debug

Facilitates debugging of container agent issues, covering logs, environment variables, and common problems for efficient troubleshooting.

Install this skill

31/100

Security score

The debug skill was audited on Mar 3, 2026 and we found 13 security issues across 2 threat categories, including 2 high-severity. Review the findings below before installing.

Categories Tested

Security Issues

medium line 90

Template literal with variable interpolation in command context

SourceSKILL.md

```bash

medium line 36

Access to hidden dotfiles in home directory

SourceSKILL.md

36	\| Claude sessions \| `~/.claude/projects/` \| Claude Code session history \|

low line 158

Access to hidden dotfiles in home directory

SourceSKILL.md

158	-v ~/.claude:/home/node/.claude \

high line 27

Access to root home directory

SourceSKILL.md

27	Important: The container runs as user `node` with `HOME=/home/node`. Session files must be mounted to `/home/node/.claude/` (not `/root/.claude/`) for session resumption to work.

medium line 151

Access to root home directory

SourceSKILL.md

151	# In container-runner.ts, verify mount is to /home/node/.claude/, NOT /root/.claude/

medium line 169

Access to root home directory

SourceSKILL.md

169	containerPath: '/home/node/.claude', // NOT /root/.claude

high line 270

Access to root home directory

SourceSKILL.md

270	- Mount target: `/home/node/.claude/` (NOT `/root/.claude/`)

medium line 338

Access to root home directory

SourceSKILL.md

338	grep -q "/home/node/.claude" src/container-runner.ts 2>/dev/null && echo "OK" \|\| echo "WRONG - should mount to /home/node/.claude/, not /root/.claude/"

medium line 70

Access to .env file

SourceSKILL.md

70	Fix: Ensure `.env` file exists with either OAuth token or API key:

low line 72

Access to .env file

SourceSKILL.md

72	cat .env # Should show one of:

medium line 87

Access to .env file

SourceSKILL.md

87	Workaround: The system extracts only authentication variables (`CLAUDE_CODE_OAUTH_TOKEN`, `ANTHROPIC_API_KEY`) from `.env` and mounts them for sourcing inside the container. Other env vars are not

low line 184

Access to .env file

SourceSKILL.md

184	cp .env data/env/env

low line 326

Access to .env file

SourceSKILL.md

326	[ -f .env ] && (grep -q "CLAUDE_CODE_OAUTH_TOKEN=sk-" .env \|\| grep -q "ANTHROPIC_API_KEY=sk-" .env) && echo "OK" \|\| echo "MISSING - add CLAUDE_CODE_OAUTH_TOKEN or ANTHROPIC_API_KEY to .env"

Scanned on Mar 3, 2026

View Security Dashboard

Installation guide →

GitHub Stars 2

Rate this skill

Categorydevelopment

UpdatedApril 10, 2026

openclaw devops backend devops-sre backend-developer technical-support docker development support

sskarz/nanoclawbster