← Back to Skills Marketplace
150
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install openclaw-security-auditor-main
Description
[MANDATORY PRE-CHECK - STOP AND READ BEFORE ANY TOOL CALL] 本 skill 在每次工具调用前强制执行安全审计。触发场景:(1) 删除文件(exec 中的 rm/del/rmdir/Remove-Item),(2) 覆写文件(write/edit 已存在文件...
Usage Guidance
This skill appears to do what it says: perform pre-invocation safety checks on commands and paths and request user confirmation for high-risk operations. Points to consider before enabling: (1) always:true makes the skill active for every agent run — if you run unattended scripts or other skills that expect unimpeded tool calls, change metadata to always:false or test first in a controlled environment; (2) review the risk_assessor.py and the pattern lists if you need different thresholds or to avoid false positives; (3) because confirmations require user interaction, automated pipelines may hang waiting for '确认' responses — plan for that; (4) verify the skill source/trust (owner ID and repo links in README) before deployment. If you want maximum safety, run it; if you need unattended automation, set always:false or whitelist specific operations.
Capability Analysis
Type: OpenClaw Skill
Name: openclaw-security-auditor-main
Version: 1.0.0
The bundle is a defensive security tool designed to act as a guardrail for OpenClaw agents. It implements a 'Security Auditor' that intercepts tool calls to assess risks associated with system commands and file paths across Windows, macOS, and Linux. The logic, contained in SKILL.md and scripts/risk_assessor.py, uses extensive regex patterns to identify and block critical actions (like disk formatting or system directory deletion) or require user confirmation for high-risk operations (like deleting user files or accessing .ssh folders). No malicious behavior, data exfiltration, or obfuscation was detected.
Capability Assessment
Purpose & Capability
Name/description, SKILL.md, README, references and the Python assessor all implement a file/command risk-auditor. There are no unrelated required env vars, binaries, or config paths. The included risk_assessor.py and references match the stated purpose.
Instruction Scope
SKILL.md mandates pre-tool-call checks and defines explicit block/confirm/allow flows for commands and paths. This is consistent with the auditor role. Note: the instructions give the skill broad discretion to pause/deny tool calls — this is expected for a pre-audit skill but may interrupt automated workflows or other skills that expect transparent execution.
Install Mechanism
Instruction-only skill with a harmless local Python helper; there is no install spec that downloads remote code or writes arbitrary binaries. No high-risk install behavior detected.
Credentials
No credentials, env variables, or external endpoints are requested. The code reads local context (cwd, home) and expands env vars for path normalization — appropriate for path/command risk assessment and proportionate to purpose.
Persistence & Privilege
metadata sets always:true and the documentation explicitly states the skill has highest priority and auto-loads. That is coherent with a system-level pre-checker, but always:true grants this skill forced presence in all agent runs which can block or alter behavior. Consider whether you want that enforced for all sessions.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install openclaw-security-auditor-main - After installation, invoke the skill by name or use
/openclaw-security-auditor-main - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
**qclaw-security-auditor v1.0.0 Initial Release**
- Introduces a mandatory pre-check skill enforcing strict security audits before tool operations.
- Checks for risky file deletions, overwrites, dangerous commands, and sensitive path actions; classifies by risk level (extremely high, high, medium, low).
- Blocks or requires explicit user confirmation before executing high-risk operations (e.g. system/critical directory removal, bulk deletes, installations).
- Provides clear user notifications for blocked or high-risk actions, including required confirmation processes.
- Supersedes previous OpenClaw security audit checks with a system-wide, always-on, preemptive design.
Metadata
Frequently Asked Questions
What is OpenClaw 安全审计器 🛡️?
[MANDATORY PRE-CHECK - STOP AND READ BEFORE ANY TOOL CALL] 本 skill 在每次工具调用前强制执行安全审计。触发场景:(1) 删除文件(exec 中的 rm/del/rmdir/Remove-Item),(2) 覆写文件(write/edit 已存在文件... It is an AI Agent Skill for Claude Code / OpenClaw, with 150 downloads so far.
How do I install OpenClaw 安全审计器 🛡️?
Run "/install openclaw-security-auditor-main" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is OpenClaw 安全审计器 🛡️ free?
Yes, OpenClaw 安全审计器 🛡️ is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does OpenClaw 安全审计器 🛡️ support?
OpenClaw 安全审计器 🛡️ is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created OpenClaw 安全审计器 🛡️?
It is built and maintained by 库咔Kuka (@kukano996); the current version is v1.0.0.
More Skills