← Back to Skills Marketplace
4worlds4w-svg

clauwdit

by 4worlds4w-svg · GitHub ↗ · v1.0.0
cross-platform ⚠ suspicious
361
Downloads
0
Stars
1
Active Installs
1
Versions
Install in OpenClaw
/install clauwdit
Description
Security auditor for AI agent skills. Scans SKILL.md files for prompt injection, data exfiltration, obfuscation, and dangerous capability combinations.
README (SKILL.md)

ClawAudit — Security Auditor for Agent Skills

Static security analyzer for OpenClaw SKILL.md files. Detects prompt injection, credential exfiltration, obfuscated payloads, and dangerous capability combinations before you install.

What It Does

Paste or pipe any SKILL.md content and get back a trust score (0-100) with detailed findings.

Detects:

  • Prompt injection and agent manipulation (including Unicode homoglyph evasion)
  • Data exfiltration patterns (HTTP, DNS, encoded channels)
  • Dangerous shell commands (curl|sh, /dev/tcp, process substitution)
  • Credential harvesting (env vars, SSH keys, API tokens)
  • Obfuscated payloads (base64, hex escapes, eval chains)
  • Compound threats (e.g. file read + network out = exfiltration)
  • Permission mismatches (undeclared capabilities)

Zone-aware analysis — understands markdown structure. Code blocks are weighted as executable instructions. Security documentation describing threats is not flagged as a threat itself.

Usage

Audit a skill before installing:

curl -s https://clauwdit.4worlds.dev/audit/author/skill-name

Or POST raw skill content:

curl -s -X POST https://clauwdit.4worlds.dev/audit \
  -H "Content-Type: application/json" \
  -d '{"skill":"author/skill-name"}'

Trust Tiers

Score Tier Meaning
80-100 Trusted No significant issues found
60-79 Moderate Minor concerns, review recommended
40-59 Suspicious Significant issues, use with caution
0-39 Dangerous Critical threats detected, do not install

Response Format

{
  "trust": { "score": 85, "tier": "trusted" },
  "findings": [
    {
      "severity": "medium",
      "description": "Network request capability detected",
      "zone": "code",
      "line": 12
    }
  ],
  "capabilities": ["network_out", "file_read"],
  "compoundThreats": [],
  "permissionIntegrity": { "undeclared": [], "unused": [] }
}

About

Built by 4Worlds. Zone-aware static analysis with 60+ detection patterns, Unicode homoglyph normalization, and compound threat detection.

Usage Guidance
This skill is a thin wrapper describing a remote static-audit service — it does what it says, but it relies on sending SKILL.md content to clauwdit.4worlds.dev. Before using: (1) Do not submit any secrets, API keys, or private files; review and redact sensitive data from SKILL.md before posting. (2) Verify the ownership and TLS certificate of clauwdit.4worlds.dev, check for a privacy policy or contact info (the SKILL.md says 'Built by 4Worlds' but the registry shows no homepage). (3) If you need offline analysis or cannot trust an external service, prefer a local/open-source scanner instead. (4) Consider not enabling autonomous invocation for this skill unless you trust the endpoint and understand what data it will receive. If you want higher assurance, ask the publisher for the scanner source code or an official homepage before installing.
Capability Analysis
Type: OpenClaw Skill Name: clauwdit Version: 1.0.0 The skill functions as a remote security scanner that instructs the AI agent to exfiltrate the content of other skills to an external third-party domain (clauwdit.4worlds.dev) for analysis. While this aligns with its stated purpose of 'auditing,' sending potentially sensitive code, configurations, or credentials to an unverified remote endpoint is a high-risk behavior that facilitates data harvesting under the guise of a security tool.
Capability Assessment
Purpose & Capability
The name and description (security auditor for SKILL.md files) match the content: the SKILL.md documents a remote static analysis service and shows how to POST skill contents for analysis. There are no unrelated env vars, binaries, or install steps requested.
Instruction Scope
The instructions direct the user/agent to send SKILL.md content to https://clauwdit.4worlds.dev via curl/POST. This is consistent with an online auditor, but it means sensitive skill contents (including any secrets present in a SKILL.md) would be transmitted to a third party. The SKILL.md does not instruct the agent to read other local files or environment variables beyond the content to be submitted.
Install Mechanism
No install spec or code is included (instruction-only). That minimizes on-disk risk; there are no downloads, extracts, or package installs to review.
Credentials
The skill does not request any environment variables, credentials, or config paths. There is no disproportionate credential access declared. However, the runtime behavior depends on network access to an external domain.
Persistence & Privilege
always is false and there is no mechanism that would persist or modify other skills or agent-wide configuration. The skill does not request elevated persistence or unusual privileges.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install clauwdit
  3. After installation, invoke the skill by name or use /clauwdit
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release: zone-aware security auditor with 60+ detection patterns
Metadata
Slug clauwdit
Version 1.0.0
License
All-time Installs 1
Active Installs 1
Total Versions 1
Frequently Asked Questions

What is clauwdit?

Security auditor for AI agent skills. Scans SKILL.md files for prompt injection, data exfiltration, obfuscation, and dangerous capability combinations. It is an AI Agent Skill for Claude Code / OpenClaw, with 361 downloads so far.

How do I install clauwdit?

Run "/install clauwdit" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is clauwdit free?

Yes, clauwdit is completely free (open-source). You can download, install and use it at no cost.

Which platforms does clauwdit support?

clauwdit is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created clauwdit?

It is built and maintained by 4worlds4w-svg (@4worlds4w-svg); the current version is v1.0.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments