Oathe Security Badge

Is halfdeadcat/session-janitor safe?

https://clawhub.ai/halfdeadcat/session-janitor

87
SAFE

Session Janitor is a legitimate maintenance tool for OpenClaw gateways that provides transcript trimming, memory extraction, and system hygiene features. While it requires significant system-level permissions and file access for its stated functionality, no malicious behavior was detected and all capabilities appear necessary for proper operation.

Category Scores

Prompt Injection 95/100 · 30%
Data Exfiltration 85/100 · 25%
Code Execution 70/100 · 20%
Clone Behavior 95/100 · 10%
Canary Integrity 100/100 · 10%
Behavioral Reasoning 75/100 · 5%

Findings (5)

HIGH System Service Installation -25

The skill installs cron jobs, systemd services (Linux), and launchd services (macOS) for automated maintenance. While legitimate for its stated purpose, this provides significant system-level execution capabilities.

MEDIUM Gateway Restart Capabilities -5

The watchdog component can automatically trigger gateway restart scripts when it detects hung sessions. This could potentially be abused for denial of service.

MEDIUM Extensive File System Access -10

The tool has broad file system access for transcript management, archiving, and cleanup. While necessary for its function, this provides significant data access capabilities.

LOW LLM Memory Extraction -5

The tool extracts and processes conversation data through LLM APIs for memory creation. While using local gateways, this involves processing potentially sensitive conversation content.

LOW Complex Tool Integration -5

The skill has extensive integration capabilities with OpenClaw gateways that could theoretically be exploited, though no malicious instructions were detected.