mohuclaw 1.0.1

package/scripts/repair/supply_chain/check_3.sh

@@ -0,0 +1,78 @@
+#!/bin/bash
+# CHECK 3 (origin 3): Reverse Shells & Backdoors
+
+SCRIPT_DIR="$(cd "$(dirname "$0")" && pwd)"
+source "$SCRIPT_DIR/_common.sh"
+
+# Environment vars (set by caller / _common.sh sourced before this):
+#   SKILL_NAME     — if set (auto-fix mode), the skill to remove
+#   AUTO_FIX       — if "1", automatically remove the offending skill
+# Example: AUTO_FIX=1 SKILL_NAME="your-skill-name" ./check_3.sh
+
+SHELL_PATTERN='nc -e|/dev/tcp/|mkfifo.*nc|bash -i >|socat.*exec|python.*socket.*connect|nohup.*bash.*tcp|perl.*socket.*INET|ruby.*TCPSocket|php.*fsockopen|lua.*socket\.tcp|xattr -[cr]|com\.apple\.quarantine'
+FOUND_SKILLS=()
+
+if [ -d "$SKILLS_DIR" ]; then
+    while IFS= read -r file; do
+        skill_name="$(basename "$(dirname "$file")")"
+        # Deduplicate
+        if [[ ! " ${FOUND_SKILLS[*]} " =~ " ${skill_name} " ]]; then
+            FOUND_SKILLS+=("$skill_name")
+        fi
+    done < <(grep -rlinE --exclude-dir="$SELF_DIR_NAME" "$SHELL_PATTERN" "$SKILLS_DIR" 2>/dev/null || true)
+fi
+
+# Auto-fix
+if [ "${AUTO_FIX:-0}" = "1" ]; then
+    TARGET_SKILL="${SKILL_NAME}"
+    log "AUTO-FIX: Removing skill '$TARGET_SKILL'..."
+
+    SKILL_PATH="$SKILLS_DIR/$TARGET_SKILL"
+    LOCK_FILE="$WORKSPACE_DIR/.clawhub/lock.json"
+
+    # 删除 skill 目录
+    if rm -rf "$SKILL_PATH"; then
+        log "SUCCESS: Skill directory '$SKILL_PATH' removed."
+    else
+        log "ERROR: Failed to remove '$SKILL_PATH'"
+        exit 1
+    fi
+
+    # 从 lock.json 移除条目
+    if [ -f "$LOCK_FILE" ] && command -v python3 >/dev/null 2>&1; then
+        python3 -c "
+import json, sys
+with open('$LOCK_FILE') as f:
+    data = json.load(f)
+data['skills'] = {k: v for k, v in data['skills'].items() if k != '$TARGET_SKILL'}
+with open('$LOCK_FILE', 'w') as f:
+    json.dump(data, f, indent=2)
+" && log "SUCCESS: Removed '$TARGET_SKILL' from lock.json"
+    fi
+
+    log "SUCCESS: Skill '$TARGET_SKILL' has been removed."
+    exit 0
+fi
+
+# Guidance
+cat << EOF
+RECOMMENDED ACTIONS:
+1. Remove the suspicious skills immediately:
+$(for skill in "${FOUND_SKILLS[@]}"; do echo "   rm -rf ~/.openclaw/workspace/skills/$skill"; done)
+
+2. Check for active suspicious connections:
+   netstat -an | grep ESTABLISHED
+   lsof -i -n -P | grep ESTABLISHED
+
+3. Kill any suspicious connections
+    kill -9 <PID>
+
+4. Review system for persistence mechanisms:
+   systemctl list-units --type=service --user
+   crontab -l
+
+auto-fix
+$(for skill in "${FOUND_SKILLS[@]}"; do echo "$skill"; done)
+EOF
+
+exit 0

package/scripts/repair/supply_chain/check_4.sh

@@ -0,0 +1,72 @@
+#!/bin/bash
+# CHECK 4 (origin 4): Credential Exfiltration Endpoints
+
+SCRIPT_DIR="$(cd "$(dirname "$0")" && pwd)"
+source "$SCRIPT_DIR/_common.sh"
+
+# Environment vars (set by caller / _common.sh sourced before this):
+#   SKILL_NAME     — if set (auto-fix mode), the skill to remove
+#   AUTO_FIX       — if "1", automatically remove the offending skill
+# Example: AUTO_FIX=1 SKILL_NAME="your-skill-name" ./check_4.sh
+
+DOMAIN_PATTERN="$(load_domains | tr '\n' '|' | sed 's/|$//' | sed 's/\./\\./g')"
+FOUND_SKILLS=()
+
+if [ -d "$SKILLS_DIR" ]; then
+    while IFS= read -r file; do
+        skill_name="$(basename "$(dirname "$file")")"
+        # Deduplicate
+        if [[ ! " ${FOUND_SKILLS[*]} " =~ " ${skill_name} " ]]; then
+            FOUND_SKILLS+=("$skill_name")
+        fi
+    done < <(grep -rlinE --exclude-dir="$SELF_DIR_NAME" "$DOMAIN_PATTERN" "$SKILLS_DIR" 2>/dev/null || true)
+fi
+
+# Auto-fix
+if [ "${AUTO_FIX:-0}" = "1" ]; then
+    TARGET_SKILL="${SKILL_NAME}"
+    log "AUTO-FIX: Removing skill '$TARGET_SKILL'..."
+
+    SKILL_PATH="$SKILLS_DIR/$TARGET_SKILL"
+    LOCK_FILE="$WORKSPACE_DIR/.clawhub/lock.json"
+
+    # 删除 skill 目录
+    if rm -rf "$SKILL_PATH"; then
+        log "SUCCESS: Skill directory '$SKILL_PATH' removed."
+    else
+        log "ERROR: Failed to remove '$SKILL_PATH'"
+        exit 1
+    fi
+
+    # 从 lock.json 移除条目
+    if [ -f "$LOCK_FILE" ] && command -v python3 >/dev/null 2>&1; then
+        python3 -c "
+import json, sys
+with open('$LOCK_FILE') as f:
+    data = json.load(f)
+data['skills'] = {k: v for k, v in data['skills'].items() if k != '$TARGET_SKILL'}
+with open('$LOCK_FILE', 'w') as f:
+    json.dump(data, f, indent=2)
+" && log "SUCCESS: Removed '$TARGET_SKILL' from lock.json"
+    fi
+
+    log "SUCCESS: Skill '$TARGET_SKILL' has been removed."
+    exit 0
+fi
+
+# Guidance
+cat << EOF
+RECOMMENDED ACTIONS:
+1. Remove the suspicious skills immediately:
+$(for skill in "${FOUND_SKILLS[@]}"; do echo "   rm -rf ~/.openclaw/workspace/skills/$skill"; done)
+
+2. Review network activity:
+   lsof -i -n -P
+
+3. Check for unauthorized data transfers in logs
+
+auto-fix
+$(for skill in "${FOUND_SKILLS[@]}"; do echo "$skill"; done)
+EOF
+
+exit 0

package/scripts/repair/supply_chain/check_5.sh

@@ -0,0 +1,73 @@
+#!/bin/bash
+# CHECK 5 (origin 15): Known Malicious Publisher Detection
+
+SCRIPT_DIR="$(cd "$(dirname "$0")" && pwd)"
+source "$SCRIPT_DIR/_common.sh"
+
+# Environment vars (set by caller / _common.sh sourced before this):
+#   SKILL_NAME     — if set (auto-fix mode), the skill to remove
+#   AUTO_FIX       — if "1", automatically remove the offending skill
+# Example: AUTO_FIX=1 SKILL_NAME="your-skill-name" ./check_5.sh
+
+FOUND_SKILLS=()
+if [ -f "$IOC_DIR/malicious-publishers.txt" ] && [ -d "$SKILLS_DIR" ]; then
+    PUBLISHERS="$(grep -v '^#' "$IOC_DIR/malicious-publishers.txt" | grep -v '^$' | cut -d'|' -f1)"
+    while IFS= read -r pub; do
+        [ -z "$pub" ] && continue
+        while IFS= read -r file; do
+            skill_name="$(basename "$(dirname "$file")")"
+            if [[ ! " ${FOUND_SKILLS[*]} " =~ " ${skill_name} " ]]; then
+                FOUND_SKILLS+=("$skill_name")
+            fi
+        done < <(grep -rlF --exclude-dir="$SELF_DIR_NAME" "$pub" "$SKILLS_DIR" 2>/dev/null || true)
+    done <<EOF
+$PUBLISHERS
+EOF
+fi
+
+# Auto-fix
+if [ "${AUTO_FIX:-0}" = "1" ]; then
+    TARGET_SKILL="${SKILL_NAME}"
+    log "AUTO-FIX: Removing skill '$TARGET_SKILL'..."
+
+    SKILL_PATH="$SKILLS_DIR/$TARGET_SKILL"
+    LOCK_FILE="$WORKSPACE_DIR/.clawhub/lock.json"
+
+    # 删除 skill 目录
+    if rm -rf "$SKILL_PATH"; then
+        log "SUCCESS: Skill directory '$SKILL_PATH' removed."
+    else
+        log "ERROR: Failed to remove '$SKILL_PATH'"
+        exit 1
+    fi
+
+    # 从 lock.json 移除条目
+    if [ -f "$LOCK_FILE" ] && command -v python3 >/dev/null 2>&1; then
+        python3 -c "
+import json, sys
+with open('$LOCK_FILE') as f:
+    data = json.load(f)
+data['skills'] = {k: v for k, v in data['skills'].items() if k != '$TARGET_SKILL'}
+with open('$LOCK_FILE', 'w') as f:
+    json.dump(data, f, indent=2)
+" && log "SUCCESS: Removed '$TARGET_SKILL' from lock.json"
+    fi
+
+    log "SUCCESS: Skill '$TARGET_SKILL' has been removed."
+    exit 0
+fi
+
+# Guidance
+cat << EOF
+RECOMMENDED ACTIONS:
+1. These publishers are known to distribute malicious skills
+2. Remove all skills from these publishers immediately:
+$(for skill in "${FOUND_SKILLS[@]}"; do echo "   rm -rf ~/.openclaw/workspace/skills/$skill"; done)
+
+Immediate removal of skills from blacklisted publishers required
+
+auto-fix
+$(for skill in "${FOUND_SKILLS[@]}"; do echo "$skill"; done)
+EOF
+
+exit 0

package/scripts/repair/supply_chain/check_6.sh

@@ -0,0 +1,81 @@
+#!/bin/bash
+# CHECK 6 (origin 23): Plugin/Extension Security
+
+SCRIPT_DIR="$(cd "$(dirname "$0")" && pwd)"
+source "$SCRIPT_DIR/_common.sh"
+
+# Environment vars (set by caller / _common.sh sourced before this):
+#   SKILL_NAME     — if set (auto-fix mode), the skill to remove
+#   AUTO_FIX       — if "1", automatically remove the offending skill
+# Example: AUTO_FIX=1 SKILL_NAME="your-skill-name" ./check_6.sh
+
+EXT_DIR="$OPENCLAW_DIR/extensions"
+DOMAIN_PATTERN="$(load_domains | tr '\n' '|' | sed 's/|$//' | sed 's/\./\\./g')"
+ 
+FOUND_EXTS=()   # critical: malicious domain references → auto-fix target
+WARN_EXTS=()    # warning: code-execution/network patterns → manual review only
+ 
+if [ -d "$EXT_DIR" ]; then
+    EXT_COUNT="$(find "$EXT_DIR" -mindepth 1 -maxdepth 1 -type d 2>/dev/null | wc -l | tr -d ' ')"
+     
+    if [ "$EXT_COUNT" -gt 0 ]; then
+        while IFS= read -r ext; do
+            [ -z "$ext" ] && continue
+            EXT_NAME="$(basename "$ext")"
+ 
+            # WARNING: code-execution / network patterns
+            EXT_SUS="$(grep -rlE 'eval\(|exec\(|child_process|\.exec\(|net\.connect|http\.request|fetch\(' "$ext" 2>/dev/null | head -3 || true)"
+            if [ -n "$EXT_SUS" ]; then
+                if [[ ! " ${WARN_EXTS[*]} " =~ " ${EXT_NAME} " ]]; then
+                    WARN_EXTS+=("$EXT_NAME")
+                fi
+            fi
+ 
+            # CRITICAL: known malicious domain references
+            if [ -n "$DOMAIN_PATTERN" ]; then
+                EXT_MAL="$(grep -rlE "$DOMAIN_PATTERN" "$ext" 2>/dev/null || true)"
+                if [ -n "$EXT_MAL" ]; then
+                    if [[ ! " ${FOUND_EXTS[*]} " =~ " ${EXT_NAME} " ]]; then
+                        FOUND_EXTS+=("$EXT_NAME")
+                    fi
+                fi
+            fi
+        done < <(find "$EXT_DIR" -mindepth 1 -maxdepth 1 -type d 2>/dev/null)
+    fi
+fi
+
+# Auto-fix
+if [ "${AUTO_FIX:-0}" = "1" ]; then
+    TARGET_EXT="${SKILL_NAME}"
+    log "AUTO-FIX: Removing extension '$TARGET_EXT'..."
+ 
+    EXT_PATH="$EXT_DIR/$TARGET_EXT"
+ 
+    if rm -rf "$EXT_PATH"; then
+        log "SUCCESS: Extension '$TARGET_EXT' has been removed."
+        exit 0
+    else
+        log "ERROR: Failed to remove '$EXT_PATH'. Please remove it manually:"
+        log "  rm -rf $EXT_PATH"
+        exit 1
+    fi
+fi
+
+# 提前生成 rm 命令列表
+RM_CMDS=""
+for ext in "${FOUND_EXTS[@]}"; do
+    RM_CMDS="${RM_CMDS}   rm -rf $EXT_DIR/$ext\n"
+done
+
+# Guidance
+cat <<EOF
+RECOMMENDED ACTIONS:
+1. Remove unauthorized extensions immediately:
+$(printf "%b" "$RM_CMDS")
+2. Only install extensions from verified sources
+
+auto-fix
+$(for ext in "${FOUND_EXTS[@]}"; do echo "$ext"; done)
+EOF
+
+exit 0

package/scripts/repair/supply_chain/check_7.sh

@@ -0,0 +1,52 @@
+#!/bin/bash
+# CHECK 7 (origin 30): VS Code Extension Trojan Detection
+
+SCRIPT_DIR="$(cd "$(dirname "$0")" && pwd)"
+source "$SCRIPT_DIR/_common.sh"
+
+# Environment vars (set by caller / _common.sh sourced before this):
+#   SKILL_NAME     — if set (auto-fix mode), the skill to remove
+#   AUTO_FIX       — if "1", automatically remove the offending skill
+# Example: AUTO_FIX=1 SKILL_NAME="your-skill-name" ./check_7.sh
+
+# Auto-fix
+if [ "${AUTO_FIX:-0}" = "1" ]; then
+    log "AUTO-FIX: Removing suspicious VS Code extensions..."
+
+    FAILED=0
+    for pattern in "*clawdbot*" "*openclaw*" "*moltbot*"; do
+        for ext_path in "$OPENCLAW_DIR/.vscode/extensions/"$pattern; do
+            [ -e "$ext_path" ] || continue
+            if rm -rf "$ext_path"; then
+                log "SUCCESS: Removed '$ext_path'"
+            else
+                log "ERROR: Failed to remove '$ext_path'"
+                FAILED=$((FAILED + 1))
+            fi
+        done
+    done
+
+    if [ "$FAILED" -eq 0 ]; then
+        cat << EOF
+SUCCESS: VS Code extensions have been removed.
+EOF
+        exit 0
+    else
+        log "ERROR: Some extensions could not be removed."
+        exit 1
+    fi
+fi
+
+# Guidance
+cat << EOF
+RECOMMENDED ACTIONS:
+1. Remove the suspicious extensions immediately:
+   rm -rf ~/.vscode/extensions/*clawdbot*
+   rm -rf ~/.vscode/extensions/*openclaw*
+   rm -rf ~/.vscode/extensions/*moltbot*
+
+auto-fix
+VS Code extensions
+EOF
+
+exit 0

package/scripts/repair/supply_chain/check_8.sh

@@ -0,0 +1,71 @@
+#!/bin/bash
+# CHECK 8 (origin 16): Sensitive Environment Leakage
+
+SCRIPT_DIR="$(cd "$(dirname "$0")" && pwd)"
+source "$SCRIPT_DIR/_common.sh"
+
+# Environment vars (set by caller / _common.sh sourced before this):
+#   SKILL_NAME     — if set (auto-fix mode), the skill to remove
+#   AUTO_FIX       — if "1", automatically remove the offending skill
+# Example: AUTO_FIX=1 SKILL_NAME="your-skill-name" ./check_8.sh
+
+FOUND_SKILLS=()
+if [ -d "$SKILLS_DIR" ]; then
+    while IFS= read -r file; do
+        skill_name="$(basename "$(dirname "$file")")"
+        # Deduplicate
+        if [[ ! " ${FOUND_SKILLS[*]} " =~ " ${skill_name} " ]]; then
+            FOUND_SKILLS+=("$skill_name")
+        fi
+    done < <(grep -rlinE --exclude-dir="$SELF_DIR_NAME" "sk-[a-zA-Z0-9]{20,}|OPENAI_API_KEY\s*=\s*['\"][^$]|ANTHROPIC_API_KEY\s*=\s*['\"][^$]|moltbook.*token\s*=\s*['\"]" "$SKILLS_DIR" 2>/dev/null || true)
+fi
+
+# Auto-fix
+if [ "${AUTO_FIX:-0}" = "1" ]; then
+    TARGET_SKILL="${SKILL_NAME}"
+    log "AUTO-FIX: Removing skill '$TARGET_SKILL'..."
+
+    SKILL_PATH="$SKILLS_DIR/$TARGET_SKILL"
+    LOCK_FILE="$WORKSPACE_DIR/.clawhub/lock.json"
+
+    # 删除 skill 目录
+    if rm -rf "$SKILL_PATH"; then
+        log "SUCCESS: Skill directory '$SKILL_PATH' removed."
+    else
+        log "ERROR: Failed to remove '$SKILL_PATH'"
+        exit 1
+    fi
+
+    # 从 lock.json 移除条目
+    if [ -f "$LOCK_FILE" ] && command -v python3 >/dev/null 2>&1; then
+        python3 -c "
+import json, sys
+with open('$LOCK_FILE') as f:
+    data = json.load(f)
+data['skills'] = {k: v for k, v in data['skills'].items() if k != '$TARGET_SKILL'}
+with open('$LOCK_FILE', 'w') as f:
+    json.dump(data, f, indent=2)
+" && log "SUCCESS: Removed '$TARGET_SKILL' from lock.json"
+    fi
+
+    log "SUCCESS: Skill '$TARGET_SKILL' has been removed."
+    exit 0
+fi
+
+# Guidance
+cat << EOF
+RECOMMENDED ACTIONS:
+1. Review each skill listed above
+
+2. Determine if they legitimately need access to sensitive files
+
+3. For skills with hardcoded keys, ROTATE those credentials immediately
+
+4. If confirmed malicious or unnecessary, remove the skill:
+$(for skill in "${FOUND_SKILLS[@]}"; do echo "   rm -rf ~/.openclaw/workspace/skills/$skill"; done)
+
+auto-fix
+$(for skill in "${FOUND_SKILLS[@]}"; do echo "$skill"; done)
+EOF
+
+exit 0

package/scripts/repair/supply_chain/check_9.sh

@@ -0,0 +1,78 @@
+#!/bin/bash
+# CHECK 9 (origin 10): Skill Poisoning / Memory File Modification
+
+SCRIPT_DIR="$(cd "$(dirname "$0")" && pwd)"
+source "$SCRIPT_DIR/_common.sh"
+
+# Environment vars (set by caller / _common.sh sourced before this):
+#   SKILL_NAME     — if set (auto-fix mode), the skill to remove
+#   AUTO_FIX       — if "1", automatically remove the offending skill
+# Example: AUTO_FIX=1 SKILL_NAME="your-skill-name" ./check_9.sh
+
+FOUND_SKILLS=()
+if [ -d "$SKILLS_DIR" ]; then
+    while IFS= read -r f; do
+        [ -z "$f" ] && continue
+        skill_name="$(basename "$(dirname "$f")")"
+        if [[ ! " ${FOUND_SKILLS[*]} " =~ " ${skill_name} " ]]; then
+            FOUND_SKILLS+=("$skill_name")
+        fi
+    done < <(
+        grep -rliE --exclude-dir="$SELF_DIR_NAME" 'SOUL\.md|MEMORY\.md|IDENTITY\.md' "$SKILLS_DIR" 2>/dev/null | while IFS= read -r f; do
+            if grep -qiE 'write.*SOUL|write.*MEMORY|write.*IDENTITY|modify.*SOUL|modify.*MEMORY|modify.*IDENTITY|echo.*>>.*SOUL|echo.*>>.*MEMORY|echo.*>>.*IDENTITY|cat.*>.*SOUL|cat.*>.*MEMORY|cat.*>.*IDENTITY|append.*SOUL|append.*MEMORY|append.*IDENTITY' "$f" 2>/dev/null; then
+                echo "$f"
+            fi
+        done
+    )
+fi
+
+# Auto-fix
+if [ "${AUTO_FIX:-0}" = "1" ]; then
+    TARGET_SKILL="${SKILL_NAME}"
+    log "AUTO-FIX: Removing skill '$TARGET_SKILL'..."
+
+    SKILL_PATH="$SKILLS_DIR/$TARGET_SKILL"
+    LOCK_FILE="$WORKSPACE_DIR/.clawhub/lock.json"
+
+    # 删除 skill 目录
+    if rm -rf "$SKILL_PATH"; then
+        log "SUCCESS: Skill directory '$SKILL_PATH' removed."
+    else
+        log "ERROR: Failed to remove '$SKILL_PATH'"
+        exit 1
+    fi
+
+    # 从 lock.json 移除条目
+    if [ -f "$LOCK_FILE" ] && command -v python3 >/dev/null 2>&1; then
+        python3 -c "
+import json, sys
+with open('$LOCK_FILE') as f:
+    data = json.load(f)
+data['skills'] = {k: v for k, v in data['skills'].items() if k != '$TARGET_SKILL'}
+with open('$LOCK_FILE', 'w') as f:
+    json.dump(data, f, indent=2)
+" && log "SUCCESS: Removed '$TARGET_SKILL' from lock.json"
+    fi
+
+    log "SUCCESS: Skill '$TARGET_SKILL' has been removed."
+    exit 0
+fi
+
+# Guidance
+cat << EOF
+RECOMMENDED ACTIONS:
+1. Remove any skills that attempt to modify these files
+   $(for skill in "${FOUND_SKILLS[@]}"; do echo "   rm -rf ~/.openclaw/workspace/skills/$skill"; done)
+
+2. Review the files and edit the affected files to remove poisoned content:
+   cat ~/.openclaw/workspace/SOUL.md
+   cat ~/.openclaw/workspace/MEMORY.md
+   cat ~/.openclaw/workspace/IDENTITY.md
+
+3. If you have backups, consider restoring from a clean state
+
+auto-fix
+$(for skill in "${FOUND_SKILLS[@]}"; do echo "$skill"; done)
+EOF
+
+exit 0

package/scripts/repair/supply_chain/logs/security-scan.log

@@ -0,0 +1,77 @@
+AUTO-FIX: Removing skill 'github-test'...
+error: unknown command 'skill'
+(Did you mean skills?)
+ERROR: Failed to remove skill 'github-test'. Please remove it manually:
+  openclaw skill rm github-test
+AUTO-FIX: Removing skill 'github-test'...
+error: unknown command 'skill'
+(Did you mean skills?)
+ERROR: Failed to remove skill 'github-test'. Please remove it manually:
+  openclaw skill rm github-test
+AUTO-FIX: Removing skill 'github-test'...
+error: unknown command 'skill'
+(Did you mean skills?)
+ERROR: Failed to remove skill 'github-test'. Please remove it manually:
+  openclaw skill remove github-test
+AUTO-FIX: Removing skill 'github-test'...
+error: unknown command 'skill'
+(Did you mean skills?)
+ERROR: Failed to remove skill 'github-test'. Please remove it manually:
+  openclaw skill remove github-test
+AUTO-FIX: Removing skill 'github-test'...
+Error: Not installed: github-test
+ERROR: Failed to remove skill 'github-test'. Please remove it manually:
+  openclaw skill remove github-test
+AUTO-FIX: Removing skill 'github-test'...
+Error: Pass --yes (no input)
+ERROR: Failed to remove skill 'github-test'. Please remove it manually:
+  openclaw skill remove github-test
+AUTO-FIX: Removing skill 'github-test'...
+SUCCESS: Skill directory '/home/janx/test/openclaw-djy/workspace/skills/github-test' removed.
+SUCCESS: Removed 'github-test' from lock.json
+AUTO-FIX: Removing skill 'github-test'...
+SUCCESS: Skill directory '/home/janx/test/openclaw-djy/workspace/skills/github-test' removed.
+SUCCESS: Removed 'github-test' from lock.json
+AUTO-FIX: Removing skill 'github-test'...
+SUCCESS: Skill directory '/home/janx/test/openclaw-djy/workspace/skills/github-test' removed.
+SUCCESS: Removed 'github-test' from lock.json
+  malicious-hashes.txt not found under /home/janx/seclaw/openclaw-security-monitor/scripts/repair/ioc
+  malicious-hashes.txt not found under /home/janx/seclaw/openclaw-security-monitor/scripts/repair/ioc
+  malicious-hashes.txt not found under /home/janx/seclaw/openclaw-security-monitor/scripts/repair/ioc
+  malicious-hashes.txt not found under /home/janx/seclaw/openclaw-security-monitor/scripts/repair/ioc
+  malicious-hashes.txt not found under /home/janx/seclaw/openclaw-security-monitor/scripts/repair/ioc
+  malicious-hashes.txt not found under /home/janx/seclaw/openclaw-security-monitor/scripts/repair/ioc
+AUTO-FIX: Removing skill 'notion-test'...
+SUCCESS: Skill directory '/home/janx/test/openclaw-djy/workspace/skills/notion-test' removed.
+SUCCESS: Removed 'notion-test' from lock.json
+SUCCESS: Skill 'notion-test' has been removed.
+AUTO-FIX: Removing skill 'notion copy'...
+SUCCESS: Skill directory '/home/janx/test/openclaw-djy/workspace/skills/notion copy' removed.
+SUCCESS: Removed 'notion copy' from lock.json
+SUCCESS: Skill 'notion copy' has been removed.
+AUTO-FIX: Removing skill 'notion copy 2'...
+SUCCESS: Skill directory '/home/janx/test/openclaw-djy/workspace/skills/notion copy 2' removed.
+SUCCESS: Removed 'notion copy 2' from lock.json
+SUCCESS: Skill 'notion copy 2' has been removed.
+AUTO-FIX: Removing skill 'notion copy 3'...
+SUCCESS: Skill directory '/home/janx/test/openclaw-djy/workspace/skills/notion copy 3' removed.
+SUCCESS: Removed 'notion copy 3' from lock.json
+SUCCESS: Skill 'notion copy 3' has been removed.
+Installed extensions: 3
+AUTO-FIX: Removing extension 'qqbot copy'...
+SUCCESS: Extension 'qqbot copy' has been removed.
+AUTO-FIX: Removing suspicious VS Code extensions...
+AUTO-FIX: Removing suspicious VS Code extensions...
+AUTO-FIX: Removing suspicious VS Code extensions...
+SUCCESS: Removed '/home/janx/test/openclaw-djy/.vscode/extensions/openclaw'
+AUTO-FIX: Removing suspicious VS Code extensions...
+SUCCESS: Removed '/home/janx/test/openclaw-djy/.vscode/extensions/clawdbot'
+SUCCESS: Removed '/home/janx/test/openclaw-djy/.vscode/extensions/openclaw'
+AUTO-FIX: Removing skill 'notion copy 4'...
+SUCCESS: Skill directory '/home/janx/test/openclaw-djy/workspace/skills/notion copy 4' removed.
+SUCCESS: Removed 'notion copy 4' from lock.json
+SUCCESS: Skill 'notion copy 4' has been removed.
+AUTO-FIX: Removing skill 'notion copy 5'...
+SUCCESS: Skill directory '/home/janx/test/openclaw-djy/workspace/skills/notion copy 5' removed.
+SUCCESS: Removed 'notion copy 5' from lock.json
+SUCCESS: Skill 'notion copy 5' has been removed.