🤖 Agent Frameworks

Safe Exec 0.3.2v1.0.0

Name: Safe Exec 0.3.2
Author: lucky-2968

safe-exec-0-3-2

Safe command execution for OpenClaw Agents with automatic danger pattern detection, risk assessment, user approval workflow, and audit logging. Use when agents need to execute shell commands that may be dangerous (rm -rf, dd, fork bombs, system directory modifications) or require human oversight. Provides multi-level risk assessment (CRITICAL/HIGH/MEDIUM/LOW), in-session notifications, pending request management, and non-interactive environment support for agent automation.

latest

Download Package View on ClawHub

Installs (all time)

Installs (current)

Downloads

3.0K

Stars

CreatedFeb 4, 2026

UpdatedMay 18, 2026

Install & Quick Start

Install via ClawdBot CLI:

clawdbot install lucky-2968/safe-exec-0-3-2

Skill Package36 files

📋SKILL.mdmarkdown

Failed to load file.

Quality Score

A66/100

Grade Good — based on market validation, documentation quality, package completeness, maintenance status, and authenticity signals.

Market Validation16/35

· 17 installs (average)
· 1909 downloads (moderate demand)
· 4 stars

Documentation20/25

· SKILL.md present
· Detailed documentation (≥3000 chars)
· Contains usage examples or trigger description
· Detailed summary

Package Completeness11/15

Security Analysis

🔴 High Risk

UNKNOWN_DATA_SINKhigh

Sends data to undocumented external endpoint (potential exfiltration)

Report → https://github.com/OTTTTTO/safe-exec/issues

UNSAFE_SHELLmedium

Potentially destructive shell commands in tool definitions

rm -rf /

SUSPICIOUS_PERMISSIONSmedium

Accesses system directories or attempts privilege escalation

/var/log/

UNDOCUMENTED_EXTERNALlow

Calls external URL not in known-safe list

https://github.com/OTTTTTO/safe-exec/issues

💡

Usage Guide

Generated Mar 1, 2026

DevOps EngineersSystem AdministratorsAI Agent DevelopersIT Security Teamsbeginner

💡 Application Scenarios

DevOps Pipeline SecurityTechnology/Software Development

Integrate SafeExec into CI/CD pipelines to automatically intercept and require approval for high-risk commands like system modifications or deletions during deployments. This prevents accidental destructive actions in production environments, ensuring only authorized personnel can approve critical operations via in-session notifications.

IT Infrastructure ManagementInformation Technology

Use SafeExec in IT teams managing servers and networks to monitor shell commands for risky operations such as formatting drives or deleting system files. It provides audit logging for compliance and real-time alerts, reducing human error and enhancing security oversight in multi-user environments.

Data Science Workflow SafetyData Science/Research

Deploy SafeExec in data science environments where automated scripts may execute commands that could delete datasets or modify configurations. It assesses risk levels and prompts for approval, protecting valuable data assets while allowing safe operations like file listings to proceed uninterrupted.

Educational Lab EnvironmentsEducation

Implement SafeExec in educational settings where students use OpenClaw agents for learning shell commands. It intercepts dangerous operations like recursive deletions, providing a safety net that teaches best practices without risking system integrity, with audit logs for instructor review.

Managed Service Provider OperationsManaged Services

Adopt SafeExec for MSPs managing client systems to enforce approval workflows for high-risk commands across multiple environments. It enables centralized audit logging and risk assessment, improving accountability and reducing the chance of service disruptions from agent errors.

💼 Business Models

Open-Source with Premium SupportSubscription-based support fees

Offer SafeExec as a free, open-source tool to build community adoption, while generating revenue through paid support plans for enterprises. This includes priority bug fixes, custom rule configurations, and dedicated assistance for integration into complex workflows.

SaaS Integration PlatformMonthly SaaS subscriptions

Develop a cloud-based version of SafeExec that integrates with various AI agent platforms beyond OpenClaw, providing centralized management and analytics. Revenue comes from tiered subscriptions based on usage volume, advanced features like AI-driven risk prediction, and API access.

Enterprise Licensing and ConsultingOne-time licenses and consulting fees

License SafeExec to large organizations with custom deployments, including on-premise installations and tailored rule sets. Additional revenue is generated from consulting services for implementation, training, and ongoing maintenance to ensure compliance with industry security standards.

💬 Integration Tip

Enable SafeExec with a simple command like 'Enable SafeExec' after installation, and configure environment variables such as SAFE_EXEC_AUTO_CONFIRM for low-risk commands to streamline automation without compromising safety.