by 安全扫描
OpenClaw
可疑
medium confidenceThe skill's stated purpose (backup/restore/migrate OpenClaw state) matches what the bundled script does, but there are metadata inconsistencies and sensitive-data risks (credentials are backed up and copied to remote hosts) that you should understand before installing.
评估建议
This skill appears to implement the advertised backup/restore/migrate functionality, but take these precautions before installing or using it:
- Review the full scripts yourself. The package includes scripts/ctm.sh — inspect it end-to-end to confirm there is no hidden network exfiltration or unexpected commands. The manifest you were shown is truncated in the copy you received; request the complete file if unsure.
- Understand what will be backed up: credentials/, telegram/, identity/ contain s...详细分析 ▾
ℹ 用途与能力
Name and description match the script behavior: it collects and archives OpenClaw state (workspace, credentials, skills, etc.), lists backups, restores them, and can migrate via scp/ssh. However the registry metadata declares no required binaries or environment variables while the script clearly depends on standard CLI tools (tar, ssh, scp, cp, mktemp, du, stat, find, sort). That metadata omission is an inconsistency (likely sloppy packaging) but reduces transparency.
✓ 指令范围
SKILL.md instructs the agent to run the bundled script and documents backup/list/restore/migrate flows. The script's actions (copying specific OpenClaw state paths, creating manifests, creating a safety backup, using scp/ssh to run a remote restore script) are within the stated scope. The instructions do not ask the agent to read unrelated system areas, but they do operate on sensitive OpenClaw files (credentials, telegram, identity) which is expected for this tool.
✓ 安装机制
No install spec is provided and the skill is delivered as an instruction plus a script file. That is the lowest install-risk category. Nothing in the package pulls arbitrary remote binaries or runs external installers.
ℹ 凭证需求
The skill requests no environment variables or explicit credentials in metadata, yet it archives and restores sensitive directories (credentials/, telegram/, identity/) and performs remote copy/restore over SSH. These actions legitimately require access to sensitive files and an SSH connection to the target host, but the metadata does not call this out. Users should recognize that backups will include credentials and that migration pushes those credentials to the remote host.
✓ 持久化与权限
The skill is not marked always:true and does not request elevated platform privileges. Autonomous invocation (disable-model-invocation=false) is default; there is no other unusual persistence or cross-skill configuration modification.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
版本
latestv1.0.42026/3/31
Harden backup/restore flow, add manifest support, improve migration behavior, and remove service lifecycle automation.
● Pending
安装命令
点击复制官方npx clawhub@latest install claw-time-machine
镜像加速npx clawhub@latest install claw-time-machine --registry https://cn.longxiaskill.com