← Back to Skills Marketplace
jarvis4wang

WatchClaw

by Jarvis Wang · GitHub ↗ · v1.0.0
cross-platform ⚠ suspicious
446
Downloads
0
Stars
1
Active Installs
1
Versions
Install in OpenClaw
/install watchclaw
Description
Auto-recovery watchdog for OpenClaw gateway. Monitors health, detects bad config changes, and recovers via git stash/revert. Supports native and Docker resta...
Usage Guidance
This skill is coherent with its stated purpose but has meaningful operational risks you should consider before installing: - Audit the code before running: inspect the watchclaw and watchclaw.sh scripts (the package downloads these from GitHub raw). Do NOT run the curl ... | bash install command without reviewing the script. Prefer cloning the repository and reviewing files locally. - Back up your OpenClaw config repo (and any important branches) before letting Watchclaw run — it will run git stash and git revert and can change repo history or discard uncommitted work. - Test in a non-production environment first and use DRY_RUN=1 to verify alerting/behavior without performing destructive actions. - If you use webhooks or alert commands, avoid embedding secrets in the config file unless you trust the script; restrict network access or use a dedicated, limited webhook URL. - Consider running watchclaw under a dedicated user or container with limited permissions so it can restart the gateway/container but cannot access unrelated user files. If you want a safer install flow: clone https://github.com/jarvis4wang/watchclaw, inspect the install.sh and the watchclaw scripts locally, then run the local install.sh (or copy the scripts manually) rather than piping a remote script directly into bash.
Capability Analysis
Type: OpenClaw Skill Name: watchclaw Version: 1.0.0 The skill is classified as suspicious due to two primary reasons: First, the `SKILL.md` file instructs the AI agent to install the tool via `curl -fsSL ... | bash`. This is a significant supply chain vulnerability, as it executes arbitrary code from a remote GitHub repository, posing a critical RCE risk if the repository is compromised. Second, the `README.md` documentation details an `ALERT_COMMAND` feature that allows the execution of arbitrary shell commands as an alert mechanism. While a legitimate feature, it introduces a powerful RCE vulnerability if an attacker can manipulate the `watchclaw.conf` file or prompt the AI agent to configure a malicious command.
Capability Assessment
Purpose & Capability
Name/description (watchdog for OpenClaw gateway) matches the runtime instructions and required binary: the skill needs a watchclaw CLI that monitors health, inspects the gateway config repo, and performs git stash/revert and restart actions. The requested binaries and config paths (GATEWAY_CONFIG_DIR) are coherent with this purpose.
Instruction Scope
The SKILL.md instructs running the watchclaw CLI which will access the user's OpenClaw config repo (default ~/.openclaw), run git stash/git revert, and restart the gateway or a Docker container. Those operations are within the claimed scope, but they are destructive by nature (changing repo state, reverting commits, stashing) and can cause data loss if used without backups. The SKILL.md's install metadata also suggests running a remote script via curl | bash, which grants the remote content broad permission to run arbitrary commands on the host.
Install Mechanism
The SKILL.md metadata recommends installing via a curl -fsSL https://raw.githubusercontent.com/.../install.sh | bash pattern (remote script piped to shell). While the URL is GitHub raw (a commonly used host), piping remote scripts to bash is high-risk because it executes remote code immediately without local inspection or signature verification. The package also includes a local install.sh that downloads files from raw.githubusercontent.com (safer than piping to bash but still downloads code from remote sources without verification).
Credentials
The skill declares no required credentials or env vars and the runtime behavior doesn't demand unrelated cloud credentials. It does reference optional env/config variables (e.g., WATCHCLAW_CONF, OPENCLAW_BIN, ALERT_WEBHOOK_URL) that are reasonable for operation. There are no unexpected credential requests in the metadata.
Persistence & Privilege
always:false (good). The skill is allowed to be invoked autonomously (platform default); combined with its behavior (modifying a git repo, restarting processes/containers, and sending webhooks), that grants it significant local effect. This is consistent with a watchdog but increases blast radius — run with caution and restrict execution contexts as appropriate.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install watchclaw
  3. After installation, invoke the skill by name or use /watchclaw
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release of watchclaw — an auto-recovery watchdog for OpenClaw gateways. - Monitors OpenClaw gateway health and configuration status. - Automatically recovers from bad config changes via git stash or revert. - Supports both native and Docker-based restart modes. - Provides pluggable alert options: iMessage, webhook, or custom command. - Implements probation to ensure stability after new config changes.
Metadata
Slug watchclaw
Version 1.0.0
License
All-time Installs 2
Active Installs 1
Total Versions 1
Frequently Asked Questions

What is WatchClaw?

Auto-recovery watchdog for OpenClaw gateway. Monitors health, detects bad config changes, and recovers via git stash/revert. Supports native and Docker resta... It is an AI Agent Skill for Claude Code / OpenClaw, with 446 downloads so far.

How do I install WatchClaw?

Run "/install watchclaw" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is WatchClaw free?

Yes, WatchClaw is completely free (open-source). You can download, install and use it at no cost.

Which platforms does WatchClaw support?

WatchClaw is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created WatchClaw?

It is built and maintained by Jarvis Wang (@jarvis4wang); the current version is v1.0.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments