← Back to Skills Marketplace
halfmoon82

Openclaw Health Audit

by halfmoon82 · GitHub ↗ · v1.5.0 · MIT-0
cross-platform ⚠ suspicious
450
Downloads
0
Stars
1
Active Installs
3
Versions
Install in OpenClaw
/install openclaw-health-audit
Description
OpenClaw 系统健康审计与自动修复 — 监控 prompt 体积、Cron 合规、Session 清理、Token 消耗
Usage Guidance
This skill appears to do what it says: local inspection of OpenClaw files, optional registration of a 48h health-check cron job, and conservative auto-fixes (cron/session). Before installing, consider: 1) Back up ~/.openclaw/cron/jobs.json and ~/.openclaw/.lib/session_model_state.json so you can revert changes. 2) Run the wizard and health_monitor in --dry-run first (audit_wizard.py offers this). 3) Confirm the agent/system that will execute cron job payloads (the 'agentTurn' payload instructs sending reports via Telegram/Discord) — ensure those outbound connectors and recipients are trusted because reports will contain local audit data. 4) The documentation contains a small contradiction (claims 'Does NOT send data to external servers' yet describes sending via Telegram/Discord); treat reporting as network-capable behavior originating from your configured agent, not from the Python scripts themselves. 5) If you rely on the openclaw CLI for usage-cost, ensure its stored credentials are scoped appropriately. If you want higher assurance, inspect scripts (they are included) and run them in a controlled environment before enabling auto-fix or registering the cron job.
Capability Analysis
Type: OpenClaw Skill Name: openclaw-health-audit Version: 1.5.0 The skill performs high-risk operations including modifying OpenClaw Cron jobs (jobs.json) and session state files (session_model_state.json) to perform 'auto-repairs.' It also registers a persistent Cron job for periodic monitoring via audit_wizard.py. While these actions are aligned with the stated purpose of system health auditing and cost optimization, the ability to modify system configuration and state files constitutes a significant attack surface. The scripts health_monitor.py and audit_wizard.py handle these sensitive file operations. No evidence of data exfiltration or unauthorized external network calls was found.
Capability Assessment
Purpose & Capability
The name/description (health audit, cron/session/token checks) match what the code does: it reads ~/.openclaw files (openclaw.json, session_model_state.json, cron jobs), measures prompt file sizes, inspects message-injector/index.ts and pools/session state, and can register/modify a local cron jobs json. No unrelated credentials or cloud APIs are requested by the skill itself.
Instruction Scope
SKILL.md and the scripts explicitly read and (when asked) write local OpenClaw config and cron job files and run local Python scripts — that is expected. Minor inconsistency: SKILL.md's security table says 'Does NOT send data to external servers', but the cron job prompts and documentation instruct the agent to 'send the report to the user (Telegram/Discord)'. The skill itself does not directly implement network exfiltration, but scheduled agent runs or the agent that executes the cron payload can deliver reports over network connectors.
Install Mechanism
No network downloads or package installs. install.sh and the two Python scripts run locally; audit_wizard writes config and optionally appends a cron job to ~/.openclaw/cron/jobs.json. This is a low-risk install mechanism (no remote code fetches or archive extraction).
Credentials
The skill requests no environment variables and no primary credential. It invokes the local 'openclaw' CLI for usage-cost reporting (via subprocess) which is appropriate for token-trend checks; that CLI may itself rely on stored gateway credentials — this is expected for the purpose. No extraneous secrets or unrelated service credentials are requested by the skill.
Persistence & Privilege
always:false and default autonomous invocation are preserved. The skill writes its own config and can register a cron job under ~/.openclaw, which is appropriate for a monitoring tool. It does not modify other skills' code or system-wide settings outside the OpenClaw workspace.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install openclaw-health-audit
  3. After installation, invoke the skill by name or use /openclaw-health-audit
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.5.0
openclaw-health-audit 1.5.0 introduces security and transparency improvements. - Added a detailed security & permissions declaration to SKILL.md, clarifying all privileged operations and their scope. - Added README_CN.md for Chinese documentation and NOTICE.md for legal/compliance information. - Updated scripts to reflect the new permission model (audit_wizard.py, health_monitor.py). - Minor updates to configuration and documentation for improved clarity and transparency.
v1.4.0
v1.4.0:新增Category E(LLM缓存配置)/F(Session状态完整性)/G(代码合规G1-G8);同步生产版health_monitor.py;新增设计哲学与演进史README;安装命令更新
v1.0.0
Initial release of openclaw-health-audit: - Provides system health audit and automated fixes for OpenClaw. - Monitors prompt size, Cron job compliance, orphaned sessions, and token usage anomalies. - Generates personalized health reports and enables user-triggered repair actions. - Supports automated and manual fixes depending on issue type. - Includes setup wizard for configuration and periodic health monitoring. - Offers clear commands and report formats for ease of use.
Metadata
Slug openclaw-health-audit
Version 1.5.0
License MIT-0
All-time Installs 1
Active Installs 1
Total Versions 3
Frequently Asked Questions

What is Openclaw Health Audit?

OpenClaw 系统健康审计与自动修复 — 监控 prompt 体积、Cron 合规、Session 清理、Token 消耗. It is an AI Agent Skill for Claude Code / OpenClaw, with 450 downloads so far.

How do I install Openclaw Health Audit?

Run "/install openclaw-health-audit" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Openclaw Health Audit free?

Yes, Openclaw Health Audit is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does Openclaw Health Audit support?

Openclaw Health Audit is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Openclaw Health Audit?

It is built and maintained by halfmoon82 (@halfmoon82); the current version is v1.5.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463815 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259802 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200680 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191345 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190333 · by oswalpalash

💬 Comments