openclaw-docs-audit

The skill's stated purpose (upstream drift audit) is coherent with its data flows and sources. However, the install path relies on a direct curl | bash to a remote installer, which is a high-risk supply-chain pattern and unverifiable in terms of provenance. This creates a significant risk that the tool's footprint could extend beyond auditing if the installer is compromised or tampered with. Overall, the capability set is partially aligned but the install/execution pattern is disproportionate and warrants caution. Treat as SUSPICIOUS to HIGH-RISK due to download-and-execute vector; mitigate by pinning/installing from official registries or verified checksums, and by ensuring the installer is signed and verifiable.