← Back to Skills Marketplace
x-guang

Undo

by xguang · GitHub ↗ · v1.0.1 · MIT-0
cross-platform ⚠ suspicious
119
Downloads
0
Stars
0
Active Installs
2
Versions
Install in OpenClaw
/install undo
Description
File edit time machine for AI agents. Automatically snapshot file changes after every Write, Edit, or Shell operation, and provide undo/revert capabilities t...
Usage Guidance
This skill's code appears to implement a local file snapshot/undo system and is internally consistent with its description, but take these precautions before installing or enabling it: 1) Understand snapshot storage: snapshots are stored under ~/.local/share/undo-skill/repos/ by default — they include project file contents (which may contain secrets). Decide whether that storage location is acceptable. 2) Review and limit what gets tracked: add explicit ignores or avoid initializing projects that contain secrets or large binary data. 3) Disable or control the watcher: the background watcher auto-snapshots and could capture unintended data; prefer manual snapshotting or run watcher only under supervision. 4) Auto-install behavior: init.js will try to run package-manager install commands to install git if missing — this executes system package commands and may require elevated privileges; prefer to preinstall git manually and/or inspect the init script before letting it run. 5) Audit stored snapshots: periodically inspect ~/.local/share/undo-skill/repos/ and remove sensitive snapshots if needed. 6) If you need stronger guarantees, request changes: support for encrypted snapshot storage, confirmation prompts before auto-snapshotting, or an opt-in list of paths to exclude. If you want help producing a minimal checklist of settings to make this safe for your environment, tell me the OS and how you plan to run agents.
Capability Analysis
Type: OpenClaw Skill Name: undo Version: 1.0.1 The skill provides a file versioning system using a hidden local Git repository. It is classified as suspicious due to a critical shell injection vulnerability in `lib/git.js`, where the `runGit` function executes system commands via `execSync` using unsanitized string interpolation of arguments. Additionally, `scripts/init.js` contains high-risk logic that attempts to auto-install software using system package managers (`apt-get`, `brew`, `yum`, etc.), which requires elevated privileges. While these behaviors appear intended for the skill's stated purpose, the lack of input sanitization and the broad system-level execution capabilities pose a significant security risk.
Capability Tags
crypto
Capability Assessment
Purpose & Capability
The name/description match the implementation: scripts create snapshots, list history, create checkpoints, undo to commits/timestamps, and run a background watcher. The only declared runtime requirement (node) is consistent with the included Node.js scripts.
Instruction Scope
The scripts copy the entire project (with reasonable ignores like node_modules and .git) into a separate storage location (~/.local/share/undo-skill/repos/<hash>). That behavior is coherent with 'undo' functionality, but it means the skill will read and persist all tracked project files (which can include secrets, credentials, or large binary files). The SKILL.md insists snapshots be run after every Write/Edit/Shell and instructs agents to run the watcher for automatic snapshots; this gives the skill broad file-access behavior by design.
Install Mechanism
There is no external download/install spec in the registry (no remote fetch). All code is included in the skill bundle (Node scripts). However init.js contains logic to attempt to auto-install git by running system package manager commands (apt-get, apk, yum, dnf, pacman, brew, nix-env, pkg). Auto-install attempts are potentially sensitive because they execute system package manager commands and may require elevated privileges; this is understandable (git is needed) but worth flagging before allowing autonomous runs.
Credentials
The skill does not request any external credentials or environment variables beyond optional watcher tuning (UNDO_WATCHER_DEBOUNCE, UNDO_WATCHER_POLL). There are no unrelated secret requests. The main proportionality concern is data scope: the skill copies and stores project files outside the project, which is functionally required but increases confidentiality risk.
Persistence & Privilege
The skill is not always:true. But it includes a watcher script that can run in the background (prints a PID and auto-snapshots) and the SKILL.md encourages automatic snapshotting after every change. If the agent invokes the watcher autonomously, snapshots will be taken over time without explicit per-snapshot user confirmation. Autonomous invocation combined with ongoing local file copies increases blast radius if the skill is allowed to run without review.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install undo
  3. After installation, invoke the skill by name or use /undo
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.1
- Added README.MD file providing documentation or usage details.
v1.0.0
Initial release of the Undo skill: a file edit time machine for AI agents. - Automatically snapshots file changes after every Write, Edit, or Shell operation, enabling undo/revert to any previous state. - Supports undoing the last change, undoing N steps, undoing to a timestamp, undoing to a named checkpoint, listing change history, and creating checkpoints. - Activates upon user commands such as "enable undo", "undo", "revert", "restore", or "show history". - All scripts output structured JSON for reliable integration and parsing. - Uses an external bare git repository for history, with project isolation and robust branch strategy. - Includes built-in watcher for auto-snapshots during long sessions.
Metadata
Slug undo
Version 1.0.1
License MIT-0
All-time Installs 0
Active Installs 0
Total Versions 2
Frequently Asked Questions

What is Undo?

File edit time machine for AI agents. Automatically snapshot file changes after every Write, Edit, or Shell operation, and provide undo/revert capabilities t... It is an AI Agent Skill for Claude Code / OpenClaw, with 119 downloads so far.

How do I install Undo?

Run "/install undo" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Undo free?

Yes, Undo is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does Undo support?

Undo is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Undo?

It is built and maintained by xguang (@x-guang); the current version is v1.0.1.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments