← Back to Skills Marketplace
maxleolee-eng

Openclaw Sys Guardian V4.1 Resurrection

by maxleolee-eng · GitHub ↗ · v4.1.7
cross-platform ⚠ suspicious
456
Downloads
0
Stars
0
Active Installs
8
Versions
Install in OpenClaw
/install openclaw-sys-guardian-v4-1-resurrection
Description
Dragon-class High Availability (HA) guardian with metabolic cleansing and 3-tier self-healing for OpenClaw environments.
Usage Guidance
What to consider before installing: - Inconsistency: The package declares no required binaries or credentials but its scripts call many tools and touch sensitive paths — treat that as a red flag. - Dangerous actions: Scripts will kill processes, uninstall/reinstall global packages, move/delete ~/.openclaw and caches, and can perform a 30s countdown destructive 'resurrect' flow. Do not run on a production machine. - Credential risk: The snapshot/resurrect scripts copy auth-profiles.json and other config files that likely contain secrets. Expect local credential exposure even though no env vars are declared. - Supply-chain risk: The scripts run pnpm/npm global installs (pnpm install -g openclaw@latest). That fetches code from registries and could execute arbitrary postinstall hooks. - Hard-coded paths & assumptions: The code uses /Users/maxleolee and /opt/homebrew paths; it may fail or behave unexpectedly on other systems. Recommended actions: 1) Do not run these scripts on your main workstation. Test in an isolated VM/container or disposable environment first. 2) Manually review and sanitize scripts: remove or stub destructive sections (global uninstall, rm -rf lines, mv ~/.openclaw), and remove automatic network installs before any execution. 3) Verify provenance: ask the publisher for source repository, signatures, and release checksums. Prefer an upstream published release from a known author. 4) If you need HA for OpenClaw, prefer a version that declares its dependencies, documents required binaries, and exposes no scripts that copy credential files or perform global package installs. 5) If you choose to proceed, create full backups of ~/.openclaw and any auth files, and run the skill with least privilege (non-admin user, no global install permissions). Additional info that would change this assessment to benign: a trustworthy upstream origin, signed releases, removal of destructive global install/uninstall/network operations, explicit declaration of required binaries/credentials, and explicit safeguards preventing modification/exfiltration of auth files.
Capability Analysis
Type: OpenClaw Skill Name: openclaw-sys-guardian-v4-1-resurrection Version: 4.1.7 The skill bundle implements a 'SysGuardian' with high-privilege system management capabilities, including process termination (kill -9), system-wide software re-installation (pnpm uninstall/install -g), and the handling of sensitive credential files (auth-profiles.json) in scripts like lobster-resurrect.sh and lobster-snapshot.sh. While these actions are consistent with the stated purpose of high availability and disaster recovery, the scripts contain hardcoded local paths (/Users/maxleolee/) and perform destructive operations that could lead to data loss or environment instability if triggered improperly. No evidence of remote data exfiltration was found, but the broad system control and access to authentication tokens warrant a suspicious classification.
Capability Assessment
Purpose & Capability
The declared purpose (OpenClaw HA guardian) aligns with the scripts' actions (health checks, rollbacks, snapshots, resurrection). However the package metadata claims no required binaries/env yet the scripts call many system tools (/opt/homebrew/bin/openclaw, pnpm, npm, curl, launchctl, lsof, rsync, python3, etc.) and hard-coded user paths (/Users/maxleolee). The lack of declared runtime requirements is inconsistent and misleading.
Instruction Scope
SKILL.md promises a guardian service, but the provided scripts go beyond passive monitoring: they kill processes, uninstall global packages, move/delete user data and caches, copy auth-profiles.json (potentially containing credentials), and run a 30s countdown before executing a destructive 'resurrect' flow. The instructions and scripts will read and manipulate sensitive local files and config directories that are unrelated to mere health-check reporting.
Install Mechanism
There is no formal install spec, but the code includes commands that perform network-based installs (pnpm install -g openclaw@latest, npm uninstall/install -g) and assume presence of Homebrew paths. Pulling and executing packages from npm/pnpm at runtime creates supply-chain risk; postinstall scripts in those packages could execute arbitrary code on the host. The package provides executable scripts meant to be run on the host filesystem (extract/overwrite), which is higher risk than pure instruction-only content.
Credentials
The registry metadata lists no required credentials or environment variables, yet scripts access and copy local files that likely contain secrets (e.g., auth-profiles.json), operate on ~/.openclaw, and assume access to user-specific mirrors (/Users/maxleolee/Downloads/OpenClaw_Mirror). Sensitive actions are not declared or justified; the skill can expose or move credential-bearing files without having declared any needed secrets.
Persistence & Privilege
The skill expects to be installed as a persistent LaunchAgent and contains scripts that unload/load LaunchAgents, stop running services, and perform global uninstall/install operations. While always:false, the skill requests system-level persistence and performs privileged-seeming actions (manipulating LaunchAgents, global npm installs, killing processes). That combination increases blast radius if the agent runs these scripts autonomously.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install openclaw-sys-guardian-v4-1-resurrection
  3. After installation, invoke the skill by name or use /openclaw-sys-guardian-v4-1-resurrection
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v4.1.7
- Documentation update: PRODUCT_MANUAL.md content modified. - No changes to code or functionality in this release.
v4.1.6
- Updated PRODUCT_MANUAL.md documentation. - No changes to core features or functionality. - All features and usage instructions remain the same.
v4.1.5
- Documentation update: PRODUCT_MANUAL.md updated. - No changes to functionality or features.
v4.1.4
- No changes detected in this version. - All features, documentation, and metadata remain unchanged.
v4.1.3
- Added PRODUCT_MANUAL.md to provide detailed product documentation. - No changes to existing features or SKILL.md content.
v4.1.2
- Added new script: scripts/lobster-ultimate-restore.sh for advanced manual restore or recovery operations.
v4.1.1
- Added README.md for clearer installation and usage guidance. - Introduced references/Design_V4.5.md for updated architectural documentation. - Updated references/Design.md and scripts/lobster-guardian.sh with minor improvements and maintenance.
v4.1.0
OpenClaw SysGuardian V4.1.0 Resurrection introduces advanced self-healing and optimization features: - Adds metabolic cleansing: Automated daily 03:00 AM system optimization and session slimming. - Enhances 3-tier self-healing with interactive resurrection/reinstallation guide at L3. - Implements elastic pulse monitoring with configurable exponential backoff (1-3-5-10m) on heartbeats. - Provides daily system health summary via Feishu/Telegram. - Improved recovery time: L1 events recover in under 45 seconds; disk usage is reduced by 15%. - Now requires macOS (darwin) or Linux environments.
Metadata
Slug openclaw-sys-guardian-v4-1-resurrection
Version 4.1.7
License
All-time Installs 0
Active Installs 0
Total Versions 8
Frequently Asked Questions

What is Openclaw Sys Guardian V4.1 Resurrection?

Dragon-class High Availability (HA) guardian with metabolic cleansing and 3-tier self-healing for OpenClaw environments. It is an AI Agent Skill for Claude Code / OpenClaw, with 456 downloads so far.

How do I install Openclaw Sys Guardian V4.1 Resurrection?

Run "/install openclaw-sys-guardian-v4-1-resurrection" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Openclaw Sys Guardian V4.1 Resurrection free?

Yes, Openclaw Sys Guardian V4.1 Resurrection is completely free (open-source). You can download, install and use it at no cost.

Which platforms does Openclaw Sys Guardian V4.1 Resurrection support?

Openclaw Sys Guardian V4.1 Resurrection is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Openclaw Sys Guardian V4.1 Resurrection?

It is built and maintained by maxleolee-eng (@maxleolee-eng); the current version is v4.1.7.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463942 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259883 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200739 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191401 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190375 · by oswalpalash

💬 Comments