skills/openclaw/skills/security-audit

security-audit

SKILL.md

security-audit

Minimal helper to audit skill.md-style instructions for supply-chain risks.

Features

Heuristic scan for exfiltration patterns (HTTP POST, curl to unknown domains, reading ~/.env, credential keywords).
Permission manifest reminder: lists filesystem/network touches it sees.
Safe report: markdown summary + risk level.

Usage

python audit.py path/to/skill.md > report.md

Weekly Installs

8

Repository

openclaw/skills

GitHub Stars

3.8K

First Seen

Jan 30, 2026

Security Audits

Gen Agent Trust HubWarn

Installed on

openclaw6

cursor5

codex5

github-copilot5

gemini-cli4

amp3