npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

openclaw-filesafe

v0.1.0

Published

Automatic file protection with snapshots and trash for AI agent workspaces

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Maintainers

griffithflygriffithfly

Keywords

openclawfilesafebackupsnapshotrecycle-binai-agentfile-protection

Readme

🛡️ OpenClaw-filesafe

Zero-friction file safety layer for AI agents.

Automatic snapshots, protected trash, vault mode, skill monitoring — one command to set up, zero friction to use.

What filesafe does

filesafe adds three layers of file protection to your OpenClaw workspace:

Layer 1: Isolation (分区隔离)
  Your files live in a "safe zone" that OpenClaw cannot see.
  Sensitive files are transferred through a vault push/pull workflow
  with diff review — OpenClaw never touches the originals.

Layer 2: Version Control (版本控制)
  Every file change is automatically snapshotted.
  Full version history, one-command rollback.
  Like an invisible Git that commits on every save.

Layer 3: Recycle Bin (回收站)
  Deleted files go to a protected trash — not the OS trash
  that OpenClaw can empty. Password-protected permanent deletion.
  Nothing is ever truly lost.

On top of these three hard layers, filesafe also generates a SAFETY.md that tells OpenClaw how to behave — risk-level rules, modification confirmations, skill installation restrictions. The LLM mostly follows these rules, but even when it doesn't, the three hard layers catch it.

Everything is visible through a bilingual web dashboard (English / 简体中文) at http://127.0.0.1:9090 — run filesafe ui to open it.

Quick Start

git clone https://github.com/griffithfly/OpenClaw-filesafe.git
cd OpenClaw-filesafe
npm install
npm run build
filesafe init               # Set up protection + generate SAFETY.md
filesafe project ~/my-app   # Register a project (watcher starts in background)

# Want to go back? Roll back:
filesafe rollback ~/my-app/src/main.ts

# File was deleted? Restore:
filesafe trash restore main.ts

# Check status anytime:
filesafe status

# Or open the web dashboard:
filesafe ui

Features

📊 Web Dashboard

Visual status dashboard at http://127.0.0.1:9090. Bilingual (EN/中文). Works offline.

filesafe ui

🔄 Auto Snapshots & Rollback

Every file change is captured automatically. View history, roll back to any version.

filesafe history <file>
filesafe rollback <file> [--to <version>]

🗑️ Protected Trash

Deleted files go to filesafe's own trash (outside OpenClaw's reach). Restore anytime.

filesafe trash list
filesafe trash restore <file>

🔐 Vault Mode

Sensitive files (SSH keys, credentials) stay isolated. Push copies to OpenClaw, pull back with diff review.

filesafe vault add ~/.ssh
filesafe push ~/.ssh/config        # copy to inbox (password required)
filesafe pull config --to ~/.ssh/config  # review diff, confirm, write back

🔍 Skill Monitoring

Detects when OpenClaw silently installs third-party skills. Alerts you to review.

filesafe skill alerts
filesafe skill ack <name>

📋 Audit Log

Every operation logged with risk levels (CRITICAL/HIGH/MEDIUM/LOW). Sensitive info auto-redacted.

filesafe audit --risk high --last 1h

🩺 Security Check

Scans OpenClaw's config for common misconfigurations. Gives recommendations, never modifies.

filesafe check

Architecture

┌─────────────────────────────────────┐
│          Your Workspace             │
├─────────────────────────────────────┤
│                                     │
│   Soft Layer    SAFETY.md rules     │  ← AI agent reads and (mostly) follows
│                                     │
├─────────────────────────────────────┤
│                                     │
│   Hard Layer 1  Vault Isolation     │  ← Sensitive files physically separated
│   Hard Layer 2  Auto Snapshots      │  ← Every change captured, rollback anytime
│   Hard Layer 3  Protected Trash     │  ← Deleted files recoverable
│                                     │
├─────────────────────────────────────┤
│   SQLite + Watcher + Supervisor     │  ← Background daemon, auto-restart
└─────────────────────────────────────┘

OpenClaw's native security handles prevention. filesafe handles recovery. Together they form complete protection.

All Commands

| Command | Description | |---------|-------------| | filesafe init | Initialize protection + SAFETY.md + security check | | filesafe project <path> | Register and protect a project | | filesafe project list | List protected projects | | filesafe start / stop | Start/stop background watcher | | filesafe status | Show protection status | | filesafe status --json | Machine-readable status | | filesafe history <file> | File version history | | filesafe rollback <file> | Restore previous version | | filesafe trash list / restore | View/restore deleted files | | filesafe vault add / list / remove | Manage vault paths | | filesafe push <file> | Copy vault file to inbox | | filesafe pull <file> --to <dest> | Review diff and write back | | filesafe password set / clear / status | Vault password management | | filesafe skill list / alerts / ack | Skill monitoring | | filesafe audit [filters] | Operation audit log | | filesafe safety generate | Generate/regenerate SAFETY.md | | filesafe check | OpenClaw security configuration check | | filesafe ui | Web dashboard (port 9090) |

Roadmap

Completed: Snapshots, trash, rollback, background watcher with auto-restart, SAFETY.md, audit log (sanitization + risk levels + anomaly detection), vault mode, skill monitoring, security check, web dashboard.

Planned: Delta compression for snapshots, configurable ignore patterns (.filesafeignore), actor detection (OpenClaw vs user), deeper OpenClaw integration, smarter anomaly rules, multi-project dashboards.

License

MIT