clawsec-suite
Pass
Audited by Gen Agent Trust Hub on Apr 18, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONREMOTE_CODE_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches security advisory feeds, skill catalog metadata, and release archives from the vendor's official infrastructure (clawsec.prompt.security and github.com/prompt-security). These operations are used for update checks and threat intelligence monitoring.
- [REMOTE_CODE_EXECUTION]: Downloads and installs skill updates and new components. This risk is mitigated through mandatory Ed25519 cryptographic signature verification and SHA-256 checksum validation for all remote artifacts before extraction or execution.
- [COMMAND_EXECUTION]: Utilizes system utilities (curl, jq, openssl, unzip) and vendor-specific CLI tools (npx clawhub, openclaw) to perform integrity checks, manage skill lifecycles, and schedule periodic security scans.
- [DATA_EXFILTRATION]: Performs network requests to retrieve security metadata. No evidence was found of exfiltrating sensitive user data, environment variables, or private credentials to external servers.
Audit Metadata