← Back to Skills Marketplace
84
Downloads
0
Stars
0
Active Installs
2
Versions
Install in OpenClaw
/install security-auditor-x
Description
Perform comprehensive security audits on codebases, infrastructure configs, API designs, and architecture documents. Use this skill whenever the user wants t...
Usage Guidance
This skill appears to be what it says: an instruction-only security auditor. Before using it, avoid pasting production secrets, API keys, or private certificates into code or config snippets — instead sanitize or redact sensitive values and run audits on copies. Be aware the skill's trigger phrases are broad; if you are concerned about automatic invocation, restrict when it's allowed or require explicit user consent before running. Finally, review any findings before applying recommended changes and, when possible, run automated checks on a non-production copy of your code/configs.
Capability Analysis
Type: OpenClaw Skill
Name: security-auditor-x
Version: 1.0.5
The skill bundle contains only metadata and markdown instructions (SKILL.md) designed to guide an AI agent in performing security audits. It lacks any executable code, data exfiltration logic, or malicious instructions. The content is entirely consistent with its stated purpose of providing structured security reviews and remediation advice.
Capability Assessment
Purpose & Capability
Name, description, and SKILL.md all describe a security audit capability and the skill does not request any unrelated binaries, environment variables, or installs. The lack of required resources is proportionate for an instruction-only audit helper that expects the user to supply artifacts to review.
Instruction Scope
The audit process and finding format are well-scoped and appropriate for the stated purpose. Two points to note: the skill's trigger guidance is broad ('trigger on phrases... even if the word "audit" isn't used'), which may cause more frequent/autonomous invocation if the agent's trigger logic is permissive; and the SKILL.md encourages including code/config snippets as evidence — users should avoid pasting secrets or production credentials into snippets.
Install Mechanism
No install spec or code files are present (instruction-only), so there is no download/execution risk from an installer.
Credentials
The skill declares no required environment variables, credentials, or config paths. That matches the described functionality (it analyzes artifacts provided by the user) and is proportionate.
Persistence & Privilege
always:false (default) and autonomous invocation is allowed (also default). Autonomous invocation is expected for skills, but because the trigger list is broad, consider whether you want the agent to be allowed to invoke this skill automatically in your environment.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install security-auditor-x - After installation, invoke the skill by name or use
/security-auditor-x - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.5
Updated release
v1.0.0
Initial release
Metadata
Frequently Asked Questions
What is Security Auditor X?
Perform comprehensive security audits on codebases, infrastructure configs, API designs, and architecture documents. Use this skill whenever the user wants t... It is an AI Agent Skill for Claude Code / OpenClaw, with 84 downloads so far.
How do I install Security Auditor X?
Run "/install security-auditor-x" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Security Auditor X free?
Yes, Security Auditor X is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Security Auditor X support?
Security Auditor X is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Security Auditor X?
It is built and maintained by leewest0 (@leewest0); the current version is v1.0.5.
More Skills