{ "schemaVersion": "1.0", "item": { "slug": "safe-exec", "name": "Safe Exec", "source": "tencent", "type": "skill", "category": "ε…Άδ»–", "sourceUrl": "https://clawhub.ai/OTTTTTO/safe-exec", "canonicalUrl": "https://clawhub.ai/OTTTTTO/safe-exec", "targetPlatform": "OpenClaw" }, "install": { "downloadMode": "redirect", "downloadUrl": "/downloads/safe-exec", "sourceDownloadUrl": "https://wry-manatee-359.convex.site/api/v1/download?slug=safe-exec", "sourcePlatform": "tencent", "targetPlatform": "OpenClaw", "installMethod": "Manual import", "extraction": "Extract archive", "prerequisites": [ "OpenClaw" ], "packageFormat": "ZIP package", "includedAssets": [ "CHANGELOG.md", "CLAWDHUB_APPEAL.md", "CLAWDHUB_SECURITY_RESPONSE.md", "GITHUB_ISSUE_TEMPLATE.md", "README-detail.md", "README.md" ], "primaryDoc": "SKILL.md", "quickSetup": [ "Download the package from Yavira.", "Extract the archive and review SKILL.md first.", "Import or place the package into your OpenClaw setup." ], "agentAssist": { "summary": "Hand the extracted package to your coding agent with a concrete install brief instead of figuring it out manually.", "steps": [ "Download the package from Yavira.", "Extract it into a folder your agent can access.", "Paste one of the prompts below and point your agent at the extracted folder." ], "prompts": [ { "label": "New install", "body": "I downloaded a skill package from Yavira. Read SKILL.md from the extracted folder and install it by following the included instructions. Then review README.md for any prerequisites, environment setup, or post-install checks. Tell me what you changed and call out any manual steps you could not complete." }, { "label": "Upgrade existing", "body": "I downloaded an updated skill package from Yavira. Read SKILL.md from the extracted folder, compare it with my current installation, and upgrade it while preserving any custom configuration unless the package docs explicitly say otherwise. Then review README.md for any prerequisites, environment setup, or post-install checks. Summarize what changed and any follow-up checks I should run." } ] }, "sourceHealth": { "source": "tencent", "status": "healthy", "reason": "direct_download_ok", "recommendedAction": "download", "checkedAt": "2026-04-23T16:43:11.935Z", "expiresAt": "2026-04-30T16:43:11.935Z", "httpStatus": 200, "finalUrl": "https://wry-manatee-359.convex.site/api/v1/download?slug=4claw-imageboard", "contentType": "application/zip", "probeMethod": "head", "details": { "probeUrl": "https://wry-manatee-359.convex.site/api/v1/download?slug=4claw-imageboard", "contentDisposition": "attachment; filename=\"4claw-imageboard-1.0.1.zip\"", "redirectLocation": null, "bodySnippet": null }, "scope": "source", "summary": "Source download looks usable.", "detail": "Yavira can redirect you to the upstream package for this source.", "primaryActionLabel": "Download for OpenClaw", "primaryActionHref": "/downloads/safe-exec" }, "validation": { "installChecklist": [ "Use the Yavira download entry.", "Review SKILL.md after the package is downloaded.", "Confirm the extracted package contains the expected setup assets." ], "postInstallChecks": [ "Confirm the extracted package includes the expected docs or setup files.", "Validate the skill or prompts are available in your target agent workspace.", "Capture any manual follow-up steps the agent could not complete." ] }, "downloadPageUrl": "https://openagent3.xyz/downloads/safe-exec", "agentPageUrl": "https://openagent3.xyz/skills/safe-exec/agent", "manifestUrl": "https://openagent3.xyz/skills/safe-exec/agent.json", "briefUrl": "https://openagent3.xyz/skills/safe-exec/agent.md" }, "agentAssist": { "summary": "Hand the extracted package to your coding agent with a concrete install brief instead of figuring it out manually.", "steps": [ "Download the package from Yavira.", "Extract it into a folder your agent can access.", "Paste one of the prompts below and point your agent at the extracted folder." ], "prompts": [ { "label": "New install", "body": "I downloaded a skill package from Yavira. Read SKILL.md from the extracted folder and install it by following the included instructions. Then review README.md for any prerequisites, environment setup, or post-install checks. Tell me what you changed and call out any manual steps you could not complete." }, { "label": "Upgrade existing", "body": "I downloaded an updated skill package from Yavira. Read SKILL.md from the extracted folder, compare it with my current installation, and upgrade it while preserving any custom configuration unless the package docs explicitly say otherwise. Then review README.md for any prerequisites, environment setup, or post-install checks. Summarize what changed and any follow-up checks I should run." } ] }, "documentation": { "source": "clawhub", "primaryDoc": "SKILL.md", "sections": [ { "title": "SafeExec - Safe Command Execution", "body": "Provides secure command execution capabilities for OpenClaw Agents with automatic interception of dangerous operations and approval workflow." }, { "title": "Features", "body": "πŸ” Automatic danger pattern detection - Identifies risky commands before execution\n🚨 Risk-based interception - Multi-level assessment (CRITICAL/HIGH/MEDIUM/LOW)\nπŸ’¬ In-session notifications - Real-time alerts in your current terminal/session\nβœ… User approval workflow - Commands wait for explicit confirmation\nπŸ“Š Complete audit logging - Full traceability of all operations\nπŸ€– Agent-friendly - Non-interactive mode support for automated workflows\nπŸ”§ Platform-agnostic - Works independently of communication tools (webchat, Feishu, Telegram, etc.)\nπŸ” Security-focused - No monitoring, no external notifications, no network calls" }, { "title": "Agent Mode", "body": "When called by OpenClaw agents in non-interactive environments:\n\nAutomatic bypass of confirmation prompts - Prevents agent hanging\nFull audit logging - All executions recorded with mode label (agent_auto vs user_approved)\nSafety preserved - Danger pattern detection and risk assessment remain active\nIntended use case - Automated workflows with human oversight via audit logs\n\nEnvironment variables:\n\nOPENCLAW_AGENT_CALL - Set by OpenClaw when agent executes commands\nSAFE_EXEC_AUTO_CONFIRM - Manual override to auto-approve LOW/MEDIUM risk commands\n\nSecurity Note: Agent mode does not disable safety checks. CRITICAL and HIGH risk commands are still intercepted, logged, and can be reviewed in audit trail." }, { "title": "Installation (One Command)", "body": "The easiest way to install SafeExec:\n\nJust say in your OpenClaw chat:\n\nHelp me install SafeExec skill from ClawdHub\n\nOpenClaw will automatically download, install, and configure SafeExec for you!" }, { "title": "Alternative: Manual Installation", "body": "If you prefer manual installation:\n\n# Clone from GitHub\ngit clone https://github.com/OTTTTTO/safe-exec.git ~/.openclaw/skills/safe-exec\n\n# Make scripts executable\nchmod +x ~/.openclaw/skills/safe-exec/safe-exec*.sh\n\n# Create symlinks to PATH (optional)\nln -s ~/.openclaw/skills/safe-exec/safe-exec.sh ~/.local/bin/safe-exec\nln -s ~/.openclaw/skills/safe-exec/safe-exec-*.sh ~/.local/bin/" }, { "title": "Enable SafeExec", "body": "After installation, simply say:\n\nEnable SafeExec\n\nSafeExec will start monitoring all shell commands automatically!" }, { "title": "How It Works", "body": "Once enabled, SafeExec automatically monitors all shell command executions. When a potentially dangerous command is detected, it intercepts the execution and requests your approval through in-session terminal notifications.\n\nArchitecture:\n\nRequests stored in: ~/.openclaw/safe-exec/pending/\nAudit log: ~/.openclaw/safe-exec-audit.log\nRules config: ~/.openclaw/safe-exec-rules.json\nNo external network calls\nNo background monitoring processes" }, { "title": "Usage", "body": "Enable SafeExec:\n\nEnable SafeExec\n\nTurn on SafeExec\n\nStart SafeExec\n\nOnce enabled, SafeExec runs transparently in the background. Agents can execute commands normally, and SafeExec will automatically intercept dangerous operations:\n\nDelete all files in /tmp/test\n\nFormat the USB drive\n\nSafeExec detects the risk level and displays an in-session prompt for approval." }, { "title": "Risk Levels", "body": "CRITICAL: System-destructive commands (rm -rf /, dd, mkfs, fork bombs)\nHIGH: User data deletion or significant system changes (chmod 777, curl | bash)\nMEDIUM: Service operations or configuration changes (sudo, firewall modifications)\nLOW: Read operations and safe file manipulations" }, { "title": "Approval Workflow", "body": "Agent executes a command\nSafeExec analyzes the risk level\nIn-session notification displayed in your terminal\nApprove or reject via:\n\nTerminal: safe-exec-approve \nList pending: safe-exec-list\nReject: safe-exec-reject \n\n\nCommand executes or is cancelled\n\nExample notification:\n\n🚨 **Dangerous Operation Detected - Command Intercepted**\n\n**Risk Level:** CRITICAL\n**Command:** `rm -rf /tmp/test`\n**Reason:** Recursive deletion with force flag\n\n**Request ID:** `req_1769938492_9730`\n\nℹ️ This command requires user approval to execute.\n\n**Approval Methods:**\n1. In terminal: `safe-exec-approve req_1769938492_9730`\n2. Or: `safe-exec-list` to view all pending requests\n\n**Rejection Method:**\n `safe-exec-reject req_1769938492_9730`" }, { "title": "Configuration", "body": "Environment variables for customization:\n\nSAFE_EXEC_DISABLE - Set to '1' to globally disable safe-exec\nOPENCLAW_AGENT_CALL - Automatically enabled in agent mode (non-interactive)\nSAFE_EXEC_AUTO_CONFIRM - Auto-approve LOW/MEDIUM risk commands" }, { "title": "Examples", "body": "Enable SafeExec:\n\nEnable SafeExec\n\nAfter enabling, agents work normally:\n\nDelete old log files from /var/log\n\nSafeExec automatically detects this is HIGH risk (deletion) and displays an in-session approval prompt.\n\nSafe operations pass through without interruption:\n\nList files in /home/user/documents\n\nThis is LOW risk and executes without approval." }, { "title": "Global Control", "body": "Check status:\n\nsafe-exec-list\n\nView audit log:\n\ncat ~/.openclaw/safe-exec-audit.log\n\nDisable SafeExec globally:\n\nDisable SafeExec\n\nOr set environment variable:\n\nexport SAFE_EXEC_DISABLE=1" }, { "title": "Reporting Issues", "body": "Found a bug? Have a feature request?\n\nPlease report issues at:\nπŸ”— https://github.com/OTTTTTO/safe-exec/issues\n\nWe welcome community feedback, bug reports, and feature suggestions!\n\nWhen reporting issues, please include:\n\nSafeExec version (run: grep \"VERSION\" ~/.openclaw/skills/safe-exec/safe-exec.sh)\nOpenClaw version\nSteps to reproduce\nExpected vs actual behavior\nRelevant logs from ~/.openclaw/safe-exec-audit.log" }, { "title": "Audit Log", "body": "All command executions are logged with:\n\nTimestamp\nCommand executed\nRisk level\nExecution mode (user_approved / agent_auto)\nApproval status\nExecution result\nRequest ID for traceability\n\nLog location: ~/.openclaw/safe-exec-audit.log" }, { "title": "Security & Privacy", "body": "What SafeExec does:\n\nβœ… Intercepts shell commands before execution\nβœ… Detects dangerous patterns using regex matching\nβœ… Requests user approval for risky commands\nβœ… Logs all executions to local audit file\nβœ… Works entirely locally on your machine\n\nWhat SafeExec does NOT do:\n\n❌ No monitoring of chat sessions or conversation history\n❌ No reading of OpenClaw session data\n❌ No external network requests (except git clone during installation)\n❌ No sending data to external services\n❌ No background monitoring processes or cron jobs\n❌ No integration with external notification services (Feishu, webhooks, etc.)" }, { "title": "Integration", "body": "SafeExec integrates seamlessly with OpenClaw agents. Once enabled, it works transparently without requiring changes to agent behavior or command structure. The approval workflow is entirely local and independent of any external communication platform." }, { "title": "Platform Independence", "body": "SafeExec operates at the session level, working with any communication channel your OpenClaw instance supports (webchat, Feishu, Telegram, Discord, etc.). The approval workflow happens through your terminal, ensuring you maintain control regardless of how you're interacting with your agent." }, { "title": "Support & Community", "body": "GitHub Repository: https://github.com/OTTTTTO/safe-exec\nIssue Tracker: https://github.com/OTTTTTO/safe-exec/issues\nDocumentation: README.md\nClawdHub: https://www.clawhub.ai/skills/safe-exec" }, { "title": "License", "body": "MIT License - See LICENSE for details." } ], "body": "SafeExec - Safe Command Execution\n\nProvides secure command execution capabilities for OpenClaw Agents with automatic interception of dangerous operations and approval workflow.\n\nFeatures\nπŸ” Automatic danger pattern detection - Identifies risky commands before execution\n🚨 Risk-based interception - Multi-level assessment (CRITICAL/HIGH/MEDIUM/LOW)\nπŸ’¬ In-session notifications - Real-time alerts in your current terminal/session\nβœ… User approval workflow - Commands wait for explicit confirmation\nπŸ“Š Complete audit logging - Full traceability of all operations\nπŸ€– Agent-friendly - Non-interactive mode support for automated workflows\nπŸ”§ Platform-agnostic - Works independently of communication tools (webchat, Feishu, Telegram, etc.)\nπŸ” Security-focused - No monitoring, no external notifications, no network calls\nAgent Mode\n\nWhen called by OpenClaw agents in non-interactive environments:\n\nAutomatic bypass of confirmation prompts - Prevents agent hanging\nFull audit logging - All executions recorded with mode label (agent_auto vs user_approved)\nSafety preserved - Danger pattern detection and risk assessment remain active\nIntended use case - Automated workflows with human oversight via audit logs\n\nEnvironment variables:\n\nOPENCLAW_AGENT_CALL - Set by OpenClaw when agent executes commands\nSAFE_EXEC_AUTO_CONFIRM - Manual override to auto-approve LOW/MEDIUM risk commands\n\nSecurity Note: Agent mode does not disable safety checks. CRITICAL and HIGH risk commands are still intercepted, logged, and can be reviewed in audit trail.\n\nQuick Start\nInstallation (One Command)\n\nThe easiest way to install SafeExec:\n\nJust say in your OpenClaw chat:\n\nHelp me install SafeExec skill from ClawdHub\n\n\nOpenClaw will automatically download, install, and configure SafeExec for you!\n\nAlternative: Manual Installation\n\nIf you prefer manual installation:\n\n# Clone from GitHub\ngit clone https://github.com/OTTTTTO/safe-exec.git ~/.openclaw/skills/safe-exec\n\n# Make scripts executable\nchmod +x ~/.openclaw/skills/safe-exec/safe-exec*.sh\n\n# Create symlinks to PATH (optional)\nln -s ~/.openclaw/skills/safe-exec/safe-exec.sh ~/.local/bin/safe-exec\nln -s ~/.openclaw/skills/safe-exec/safe-exec-*.sh ~/.local/bin/\n\nEnable SafeExec\n\nAfter installation, simply say:\n\nEnable SafeExec\n\n\nSafeExec will start monitoring all shell commands automatically!\n\nHow It Works\n\nOnce enabled, SafeExec automatically monitors all shell command executions. When a potentially dangerous command is detected, it intercepts the execution and requests your approval through in-session terminal notifications.\n\nArchitecture:\n\nRequests stored in: ~/.openclaw/safe-exec/pending/\nAudit log: ~/.openclaw/safe-exec-audit.log\nRules config: ~/.openclaw/safe-exec-rules.json\nNo external network calls\nNo background monitoring processes\nUsage\n\nEnable SafeExec:\n\nEnable SafeExec\n\nTurn on SafeExec\n\nStart SafeExec\n\n\nOnce enabled, SafeExec runs transparently in the background. Agents can execute commands normally, and SafeExec will automatically intercept dangerous operations:\n\nDelete all files in /tmp/test\n\nFormat the USB drive\n\n\nSafeExec detects the risk level and displays an in-session prompt for approval.\n\nRisk Levels\n\nCRITICAL: System-destructive commands (rm -rf /, dd, mkfs, fork bombs) HIGH: User data deletion or significant system changes (chmod 777, curl | bash) MEDIUM: Service operations or configuration changes (sudo, firewall modifications) LOW: Read operations and safe file manipulations\n\nApproval Workflow\nAgent executes a command\nSafeExec analyzes the risk level\nIn-session notification displayed in your terminal\nApprove or reject via:\nTerminal: safe-exec-approve \nList pending: safe-exec-list\nReject: safe-exec-reject \nCommand executes or is cancelled\n\nExample notification:\n\n🚨 **Dangerous Operation Detected - Command Intercepted**\n\n**Risk Level:** CRITICAL\n**Command:** `rm -rf /tmp/test`\n**Reason:** Recursive deletion with force flag\n\n**Request ID:** `req_1769938492_9730`\n\nℹ️ This command requires user approval to execute.\n\n**Approval Methods:**\n1. In terminal: `safe-exec-approve req_1769938492_9730`\n2. Or: `safe-exec-list` to view all pending requests\n\n**Rejection Method:**\n `safe-exec-reject req_1769938492_9730`\n\nConfiguration\n\nEnvironment variables for customization:\n\nSAFE_EXEC_DISABLE - Set to '1' to globally disable safe-exec\nOPENCLAW_AGENT_CALL - Automatically enabled in agent mode (non-interactive)\nSAFE_EXEC_AUTO_CONFIRM - Auto-approve LOW/MEDIUM risk commands\nExamples\n\nEnable SafeExec:\n\nEnable SafeExec\n\n\nAfter enabling, agents work normally:\n\nDelete old log files from /var/log\n\n\nSafeExec automatically detects this is HIGH risk (deletion) and displays an in-session approval prompt.\n\nSafe operations pass through without interruption:\n\nList files in /home/user/documents\n\n\nThis is LOW risk and executes without approval.\n\nGlobal Control\n\nCheck status:\n\nsafe-exec-list\n\n\nView audit log:\n\ncat ~/.openclaw/safe-exec-audit.log\n\n\nDisable SafeExec globally:\n\nDisable SafeExec\n\n\nOr set environment variable:\n\nexport SAFE_EXEC_DISABLE=1\n\nReporting Issues\n\nFound a bug? Have a feature request?\n\nPlease report issues at: πŸ”— https://github.com/OTTTTTO/safe-exec/issues\n\nWe welcome community feedback, bug reports, and feature suggestions!\n\nWhen reporting issues, please include:\n\nSafeExec version (run: grep \"VERSION\" ~/.openclaw/skills/safe-exec/safe-exec.sh)\nOpenClaw version\nSteps to reproduce\nExpected vs actual behavior\nRelevant logs from ~/.openclaw/safe-exec-audit.log\nAudit Log\n\nAll command executions are logged with:\n\nTimestamp\nCommand executed\nRisk level\nExecution mode (user_approved / agent_auto)\nApproval status\nExecution result\nRequest ID for traceability\n\nLog location: ~/.openclaw/safe-exec-audit.log\n\nSecurity & Privacy\n\nWhat SafeExec does:\n\nβœ… Intercepts shell commands before execution\nβœ… Detects dangerous patterns using regex matching\nβœ… Requests user approval for risky commands\nβœ… Logs all executions to local audit file\nβœ… Works entirely locally on your machine\n\nWhat SafeExec does NOT do:\n\n❌ No monitoring of chat sessions or conversation history\n❌ No reading of OpenClaw session data\n❌ No external network requests (except git clone during installation)\n❌ No sending data to external services\n❌ No background monitoring processes or cron jobs\n❌ No integration with external notification services (Feishu, webhooks, etc.)\nIntegration\n\nSafeExec integrates seamlessly with OpenClaw agents. Once enabled, it works transparently without requiring changes to agent behavior or command structure. The approval workflow is entirely local and independent of any external communication platform.\n\nPlatform Independence\n\nSafeExec operates at the session level, working with any communication channel your OpenClaw instance supports (webchat, Feishu, Telegram, Discord, etc.). The approval workflow happens through your terminal, ensuring you maintain control regardless of how you're interacting with your agent.\n\nSupport & Community\nGitHub Repository: https://github.com/OTTTTTO/safe-exec\nIssue Tracker: https://github.com/OTTTTTO/safe-exec/issues\nDocumentation: README.md\nClawdHub: https://www.clawhub.ai/skills/safe-exec\nLicense\n\nMIT License - See LICENSE for details." }, "trust": { "sourceLabel": "tencent", "provenanceUrl": "https://clawhub.ai/OTTTTTO/safe-exec", "publisherUrl": "https://clawhub.ai/OTTTTTO/safe-exec", "owner": "OTTTTTO", "version": "0.3.4", "license": null, "verificationStatus": "Indexed source record" }, "links": { "detailUrl": "https://openagent3.xyz/skills/safe-exec", "downloadUrl": "https://openagent3.xyz/downloads/safe-exec", "agentUrl": "https://openagent3.xyz/skills/safe-exec/agent", "manifestUrl": "https://openagent3.xyz/skills/safe-exec/agent.json", "briefUrl": "https://openagent3.xyz/skills/safe-exec/agent.md" } }