← Back to Skills Marketplace
rogue-agent1

Siteaudit

by rogue-agent1 · GitHub ↗ · v1.0.0 · MIT-0
cross-platform ⚠ suspicious
109
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install siteaudit
Description
Comprehensive website audit combining uptime check, TLS certificate inspection, and security headers grading in one command. Use when asked to audit a websit...
Usage Guidance
This skill appears to do what it says and only uses Python standard libs, but consider the following before enabling: 1) Restrict who or what can invoke it — do not allow autonomous agents to run it without oversight, since it can probe arbitrary addresses (including internal IPs and cloud metadata endpoints). 2) Review or run the script locally in a sandbox if you plan to audit sensitive networks. 3) If you will use it in automated workflows, add input validation or allowlist targets to prevent accidental scanning of private infrastructure. 4) The code is duplicated in two files (scripts/siteaudit.py and siteaudit.py) — benign but unusual; verify you are running the intended copy.
Capability Analysis
Type: OpenClaw Skill Name: siteaudit Version: 1.0.0 The siteaudit skill bundle is a legitimate tool for checking website health, including uptime, TLS certificate status, and security headers. The Python script (siteaudit.py) uses standard libraries (urllib, ssl, socket) to perform its functions and contains no evidence of data exfiltration, malicious execution, or prompt injection.
Capability Assessment
Purpose & Capability
Name and description match the code and SKILL.md: the scripts perform uptime checks, TLS inspection, and security-header grading. There are no unrelated binaries, env vars, or install steps requested.
Instruction Scope
Runtime instructions tell the agent to run the included Python script against any URL(s) the user supplies. The code performs network requests and TLS handshakes only against those targets (no external command execution or hidden endpoints), but there is no restriction on target addresses — an agent could be asked (or could autonomously) to scan internal hosts (e.g., 127.0.0.1, 169.254.169.254, or private subnets), which may expose sensitive infrastructure or metadata.
Install Mechanism
No install spec and the code uses only Python standard library modules. This is low-risk from an install perspective (nothing is downloaded or written by an installer).
Credentials
The skill requests no environment variables, credentials, or config paths — this is proportionate to a public website auditing tool.
Persistence & Privilege
always:false and no special system privileges. However, autonomous model invocation is allowed by default; combined with the ability to contact arbitrary hosts, that increases misuse risk (automatic scanning of internal endpoints) even though it's not a configuration error in the skill itself.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install siteaudit
  3. After installation, invoke the skill by name or use /siteaudit
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
- Initial release of siteaudit: an all-in-one website audit tool. - Combines uptime checking, TLS certificate inspection, and security headers grading in a single command. - Reports response time, status code, certificate details, and grades security headers. - Clearly flags site issues such as downtime, slow response, expiring certificates, TLS errors, and weak security headers. - Provides JSON output for automation and specific exit codes for health status. - Zero dependencies—runs with pure Python.
Metadata
Slug siteaudit
Version 1.0.0
License MIT-0
All-time Installs 0
Active Installs 0
Total Versions 1
Frequently Asked Questions

What is Siteaudit?

Comprehensive website audit combining uptime check, TLS certificate inspection, and security headers grading in one command. Use when asked to audit a websit... It is an AI Agent Skill for Claude Code / OpenClaw, with 109 downloads so far.

How do I install Siteaudit?

Run "/install siteaudit" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Siteaudit free?

Yes, Siteaudit is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does Siteaudit support?

Siteaudit is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Siteaudit?

It is built and maintained by rogue-agent1 (@rogue-agent1); the current version is v1.0.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments