security-monitor
Fail
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: HIGHCOMMAND_EXECUTIONCREDENTIALS_UNSAFEDATA_EXFILTRATION
Full Analysis
- [COMMAND_EXECUTION]: The script
scripts/monitor.cjsuseschild_process.execSyncto run system commands such astail,ss,netstat,ps, anddockerto perform monitoring checks. - [CREDENTIALS_UNSAFE]: The skill explicitly reads sensitive environment files located at
/root/clawd/skills/.envand/root/clawd/.envto identify the presence of API keys for various services. - [DATA_EXFILTRATION]: The skill accesses protected system files, including
/var/log/auth.logand/var/log/syslog, and writes logs containing potentially sensitive information to the root directory.
Recommendations
- AI detected serious security threats
Audit Metadata