OpenClaw Config Backuper | OpenClaw配置备份
· v1.2.1
"Backup OpenClaw config files, Skills, Workspace files, and Memory records for migration or disaster recovery. 备份 OpenClaw 配置文件、技能、工作区文件和记忆记录,用于迁移或灾难恢复。Triggers: 备份, backup, 备份配置, backup config, 配置备份, config backup, 备份OpenClaw, backup openclaw, 迁移配置, migrate config, 恢复配置, restore config, 导出配置, export config, 配置迁移, config migration, 灾难恢复, disaster recovery, 备份技能, backup skills, 备份工作区, backup workspace, 备份记忆, backup memory, OpenClaw备份, openclaw backup, 配置导出, config export, 系统备份, system backup, 配置文件备份, config files backup."
H:3 D:0 A:0 C:1
⚠️ Hazard Flags
EXEC
📋 Capabilities
Execution
- ✅ Shell execution
- ❌ Code execution
- ❌ Install dependencies
- ❌ Persistence
- Privilege: user
Filesystem
- ❌ Read workspace
- ❌ Write workspace
- ❌ Read home
- ❌ Write home
- ❌ Read system
- ❌ Delete
Network
- Egress: none
- ❌ Ingress
Credentials
- ❌ Environment vars
- ❌ Credential files
- ❌ Browser data
- ❌ Keychain
Actions
❌ send messages❌ post public❌ purchase❌ transfer money❌ deploy❌ delete external
🔒 Containment
Level: elevated
Required:
- SANDBOX_CONTAINER: Code execution capability
Recommended:
- LOG_ACTIONS: Audit trail for all actions
⚡ Risks
Unauthorized tool use: MCP_SYS_CRITICAL_ACCESS high
Mitigation: Avoid accessing system directories unless absolutely necessary.
Social engineering indicators: SOCIAL_ENG_VAGUE_DESCRIPTION low
Mitigation: Provide clear, detailed description of skill functionality
Want a deeper analysis?
This report was generated by static analysis. Get an LLM-powered deep review with behavioral reasoning and attack surface mapping.
🧠 Deep Analysis — $5.00🚨 Incident Response
Kill switch: Stop the agent process
Containment: Review logs for unexpected actions
Recovery: Depends on skill capabilities
📄 Raw SSDS JSON click to expand
{
"meta": {
"document_id": "ssds:auto:openclaw-config-backuper:1.2.1",
"ssds_version": "0.2.0",
"scanner_version": "0.4.0+fe6fd9123d50",
"created_at": "2026-03-05T15:36:40.879Z",
"created_by": {
"agent": "safeagentskills-cli/generate-ssds"
},
"language": "en",
"notes": "Auto-generated SSDS. Manual review recommended."
},
"skill": {
"name": "OpenClaw Config Backuper | OpenClaw配置备份",
"version": "1.2.1",
"format": "agent_skill",
"description": "\"Backup OpenClaw config files, Skills, Workspace files, and Memory records for migration or disaster recovery. 备份 OpenClaw 配置文件、技能、工作区文件和记忆记录,用于迁移或灾难恢复。Triggers: 备份, backup, 备份配置, backup config, 配置备份, config backup, 备份OpenClaw, backup openclaw, 迁移配置, migrate config, 恢复配置, restore config, 导出配置, export config, 配置迁移, config migration, 灾难恢复, disaster recovery, 备份技能, backup skills, 备份工作区, backup workspace, 备份记忆, backup memory, OpenClaw备份, openclaw backup, 配置导出, config export, 系统备份, system backup, 配置文件备份, config files backup.\"",
"publisher": "unknown",
"source": {
"channel": "local"
},
"artifact": {
"sha256": "e777f303344b01706976fb57a89be2f74e53da1fcc01d8b5a95e39e3dbb3e32f",
"hash_method": "files_sorted"
}
},
"capabilities": {
"execution": {
"can_exec_shell": true,
"can_exec_code": false,
"privilege_level": "user",
"can_install_deps": false,
"can_persist": false
},
"filesystem": {
"reads_workspace": false,
"reads_user_home": false,
"reads_system": false,
"writes_workspace": false,
"writes_user_home": false,
"writes_system": false,
"can_delete": false
},
"network": {
"egress": "none",
"ingress": false
},
"credentials": {
"reads_env_vars": false,
"reads_credential_files": false,
"reads_browser_data": false,
"reads_keychain": false
},
"services": [],
"actions": {
"can_send_messages": false,
"can_post_public": false,
"can_purchase": false,
"can_transfer_money": false,
"can_deploy": false,
"can_delete_external": false
},
"prompt_injection_surfaces": [],
"content_types": [
"general"
]
},
"hazards": {
"hdac": {
"H": 3,
"D": 0,
"A": 0,
"C": 1
},
"flags": [
"EXEC"
],
"custom_flags": [
{
"code": "TOOL_ABUSE",
"name": "Unauthorized Tool Use",
"description": "MCP_SYS_CRITICAL_ACCESS: Access to critical system directories"
},
{
"code": "SOCIAL_ENGINEERING",
"name": "Social Engineering Risk",
"description": "SOCIAL_ENG_VAGUE_DESCRIPTION: Skill description is too vague or missing"
}
],
"confidence": {
"level": "medium",
"basis": [
"static_analysis"
],
"notes": "Detected 2 security patterns (2 vendored rule hits). Review recommended."
},
"rationale": {
"H": "H3: Shell/code execution or persistence detected",
"D": "D0: No sensitive data access",
"A": "A0: No side effects detected",
"C": "C1: General content"
}
},
"containment": {
"level": "elevated",
"required": [
{
"control": "SANDBOX_CONTAINER",
"reason": "Code execution capability"
}
],
"recommended": [
{
"control": "LOG_ACTIONS",
"reason": "Audit trail for all actions"
}
],
"uncontained_risk": "Risk level depends on manual review of actual capabilities."
},
"risks": {
"risks": [
{
"risk": "Unauthorized tool use: MCP_SYS_CRITICAL_ACCESS",
"severity": "high",
"mitigation": "Avoid accessing system directories unless absolutely necessary."
},
{
"risk": "Social engineering indicators: SOCIAL_ENG_VAGUE_DESCRIPTION",
"severity": "low",
"mitigation": "Provide clear, detailed description of skill functionality"
}
],
"limitations": [
"Static analysis only - runtime behavior not verified"
]
},
"incident_response": {
"kill_switch": [
"Stop the agent process"
],
"containment": [
"Review logs for unexpected actions"
],
"recovery": [
"Depends on skill capabilities"
]
},
"evidence": [
{
"evidence_id": "EV:file-1",
"type": "file_excerpt",
"title": "_meta.json",
"file_path": "_meta.json"
},
{
"evidence_id": "EV:file-2",
"type": "file_excerpt",
"title": "scripts/backup.sh",
"file_path": "scripts/backup.sh"
},
{
"evidence_id": "EV:file-3",
"type": "file_excerpt",
"title": "SKILL.md",
"file_path": "SKILL.md"
},
{
"evidence_id": "EV:cisco-1",
"type": "file_excerpt",
"title": "MCP_SYS_CRITICAL_ACCESS [HIGH] scripts/backup.sh:1: #!/bin/bash",
"file_path": "scripts/backup.sh"
},
{
"evidence_id": "EV:cisco-2",
"type": "file_excerpt",
"title": "SOCIAL_ENG_VAGUE_DESCRIPTION [LOW] SKILL.md:1: ---",
"file_path": "SKILL.md"
}
]
}