← Back to Skills Marketplace

toolguard-daemon-control

Name: toolguard-daemon-control
Author: johnnylambada

by johnnylambada · GitHub ↗ · v0.0.1

cross-platform ⚠ suspicious

784

Downloads

Stars

Active Installs

Versions

Install in OpenClaw

/install toolguard-daemon-control

Description

Manage macOS launchd user agents to start, stop, restart, check status, and access logs of persistent background services without sudo.

Usage Guidance

This skill appears to do exactly what it says: create and manage user-level launchd agents. Before using or allowing autonomous invocation, verify the exact command you will install and avoid passing secrets via --env (they are persisted in the plist). Prefer pointing to compiled binaries or wrapper scripts you control (not transient tools like 'go run'). Review created plist files in ~/Library/LaunchAgents and logs in ~/Library/Logs/toolguard/, and uninstall any service you don't recognize. Note: the scripts embed provided values directly into plist XML without escaping — avoid passing untrusted input that could break the plist or introduce unexpected entries.

Capability Analysis

Type: OpenClaw Skill Name: toolguard-daemon-control Version: 0.0.1 The skill is classified as suspicious due to a critical shell injection vulnerability in `scripts/install.sh`. The line `WORKDIR=$(eval echo "$WORKDIR")` allows arbitrary command execution if an attacker can control the `--workdir` argument, leading to a remote code execution (RCE) risk during the skill's installation process. While the skill's primary function of managing launchd services is legitimate, this specific flaw makes it dangerous. There is no evidence of intentional malicious behavior like data exfiltration or backdoor installation by the skill itself, but the vulnerability is severe.

Capability Assessment

✓ Purpose & Capability

Name/description describe managing macOS launchd user agents; the included scripts implement install, uninstall, status, list, and log viewing by writing plists under ~/Library/LaunchAgents and logs under ~/Library/Logs/toolguard/. All required actions and files are consistent with that purpose.

ℹ Instruction Scope

Scripts only touch user LaunchAgents and a user log directory and call system tools (launchctl, tail, which, mkdir, rm). They allow installing arbitrary executables as services and accept --env KEY=VALUE pairs which are written into the plist. The scripts do not read unrelated system files or external network endpoints. Caution: values are embedded into XML without explicit escaping (EnvironmentVariables and ProgramArguments are inserted directly), and installed services will persist and run arbitrary binaries — so you must trust the command and any environment values you pass.

✓ Install Mechanism

No external install or network downloads; this is an instruction-only skill with bundled shell scripts. Nothing is fetched from third-party URLs or registries.

ℹ Credentials

The skill declares no required env vars or credentials. However, install.sh accepts user-supplied --env pairs and writes them into the plist (persisted in ~/Library/LaunchAgents). Passing secrets or tokens will store them in a file under your home directory and may expose them to other processes that can read your user files. Logs may also capture sensitive output.

ℹ Persistence & Privilege

The tool intentionally creates persistent user-level launchd agents (KeepAlive=true, RunAtLoad=true). The skill itself is not marked always:true, but if invoked (including autonomously by an agent) it can install services that survive reboots. This persistent capability is expected for the stated purpose but increases impact if used without supervision.

How to Use

Make sure OpenClaw is installed (local or Docker)
Run the install command in chat: /install toolguard-daemon-control
After installation, invoke the skill by name or use /toolguard-daemon-control
Provide required inputs per the skill's parameter spec and get structured output

Version History

v0.0.1

toolguard-daemon-control 0.0.1 — Initial Release - Manage any executable as a persistent macOS launchd user agent with user-friendly scripts. - Install services that auto-restart, write logs and persist beyond the current session. - Includes scripts to install, uninstall, check status, view logs, and list managed services. - Services run without sudo and logs/plists are stored in user directories.

Metadata

Slug toolguard-daemon-control

Version 0.0.1

License —

All-time Installs 0

Active Installs 0

Total Versions 1

Frequently Asked Questions

What is toolguard-daemon-control?

Manage macOS launchd user agents to start, stop, restart, check status, and access logs of persistent background services without sudo. It is an AI Agent Skill for Claude Code / OpenClaw, with 784 downloads so far.

How do I install toolguard-daemon-control?

Run "/install toolguard-daemon-control" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is toolguard-daemon-control free?

Yes, toolguard-daemon-control is completely free (open-source). You can download, install and use it at no cost.

Which platforms does toolguard-daemon-control support?

toolguard-daemon-control is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created toolguard-daemon-control?

It is built and maintained by johnnylambada (@johnnylambada); the current version is v0.0.1.

More Skills