← Back to Skills Marketplace
Phoenix Shield
by
yiqiezhenxi
· GitHub ↗
· v1.0.0
1535
Downloads
0
Stars
1
Active Installs
1
Versions
Install in OpenClaw
/install phoenix-sheld
Description
Self-healing backup and update system with intelligent rollback. Protects against failed updates by automatically monitoring system health post-update and recovering from backups when needed. Features canary deployment testing, health baselines, smart rollback, and 24/7 automated monitoring. Use when performing critical system updates, managing production deployments, or ensuring high availability of services. Prevents downtime through pre-flight checks, integrity verification, and automatic recovery workflows.
Usage Guidance
This SKILL.md instructs running system-level updates, backups, and arbitrary commands but includes no install source, no origin/homepage, and declares no credentials — that mismatch is risky. Before using: (1) verify the origin of the 'phoenix-shield' binary and inspect its code or vendor; (2) do not run in production without testing in an isolated VM; (3) require explicit human confirmation before any destructive action and avoid running as root where possible; (4) ensure any multi-server operations have secure, explicit authentication (SSH keys) and that you trust the tool that will be executing commands remotely; (5) prefer a tool with a published installation/release (GitHub/releases or vendor site) and documented permissions. If you cannot verify the binary/source and its privilege requirements, treat this skill as untrusted.
Capability Analysis
Type: OpenClaw Skill
Name:
Developer:
Version:
Description: OpenClaw Agent Skill
The skill bundle describes a 'phoenix-shield' system administration tool designed for backups, updates, and rollbacks. It is classified as suspicious due to its inherent high-risk capabilities, which include executing arbitrary shell commands via `--command`, `--pre-hook`, and `--post-hook` arguments, as detailed in SKILL.md. Additionally, the `backup` command explicitly collects sensitive system data such as configuration files, database dumps, system state, process lists, and network connections. While these capabilities are plausibly needed for the stated purpose of a system management tool, they grant broad system access and command execution, posing a significant risk if misused or if the agent is instructed to run malicious commands through this skill.
Capability Assessment
Purpose & Capability
The SKILL.md describes a system-level backup/update tool and all runtime examples are consistent with that purpose (snapshots, apt/npm, systemctl, backups). However the skill is instruction-only and does not declare the required binary, installation, or the privileged access typically needed for these operations.
Instruction Scope
Runtime instructions instruct executing system-level commands (apt, systemctl, package installs), reading/writing /var/backups and /root hooks, multi-server deployments, and arbitrary --command payloads. The doc does not specify how remote targets are authenticated or how privileged operations are granted — the instructions give the agent broad discretion to run potentially destructive commands.
Install Mechanism
No install spec (instruction-only). This is low install risk, but it also means the SKILL.md assumes a 'phoenix-shield' CLI already exists on the system without saying where it comes from or how to obtain it, which is an operational gap.
Credentials
The skill declares no required env vars or credentials, yet examples require access to backup directories, root hooks, package managers, and remote servers. That mismatch suggests missing credential/config requirements (SSH keys, sudo/root, DB access) that are necessary for the described functionality.
Persistence & Privilege
always:false (normal) and model invocation is allowed (platform default). Combined with instruction scope (ability to run arbitrary commands), autonomous invocation would increase risk — but autonomous invocation alone is expected. The skill does not request persistent privileges itself.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install phoenix-sheld - After installation, invoke the skill by name or use
/phoenix-sheld - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Phoenix Shield 1.0.0
- Removed the sample file `docs/examples.md` from the repository.
- No functional or documentation changes to core features or existing docs.
Metadata
Frequently Asked Questions
What is Phoenix Shield?
Self-healing backup and update system with intelligent rollback. Protects against failed updates by automatically monitoring system health post-update and recovering from backups when needed. Features canary deployment testing, health baselines, smart rollback, and 24/7 automated monitoring. Use when performing critical system updates, managing production deployments, or ensuring high availability of services. Prevents downtime through pre-flight checks, integrity verification, and automatic recovery workflows. It is an AI Agent Skill for Claude Code / OpenClaw, with 1535 downloads so far.
How do I install Phoenix Shield?
Run "/install phoenix-sheld" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Phoenix Shield free?
Yes, Phoenix Shield is completely free (open-source). You can download, install and use it at no cost.
Which platforms does Phoenix Shield support?
Phoenix Shield is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Phoenix Shield?
It is built and maintained by yiqiezhenxi (@yiqiezhenxi); the current version is v1.0.0.
More Skills