Openclaw Sys Guardian V4.1 Resurrection

Dragon-class High Availability (HA) guardian with metabolic cleansing and 3-tier self-healing for OpenClaw environments.

What to consider before installing: - Inconsistency: The package declares no required binaries or credentials but its scripts call many tools and touch sensitive paths — treat that as a red flag. - Dangerous actions: Scripts will kill processes, uninstall/reinstall global packages, move/delete ~/.openclaw and caches, and can perform a 30s countdown destructive 'resurrect' flow. Do not run on a production machine. - Credential risk: The snapshot/resurrect scripts copy auth-profiles.json and other config files that likely contain secrets. Expect local credential exposure even though no env vars are declared. - Supply-chain risk: The scripts run pnpm/npm global installs (pnpm install -g openclaw@latest). That fetches code from registries and could execute arbitrary postinstall hooks. - Hard-coded paths & assumptions: The code uses /Users/maxleolee and /opt/homebrew paths; it may fail or behave unexpectedly on other systems. Recommended actions: 1) Do not run these scripts on your main workstation. Test in an isolated VM/container or disposable environment first. 2) Manually review and sanitize scripts: remove or stub destructive sections (global uninstall, rm -rf lines, mv ~/.openclaw), and remove automatic network installs before any execution. 3) Verify provenance: ask the publisher for source repository, signatures, and release checksums. Prefer an upstream published release from a known author. 4) If you need HA for OpenClaw, prefer a version that declares its dependencies, documents required binaries, and exposes no scripts that copy credential files or perform global package installs. 5) If you choose to proceed, create full backups of ~/.openclaw and any auth files, and run the skill with least privilege (non-admin user, no global install permissions). Additional info that would change this assessment to benign: a trustworthy upstream origin, signed releases, removal of destructive global install/uninstall/network operations, explicit declaration of required binaries/credentials, and explicit safeguards preventing modification/exfiltration of auth files.

Type: OpenClaw Skill Name: openclaw-sys-guardian-v4-1-resurrection Version: 4.1.7 The skill bundle implements a 'SysGuardian' with high-privilege system management capabilities, including process termination (kill -9), system-wide software re-installation (pnpm uninstall/install -g), and the handling of sensitive credential files (auth-profiles.json) in scripts like lobster-resurrect.sh and lobster-snapshot.sh. While these actions are consistent with the stated purpose of high availability and disaster recovery, the scripts contain hardcoded local paths (/Users/maxleolee/) and perform destructive operations that could lead to data loss or environment instability if triggered improperly. No evidence of remote data exfiltration was found, but the broad system control and access to authentication tokens warrant a suspicious classification.