📦 Openclaw Backup — 定时加密备份

v1.0.0

为 OpenClaw 提供定期备份与加密保护，可手动触发或按调度自动执行，支持云端同步与备份文件完整性校验，确保数据安全无忧。

0· 236·0 当前·0 累计

by @halaoluan

安全云服务自动化文件处理

下载技能包

最后更新

2026/4/21

安全扫描

VirusTotal

可疑

查看报告

OpenClaw

安全

medium confidence

NULL

评估建议

This skill appears to do exactly what it claims: bundle and run shell scripts to copy and optionally encrypt your OpenClaw data and optionally schedule cron jobs. Before installing or running: 1) Inspect the scripts yourself (they are plain shell) and ensure you trust any sample remote hosts (rsync example uses backup.example.com). 2) Understand backups include sensitive secrets (API keys, bot tokens, memory); always use encrypted backups before uploading to cloud or remote servers and do not st...

详细分析 ▾

✓ 用途与能力

Name/description say 'backup OpenClaw data' and the repository contains shell scripts that copy ~/.openclaw and ~/.clawdbot, create tar.gz archives, optionally encrypt with openssl, produce SHA256 checksums, and offer cron setup and rsync/cloud copy examples — all coherent with the stated purpose.

ℹ 指令范围

Runtime instructions and scripts operate on expected paths (~/.openclaw, ~/.clawdbot), stop/start the OpenClaw gateway if present, and can add cron entries. This is within scope, but backups will contain sensitive items (API keys, tokens, memory files). The SKILL.md and scripts do not exfiltrate data by default, but they include examples to copy to cloud or remote servers (rsync/Cloud Drive) which — if used — will transfer those sensitive files.

✓ 安装机制

No remote download/install step is declared; this is an instruction-only skill with plain shell scripts included. No obfuscated binaries or external archives are pulled during install. Low install risk.

ℹ 凭证需求

The skill does not declare required credentials. Scripts honor optional env vars (OPENCLAW_BACKUP_DIR, OPENCLAW_BACKUP_PASSWORD, OPENCLAW_BACKUP_SCRIPT) documented in README. That is reasonable. Important: backups contain API keys, tokens and channel data — encrypt before uploading or storing off-machine; the skill warns about this. Avoid setting passwords in plaintext environment variables unless you understand the risk.

ℹ 持久化与权限

always:false. The only persistent system change the skill can make is adding a crontab entry (setup_cron.sh) and writing files to the chosen backup directory and /tmp logs. Adding a cron job is expected for a backup tool but is a privileged action that should be performed with user confirmation.

安全有层次，运行前请审查代码。

运行时依赖

无特殊依赖

版本

latestv1.0.02026/3/14

NULL

● 可疑

安装命令

点击复制

官方npx clawhub@latest install halaoluan-openclaw-backup

镜像加速npx clawhub@latest install halaoluan-openclaw-backup --registry https://cn.longxiaskill.com

数据来源：ClawHub ↗ · 中文优化：龙虾技能库