Skills
skills/openclaw/skills/emergency-rescue/Gen Agent Trust Hub

emergency-rescue

Pass

Audited by Gen Agent Trust Hub on Mar 3, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: Employs sudo for administrative actions such as clearing system caches, truncating log files, and modifying network settings. These operations are appropriate for the skill's stated purpose of emergency recovery.
  • [EXTERNAL_DOWNLOADS]: Recommends the installation of external tools including git-filter-repo (pip), trash-cli (npm), and the BFG Repo-Cleaner from a third-party website.
  • [PROMPT_INJECTION]: The skill incorporates a diagnostic script that ingests system logs, process lists, and container metadata. This represents an indirect prompt injection surface where maliciously crafted logs or process names could theoretically influence agent behavior.
  • Ingestion points: journalctl, dmesg, ps, and docker ps outputs used in the diagnostic sequence.
  • Boundary markers: No delimiters or instructions are provided to the agent to treat system output as untrusted.
  • Capability inventory: Includes high-privilege sudo access, process termination, and filesystem modification across multiple scripts.
  • Sanitization: No evidence of data sanitization or validation of system logs before inspection.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 3, 2026, 10:05 AM