credential harvesting or environment variable enumeration for sensitive keys
✓ No network requests to remote endpoints — all checks are local
✓ No obfuscation (no base64, eval, or dynamic code construction)
✓ No download or remote script execution (no curl|bash, wget|sh, pip install from untrusted sources)
✓ No access to sensitive paths such as ~/.ssh, ~/.aws, or .env files
✓ No data exfiltration — evidence objects stay in-process and are output as JSON
✓ No persistence mechanisms (no cron, systemd units, or startup hooks injected)
✓ The test file properly isolates its execution by creating a temporary HOME and PATH
✓ Code behavior is fully consistent with the SKILL.md documentation