← Back to Skills Marketplace
716
Downloads
1
Stars
5
Active Installs
4
Versions
Install in OpenClaw
/install myclaw-guardian
Description
Deploy and manage a Guardian watchdog for OpenClaw Gateway. Auto-monitor every 30s, self-repair via doctor --fix, git-based workspace rollback, daily snapsho...
Usage Guidance
This skill generally does what it says, but review and test before deploying to production:
- Backup your workspace first. The guardian runs git reset --hard and will discard uncommitted changes; it also auto-commits all changes daily. Ensure the repo contains only content you are willing to have committed and potentially rolled back.
- Confirm availability of required binaries: git, pgrep, pkill, curl, nohup, and especially the OpenClaw CLI (openclaw). The registry metadata omitted pkill and openclaw; ensure they exist.
- Review what openclaw doctor --fix and openclaw gateway do in your environment — these commands can perform wide-reaching repairs/restarts.
- Discord webhook: the webhook is optional, but the registry marks it as the primary credential; verify the webhook URL destination and treat it as a secret. Notifications contain only brief status messages, but do not supply other workspace contents by default.
- Run the script in a sandbox or staging environment first to confirm behavior and to tune intervals/cooldowns/repair attempts.
- If you need stricter safety, consider modifying the script to: (a) require manual approval before git reset --hard, (b) restrict auto-commit behavior or exclude certain files, and (c) log (and rotate) backups outside the workspace.
Given the above, the skill appears coherent with its purpose but requires operational caution.
Capability Analysis
Type: OpenClaw Skill
Name: myclaw-guardian
Version: 1.0.2
The skill is designed as a legitimate watchdog for OpenClaw Gateway. However, the `scripts/guardian.sh` script directly executes the `$OPENCLAW_CMD` environment variable (e.g., `$OPENCLAW_CMD doctor --fix` and `$OPENCLAW_CMD gateway`). If an attacker can control the `OPENCLAW_CMD` environment variable, this allows for arbitrary command injection and potential Remote Code Execution (RCE). While this is a critical vulnerability, it is a flaw that *allows* an attack rather than evidence of intentional malicious design within the skill itself, thus classifying it as suspicious.
Capability Assessment
Purpose & Capability
Name/description, SKILL.md, and scripts/guardian.sh align: the script monitors an OpenClaw Gateway, runs openclaw doctor --fix, attempts git rollback, restarts the gateway, and optionally posts to a Discord webhook. The required tooling (git, pgrep/pgrep+pkill, curl) and use of the OpenClaw CLI are coherent with the stated purpose.
Instruction Scope
Instructions and script perform actions that are expected for a watchdog: periodic health checks, invoking openclaw doctor --fix, performing git reset --hard to a stable commit, creating daily git commits, restarting gateway process, and writing logs to /tmp. These actions will modify files in the specified workspace (git commits, hard resets) and restart processes — not out-of-scope but potentially destructive if the workspace contains uncommitted or sensitive data. The SKILL.md and script do not attempt to read unrelated system config or exfiltrate data beyond the optional Discord webhook.
Install Mechanism
This is an instruction-only skill with a bundled script; there is no download/install from external URLs and nothing is written to disk by an installer. Risk from installation is low — the main risk is running the provided script itself.
Credentials
The skill declares DISCORD_WEBHOOK_URL as the primary credential but treats it as optional in documentation and code (only used if set). Registry/metadata lists required binaries as git, pgrep, curl but the script also expects pkill, nohup and the openclaw CLI; openclaw is referenced in SKILL.md but not listed in the registry required-binaries. These mismatches are likely harmless but should be clarified. Also note the script will auto-commit all workspace changes (daily_backup) and performs git reset --hard (data loss risk) — environmental access to the workspace is inherent to function and should be evaluated before use.
Persistence & Privilege
The skill does not request forced always-on privilege. It instructs the user how to run the script as a background process and how to add it to a startup helper; these are normal for a watchdog. The script only modifies its own workspace and /tmp files, and restarts the gateway process (expected for this role).
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install myclaw-guardian - After installation, invoke the skill by name or use
/myclaw-guardian - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.2
Fix security scan: declare required binaries (git, pgrep, curl) and env vars in metadata. Remove global git config recommendation. Powered by https://myclaw.ai
v1.0.1
Add MyClaw.ai link in description and SKILL.md. Full docs at https://myclaw.ai
v1.1.1
- Added multilingual README files (DE, ES, FR, IT, JA, RU, ZH-CN) for broader documentation support.
- Updated SKILL.md: clarified description and added attribution to MyClaw.ai.
- Minor adjustments to documentation for improved clarity and consistency.
v1.0.0
Initial release of OpenClaw Guardian.
- Provides a bash watchdog to keep OpenClaw Gateway running with automated health monitoring and self-repair.
- Supports automated daily git snapshots, git-based rollback after failed repairs, and cooldown recovery after persistent failure.
- Optional Discord alerting for watchdog events (status messages only).
- Configuration via environment variables; easy setup for both container and Linux VPS environments.
- Includes scripts and documentation for installation, auto-start, and process verification.
Metadata
Frequently Asked Questions
What is OpenClaw Guardian by MyClaw.ai?
Deploy and manage a Guardian watchdog for OpenClaw Gateway. Auto-monitor every 30s, self-repair via doctor --fix, git-based workspace rollback, daily snapsho... It is an AI Agent Skill for Claude Code / OpenClaw, with 716 downloads so far.
How do I install OpenClaw Guardian by MyClaw.ai?
Run "/install myclaw-guardian" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is OpenClaw Guardian by MyClaw.ai free?
Yes, OpenClaw Guardian by MyClaw.ai is completely free (open-source). You can download, install and use it at no cost.
Which platforms does OpenClaw Guardian by MyClaw.ai support?
OpenClaw Guardian by MyClaw.ai is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created OpenClaw Guardian by MyClaw.ai?
It is built and maintained by Leo Ye (@leoyeai); the current version is v1.0.2.
More Skills