← Back to Skills Marketplace
ucloud-security

Skill Auditor

by ucloud-securiry · GitHub ↗ · v1.0.3 · MIT-0
cross-platform ✓ Security Clean
99
Downloads
0
Stars
0
Active Installs
4
Versions
Install in OpenClaw
/install skills-auditor
Description
Security audit + append-only logging + monitoring for OpenClaw skills (file-level diff, baseline approval, SHA-256 integrity). Requires Python ≥3.9 and git.
Usage Guidance
This skill appears to do what it claims: local static scanning, git snapshots, baseline approval, and append-only logging. Before installing or enabling it: (1) Inspect and confirm the log/snapshot path (~/.openclaw/skills-audit) and set filesystem permissions so only authorized users can read it, because logs may include snippets from scanned files (including secrets if present). (2) Run the scanner manually once in a controlled environment to observe outputs before allowing automated cron runs. (3) Do not allow the Agent to auto-create cron jobs; follow the SKILL.md guidance to create any scheduled tasks manually after review. (4) If you need absolute assurance that no network calls occur, review the scripts for any added dependencies or changes (the shipped code currently avoids HTTP clients). (5) If you plan to audit sensitive or production skills, consider running the scan inside a sandboxed account or VM and rotate access to the audit directory. All of the notable static 'dangerous' strings are detection rules (expected) rather than evidence of outbound network/exfiltration behavior.
Capability Analysis
Type: OpenClaw Skill Name: skills-auditor Version: 1.0.3 The skills-auditor bundle is a security utility designed to perform static analysis, integrity monitoring, and change tracking for OpenClaw skills. The core logic in scripts/skills_audit.py and scripts/skills_watch_and_notify.py is transparent, uses only Python standard libraries, and contains no network-outbound code, ensuring that audit data and code diffs remain local. The SKILL.md instructions include safety-oriented 'Agent Directives' that specifically prevent the AI from automatically creating cron jobs or leaking raw sensitive diffs to external channels without user consent. The risk-scanning patterns in the config files are correctly implemented as detection signatures rather than executable payloads.
Capability Tags
cryptorequires-walletrequires-oauth-token
Capability Assessment
Purpose & Capability
Name/description (security audit, file diff, SHA-256, baseline approval) match the included Python scripts and JSON config. Requested runtime (Python ≥3.9 and git) is exactly what the tool needs for local scanning, git snapshots, and logging. The presence of risk patterns and rules (network / dangerous-command needles) is appropriate for a scanner that must detect those strings.
Instruction Scope
The SKILL.md and the scripts consistently describe a local static-analysis workflow: reading files under workspace/skills, running git subprocesses, computing hashes, and appending NDJSON logs. The skill explicitly states it will not execute audited skill code. Important privacy note: the scanner reads skill files and stores snippets/evidence and extracted domains in logs; these logs (and git snapshots) may therefore contain sensitive data if any audited skill stores secrets in files. The SKILL.md enforces use of a 'show' command and warns against pushing full diffs by default — consistent with safer behavior, but users should confirm that logs and snapshots are protected.
Install Mechanism
No remote install/downloads or third-party package installs are declared. The package is instruction + local Python scripts (no install spec). That is the lowest-risk install pattern for this kind of tool.
Credentials
The skill requests no environment variables, credentials, or external endpoints. That is proportionate. However, the scanner intentionally looks for sensitive-path patterns (e.g., ~/.ssh, aws keys) and will record evidence snippets and domains — so while it doesn't require your secrets, it may surface and store them if they are present in audited skill files. Users should restrict file-system access to the audit directory and logs (~/.openclaw/skills-audit).
Persistence & Privilege
The skill does not set always:true and does not attempt to modify other skills' configuration. It writes its own state/logs/snapshots under ~/.openclaw/skills-audit and has commands to create/manage baseline approvals; those are expected behaviors for an audit tool. The SKILL.md explicitly instructs agents not to auto-create cron jobs, which reduces unwanted persistence.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install skills-auditor
  3. After installation, invoke the skill by name or use /skills-auditor
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.3
Clear responsibility boundary: scripts contain no network/HTTP/model code; Agent semantic understanding is Agent-level capability governed by Agent deployment policies
v1.0.2
Clarify semantic analysis dual-layer architecture: built-in rule engine (baseline) + Agent LLM (enhancement). Add data privacy section for private vs cloud deployments. Skill itself initiates no network requests.
v1.0.1
Remove all LLM/Agent references from semantic analysis: clarify it is a pure local rule engine (regex + keyword scoring), no model API calls, no code leaves the process. Add privacy guarantee statement.
v1.0.0
Initial release of Skill Auditor
Metadata
Slug skills-auditor
Version 1.0.3
License MIT-0
All-time Installs 0
Active Installs 0
Total Versions 4
Frequently Asked Questions

What is Skill Auditor?

Security audit + append-only logging + monitoring for OpenClaw skills (file-level diff, baseline approval, SHA-256 integrity). Requires Python ≥3.9 and git. It is an AI Agent Skill for Claude Code / OpenClaw, with 99 downloads so far.

How do I install Skill Auditor?

Run "/install skills-auditor" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Skill Auditor free?

Yes, Skill Auditor is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does Skill Auditor support?

Skill Auditor is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Skill Auditor?

It is built and maintained by ucloud-securiry (@ucloud-security); the current version is v1.0.3.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463815 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259802 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200680 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191345 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190333 · by oswalpalash

💬 Comments