Is kowl64/linux-service-triage safe?

https://github.com/openclaw/skills/tree/main/skills/kowl64/linux-service-triage

94
SAFE

This is a legitimate Linux system administration skill for service troubleshooting that follows security best practices. The skill provides valuable diagnostic guidance while emphasizing safety, user confirmation for risky operations, and read-only analysis by default.

Category Scores

Prompt Injection 95/100 · 30%
Data Exfiltration 90/100 · 25%
Code Execution 95/100 · 20%
Clone Behavior 98/100 · 10%
Canary Integrity 95/100 · 10%
Behavioral Reasoning 90/100 · 5%

Findings (3)

INFO System Command References -5

The skill documentation references Linux system commands like systemctl, journalctl, and nginx, but these are appropriately documented as diagnostic examples rather than executable code.

LOW Canary File Access During Installation -10

Monitoring detected access to honeypot files (.env, SSH keys, etc.) during skill installation, but this appears to be normal filesystem scanning during git operations. No files were modified.

LOW System-Level Operations Scope -10

The skill deals with potentially sensitive system administration tasks, but includes appropriate safety warnings and emphasizes read-only diagnosis by default.