This skill validates OpenClaw installations for security misconfigurations and setup issues. It runs during initial setup and periodically (e.g., via heartbeats or cron) to ensure ongoing safety.
The validator checks for the following issues:
| Check | Description | Reference |
|---|---|---|
| ------- | ------------- | ----------- |
| Excessive Permissions | Ensures OpenClaw and plugins have only necessary permissions. | CHECKS.md |
| Unsafe Plugins | Identifies plugins from untrusted sources or with known vulnerabilities. | CHECKS.md |
| Missing Sandboxing | Validates that sandboxing is properly configured. | CHECKS.md |
| Outdated Dependencies | Checks for outdated or vulnerable dependencies. | CHECKS.md |
See CHECKS.md for detailed descriptions of each check.
Before using the scripts, ensure they have executable permissions:
chmod +x ~/.openclaw/skills/setup-validator/scripts/*.py
Execute the validation script to check for misconfigurations:
python scripts/validate_setup.py
If issues are detected, generate actionable warnings with fixes:
python scripts/generate_warnings.py
[WARNING] Excessive permissions detected for OpenClaw.
- Fix: Run `chmod 750 ~/.openclaw` to restrict permissions.
[WARNING] Unsafe plugin detected: example-plugin.
- Fix: Remove the plugin with `openclaw plugin remove example-plugin`.
To run this skill periodically (e.g., via cron or heartbeats), add the following to your cron jobs:
0 * * * * python ~/.openclaw/skills/setup-validator/scripts/validate_setup.py
共 1 个版本