Skills
skills/openclaw/skills/git-crypt-backup/Gen Agent Trust Hub

git-crypt-backup

Pass

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: SAFEDATA_EXFILTRATIONCOMMAND_EXECUTION
Full Analysis
  • [DATA_EXFILTRATION] (LOW): The skill is designed to read and transmit sensitive configuration files, including .env and credentials directories, to a remote GitHub repository. Evidence: scripts/backup.sh executes git push on paths like ~/.clawdbot. Mitigation: The skill utilizes git-crypt for encryption and targets a whitelisted domain (github.com).
  • [COMMAND_EXECUTION] (LOW): The script executes shell commands to automate the git workflow. Evidence: Use of git add, git commit, and git push within scripts/backup.sh.
  • [INDIRECT_PROMPT_INJECTION] (LOW): The skill ingests untrusted data from the local workspace for backup, creating a surface for potential prompt injection if malicious files are present. 1. Ingestion points: ~/clawd and ~/.clawdbot via git add -A. 2. Boundary markers: None. 3. Capability inventory: File read and network push via git. 4. Sanitization: None.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 17, 2026, 02:04 PM