openclaw-tools
Pass
Audited by Gen Agent Trust Hub on Mar 3, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill's primary function is to serve as a knowledge base. It contains no executable scripts (Python, JavaScript, Shell) or binaries. Analysis of all 29 files confirms they are markdown-based documentation or configuration metadata.
- [SAFE]: No hardcoded credentials or sensitive data exposures were found. References to API keys (e.g.,
FIRECRAWL_API_KEY_HERE,sk-or-v1-...) are clearly marked placeholders used for instructional examples. - [SAFE]: External URLs and references target trusted or well-known organizations and services, including GitHub, Google, Anthropic, Cloudflare, and Brave. These are used neutrally for documentation purposes.
- [SAFE]: Potentially risky command examples (e.g.,
sudo,npm install,openclaw plugins install) are provided strictly as user-facing documentation for troubleshooting or setup and do not represent autonomous execution paths by the agent. - [SAFE]: No obfuscation, persistence mechanisms, or privilege escalation patterns were detected within the documentation content or instructions.
Audit Metadata