openrouter-usage
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill operates entirely using Python's standard library, avoiding risks associated with third-party package dependencies.
- [DATA_EXFILTRATION]: Accesses OpenClaw authentication stores (~/.openclaw/agents/*/agent/auth.json) to find OpenRouter API keys. This is a functional requirement for fetching credit balances and is handled safely.
- [EXTERNAL_DOWNLOADS]: Connects to https://openrouter.ai/api/v1 to retrieve account metadata. This is a well-known service and the communication is restricted to the official API endpoint.
- [COMMAND_EXECUTION]: The installation script install.sh manages local files and environment paths correctly without requesting elevated privileges (sudo).
Audit Metadata