← Back to Skills Marketplace
590
Downloads
0
Stars
0
Active Installs
2
Versions
Install in OpenClaw
/install openclaw-macos-always-on
Description
Run OpenClaw as a system-level LaunchDaemon on macOS for 24/7 operation, surviving screen lock, logout, and user switching. Uses caffeinate to prevent sleep....
Usage Guidance
This package will run OpenClaw as a system LaunchDaemon (requires sudo) which is consistent with its goal, but take these precautions before installing: 1) Inspect the install.sh and the plist yourself instead of piping curl | bash from an unfamiliar GitHub account. 2) Do NOT allow the gateway token to be written into a world-readable plist. If you must set a token, store it in a file with restrictive permissions (600 owned by you) or use launchctl to set environment variables at runtime, or better, use the macOS Keychain and have the service retrieve it securely. 3) If you don't need system-wide uptime (survive logout), prefer a LaunchAgent (no sudo) to reduce privilege and exposure. 4) Be aware caffeinate prevents system sleep and may harm laptop battery life. 5) If you proceed, change /Library/LaunchDaemons/ai.openclaw.gateway.plist permissions to restrict access or remove the OPENCLAW_GATEWAY_TOKEN from the plist and inject it at service start with a safer mechanism. If you want, I can suggest a safer plist pattern or a modified install script that avoids storing secrets in a world-readable file.
Capability Analysis
Type: OpenClaw Skill
Name: openclaw-macos-always-on
Version: 1.0.1
The skill is designed to install OpenClaw as a macOS LaunchDaemon for 24/7 operation, which requires system-level persistence and `sudo` privileges. While its stated purpose is legitimate, it is classified as suspicious due to several high-risk behaviors: it installs a system-wide service (`/Library/LaunchDaemons/ai.openclaw.gateway.plist`), uses `sudo` for installation, and embeds the `OPENCLAW_GATEWAY_TOKEN` (a sensitive credential) directly into the plist file. Although the `SKILL.md` documentation transparently discusses these security considerations and the service runs as the user (not root), the direct handling of a sensitive token in a file and the establishment of system-level persistence represent significant vulnerabilities if the system is compromised, even without clear evidence of malicious intent for self-exploitation or exfiltration to external parties.
Capability Assessment
Purpose & Capability
The declared purpose (run OpenClaw as a system LaunchDaemon that survives lock/logout) matches the instructions and the included install.sh: it creates a /Library/LaunchDaemons plist, wraps the node process with caffeinate, and bootstraps the service. Requiring sudo for installation and locating node/OpenClaw binaries is coherent with the stated goal.
Instruction Scope
Runtime instructions focus on creating and installing a LaunchDaemon, stopping user LaunchAgents, and verifying lock-screen behavior. The installer reads local OpenClaw configuration (openclaw config get gateway.auth.token) and writes system-level files; it does not appear to collect unrelated system data. However the instructions do recommend piping a remote install.sh via curl|bash (from a personal GitHub repo) which broadens the scope of trust.
Install Mechanism
The skill is instruction-only but includes an install.sh. The README/SKILL.md suggest a one-line curl|bash from raw.githubusercontent.com (a common host). That pattern is common but inherently risky: running remote scripts without review can execute arbitrary code. The included install.sh itself performs privileged operations but is contained in the package for inspection.
Credentials
The installer retrieves the OpenClaw gateway token and writes it into the plist's EnvironmentVariables (OPENCLAW_GATEWAY_TOKEN). The plist is installed at /Library/LaunchDaemons with permissions set to 644 (root:wheel), making the token readable by all local users — disproportionate exposure of a secret. Persisting sensitive tokens in a world-readable system file is a clear security risk. (No unrelated credentials are requested otherwise.)
Persistence & Privilege
The skill asks to create a system LaunchDaemon (requires sudo) and sets aggressive keepalive/throttle settings and caffeinate to prevent sleep — appropriate for 24/7 operation but impactful for battery and system policies. The combination of system-level persistence plus storing a gateway token in a world-readable system file increases the blast radius if other local users or processes can read that file.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install openclaw-macos-always-on - After installation, invoke the skill by name or use
/openclaw-macos-always-on - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.1
Add Chinese README (README.zh-CN.md) for Chinese-speaking users
v1.0.0
Initial release: LaunchDaemon + caffeinate for 24/7 macOS operation. Verified on macOS 14.4.
Metadata
Frequently Asked Questions
What is OpenClaw macOS Always-On?
Run OpenClaw as a system-level LaunchDaemon on macOS for 24/7 operation, surviving screen lock, logout, and user switching. Uses caffeinate to prevent sleep.... It is an AI Agent Skill for Claude Code / OpenClaw, with 590 downloads so far.
How do I install OpenClaw macOS Always-On?
Run "/install openclaw-macos-always-on" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is OpenClaw macOS Always-On free?
Yes, OpenClaw macOS Always-On is completely free (open-source). You can download, install and use it at no cost.
Which platforms does OpenClaw macOS Always-On support?
OpenClaw macOS Always-On is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created OpenClaw macOS Always-On?
It is built and maintained by happy dog (@happydog-intj); the current version is v1.0.1.
More Skills