Scan Report
5 /100
file-writer
Safely write or append text content to files ONLY in /home/alfred/.openclaw/workspace/scratch with backup support
A well-scoped, properly documented file writing skill with appropriate safety controls and no malicious indicators.
Safe to install
No action needed. The skill is safe for use within its documented scope.
| Resource | Declared | Inferred | Status | Evidence |
|---|---|---|---|---|
| Filesystem | WRITE | WRITE | ✓ Aligned | SKILL.md declares 'write' tool; scoped to /home/alfred/.openclaw/workspace/scrat… |
| Filesystem | READ | READ | ✓ Aligned | SKILL.md declares 'read' tool for checks/backups |
| Shell | WRITE | WRITE | ✓ Aligned | exec for 'mkdir -p' only; documented in SKILL.md |
| Network | NONE | NONE | — | No network calls in any file |
| Environment | NONE | NONE | — | No environment variable access |
| Clipboard | NONE | NONE | — | No clipboard access |
| Browser | NONE | NONE | — | No browser access |
| Database | NONE | NONE | — | No database access |
File Tree
3 files · 4.0 KB · 84 lines Markdown 2f · 61L
Shell 1f · 23L
├─
▾
references
│ └─
safety.md
Markdown
├─
▾
scripts
│ └─
backup_file.sh
Shell
└─
SKILL.md
Markdown
Security Positives
✓ Strong path sanitization: rejects absolute paths, parent escapes (../), and non-text extensions
✓ Well-defined scope: restricted to /home/alfred/.openclaw/workspace/scratch directory only
✓ Backup mechanism prevents data loss before overwrites
✓ Size limit (50k chars) prevents resource exhaustion
✓ Requires user confirmation for sensitive operations
✓ Fallback to user action if tools unavailable - no forced execution
✓ Script backup_file.sh is simple and safe: only uses cp for backups, no network or credential access
✓ Documentation (references/safety.md) provides clear sanitization patterns
✓ No credential access, no data exfiltration, no obfuscation
✓ Clear doc-to-code alignment with no shadow functionality