← Back to Skills Marketplace
rocanome

Safepaste

by rocanome · GitHub ↗ · v2.3.0
cross-platform ⚠ suspicious
406
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install safepaste
Description
Check any OpenClaw prompt, config snippet, or tip against YOUR actual setup before applying it. Auto-detects pasted prompts, analyzes compatibility, shows ex...
Usage Guidance
SafePaste's goal (checking pasted prompts/configs against your actual OpenClaw setup) is coherent and it requests no credentials or external installs — that's good. However: (1) review the full SKILL.md/README yourself before installing — the package contains a detected prompt-injection pattern ('ignore-previous-instructions') which is suspicious; it may be malicious content embedded as an example or it may attempt to change model behavior. (2) Confirm exactly which local paths the skill will read and where backups are stored (e.g., ~/.openclaw backups), and test in a disposable workspace first. (3) Require the skill to prompt for explicit, human confirmation before applying any changes (never allow silent apply), and prefer using the 'analyze only' flow initially. (4) If you use model escalation, ensure you trust the model switch and cost implications; don't grant the skill any extra credentials. If you want higher assurance, ask the maintainer for the authoritative source code or run the skill in a sandboxed agent first.
Capability Analysis
Type: OpenClaw Skill Name: safepaste Version: 2.3.0 The skill is classified as suspicious due to its reliance on high-risk capabilities, including direct execution of shell commands (`mkdir`, `cp`, `ls`, `clawhub install`) and instructions that leverage prompt injection techniques against the agent itself. While these capabilities are plausibly needed for the skill's stated purpose of configuration analysis, backup, rollback, and safe skill installation, they represent a significant attack surface. Specifically, the `clawhub install` command, though intended for safe skill management, allows the agent to install new software. Additionally, the instructions for the agent to 'Use everything you know about this user from your conversations, workspace files, and active projects' are a form of prompt injection, even if intended for benign personalization. The skill does, however, explicitly instruct the agent to detect and warn against malicious prompt injection and data exfiltration attempts, which is a strong defensive measure.
Capability Assessment
Purpose & Capability
Name and description match what the SKILL.md asks the agent to do: read local OpenClaw files (AGENTS.md, SOUL.md, installed skills, cron/model config), analyze pasted content for conflicts, show diffs, and optionally apply changes with backups/rollback. No unrelated credentials, binaries, or external services are requested.
Instruction Scope
The instructions require the agent to scan incoming messages (auto-detection), read multiple local config/workspace files, create backups, and potentially apply/modify user files. That generally fits the purpose, but the SKILL.md itself contains a prompt-injection pattern (pre-scan flagged 'ignore-previous-instructions'), which is suspicious because a helper that inspects pastes should not embed commands meant to override model behavior. The auto-detection/watch behavior also increases the surface for accidental scanning of unrelated content — the skill should be explicit about trigger boundaries and require user confirmation before acting.
Install Mechanism
No install spec or code files are present (instruction-only). This minimizes supply-chain risk because nothing is downloaded or written by an installer. The README and SKILL.md include a 'clawhub install safepaste' suggestion, but no automated install artifacts are provided in the package being evaluated.
Credentials
The skill requests no environment variables, credentials, or external endpoints. It does read local files and stores usage in ~/.openclaw/safepaste-state.json per README — these local accesses are proportionate for a tool that audits and applies local config changes, but users should verify exactly which filesystem paths will be read/written and where backups are stored.
Persistence & Privilege
The skill is not 'always: true' and is user-invocable. However, it describes an auto-detection/watching behavior for incoming messages which implies ongoing monitoring by the agent; that is a behavioral privilege (automatic scanning of chat content). This is not automatically disallowed, but you should ensure the skill asks for explicit consent before applying changes and that auto-watch can be disabled.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install safepaste
  3. After installation, invoke the skill by name or use /safepaste
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v2.3.0
SafePaste v2.3.0 Changelog - Expanded and clarified SKILL.md documentation with detailed installation, usage instructions, and agent behavior guidelines. - Enhanced list and explanation of trigger/interaction commands for user analysis, action, exploration, and rollback. - Detailed "What It Checks" matrix added to explain SafePaste’s compatibility analysis across config types. - Strengthened agent instructions for model escalation, auto-detection signals, backup requirements, and confidence logic. - Clarified messaging and scenarios for auto-detecting config snippets, including when to offer analysis. - Updated metadata: homepage and OpenClaw integration information included.
Metadata
Slug safepaste
Version 2.3.0
License
All-time Installs 0
Active Installs 0
Total Versions 1
Frequently Asked Questions

What is Safepaste?

Check any OpenClaw prompt, config snippet, or tip against YOUR actual setup before applying it. Auto-detects pasted prompts, analyzes compatibility, shows ex... It is an AI Agent Skill for Claude Code / OpenClaw, with 406 downloads so far.

How do I install Safepaste?

Run "/install safepaste" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Safepaste free?

Yes, Safepaste is completely free (open-source). You can download, install and use it at no cost.

Which platforms does Safepaste support?

Safepaste is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Safepaste?

It is built and maintained by rocanome (@rocanome); the current version is v2.3.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463815 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259802 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200680 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191345 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190333 · by oswalpalash

💬 Comments