← 返回 Skills 市场
Claw Secure Auditor
作者
emeraldring3134-netizen
· GitHub ↗
· v1.1.1
347
总下载
0
收藏
1
当前安装
2
版本数
在 OpenClaw 中安装
/install claw-secure-auditor
功能描述
Security audit tool for ClawHub/OpenClaw skills (static analysis + reputation scoring)
使用说明 (SKILL.md)
🛡️ Claw Secure Auditor v1.1.1
Security audit tool for ClawHub/OpenClaw skills with static analysis and reputation scoring.
🚀 Quick Start
1. Configure (optional)
export VIRUSTOTAL_API_KEY="your-api-key-here"
2. Use
# Quick audit (static + reputation)
python3 scripts/auditor.py quick ./my-skill
# Full audit (static + sandbox + VirusTotal)
python3 scripts/auditor.py full ./my-skill
# Pre-publish audit
python3 scripts/auditor.py before-publish ./my-skill
📋 Features
- ✅ Static analysis: 120+ dangerous keyword detection
- ✅ Self-whitelist: auto-mark self as safe
- ✅ Reputation score: 0-100 with Safe/Caution/Dangerous levels
- ✅ JSON report export
- ✅ Read-only operation, no file modification
📊 Risk Levels
| Score | Level | Color |
|---|---|---|
| 90-100 | Safe | 🟢 |
| 70-89 | Caution | 🟡 |
| 0-69 | Dangerous | 🔴 |
📌 Usage Examples
python3 scripts/auditor.py quick ./my-skill
python3 scripts/auditor.py full ./my-skill
python3 scripts/auditor.py before-publish ./my-new-skill
⚠️ Security Note
Read-only operation, no file modification, no external writes, API keys only for public data queries.
📝 Changelog
v1.1.1 (2026-03)
- Simplified metadata for ClawHub compatibility
- Removed complex dependencies
- Kept core audit functionality
v1.1.0 (2026-03)
- Self-whitelist: auto-mark self as safe
- Full English translation
- Improved scoring algorithm
v1.0.0 (2026-03)
- Initial release with 120+ pattern detection
安全使用建议
What to consider before installing or running this skill:
- The package materials conflict: SKILL.md declares VirusTotal integration and an API key, but the included script only does local static pattern scanning. Ask the author to explain the mismatch and provide source for any network/sandbox components before trusting external features.
- Do not supply a VIRUSTOTAL_API_KEY or other secrets unless you confirm the tool actually uses that API and you trust the author. Right now the key is unnecessary according to the code.
- The tool auto-whitelists itself (SELF_WHITELIST = ['claw-secure-auditor']), so its own self-audit will always be marked Safe. Do not rely solely on this tool's results to make security decisions—perform independent/manual review or use multiple scanners.
- If you want to run it: inspect the Python file yourself or run it in a disposable environment (container or VM) on a non-sensitive copy of the target skill. That ensures the code does what you expect and can't access real credentials.
- Recommended next steps before trusting the skill: request an authoritative source URL and release (the homepage shows a placeholder), request clarity on whether VirusTotal/sandbox features exist and provide code for them, and confirm why registry metadata differs from SKILL.md. If the author cannot justify the discrepancies, treat the tool as untrusted.
功能分析
Type: OpenClaw Skill
Name: claw-secure-auditor
Version: 1.1.1
The OpenClaw Secure Auditor skill bundle is classified as benign. Its primary function is static analysis of other skills, searching for dangerous patterns like shell execution, file deletion, credential exposure, and prompt injection keywords. The `auditor.py` script correctly implements this read-only scanning functionality without executing any of the detected patterns, modifying files, or exfiltrating data. Although `SKILL.md` mentions a `VIRUSTOTAL_API_KEY` and 'reputation scoring' implying external API calls, the provided Python script does not actually utilize this key or make any network requests, which is a functional discrepancy but not indicative of malicious intent. There is no evidence of prompt injection against the agent, obfuscation, or persistence mechanisms.
能力评估
Purpose & Capability
The SKILL.md and README advertise static + sandbox + VirusTotal reputation scoring and include metadata that declares VIRUSTOTAL_API_KEY and a 'requests' dependency, but the actual auditor script only implements local static analysis (pattern scanning) and scoring. The registry metadata at the top lists no required env vars, which contradicts the SKILL.md metadata. Requiring a VirusTotal API key or network requests would be reasonable for a reputation feature — but the code does not use network calls or the requests library, so the declared capabilities and requirements are inconsistent with the implemented capability.
Instruction Scope
Runtime instructions tell users how to run 'quick', 'full', and 'before-publish' audits and advise optionally setting VIRUSTOTAL_API_KEY; but the script only scans files for patterns and never performs sandboxing or external reputation lookups. The instructions therefore overstate what the tool does. The SKILL.md also claims 'read-only' and 'no external writes' which matches the code, but the mention of sandbox and VirusTotal is unsupported and grants the skill broader expected behavior than implemented.
Install Mechanism
There is no install spec (instruction-only), and the tool is delivered as a small Python script included in the package. This is low-risk from an install mechanism perspective because nothing is downloaded or extracted during install. Note: SKILL.md metadata lists a uv package installation for 'requests', but there is no actual install spec in the registry and the script does not import or use 'requests'.
Credentials
SKILL.md metadata and the top of the doc suggest VIRUSTOTAL_API_KEY is used, but the included auditor.py does not read environment variables or call VirusTotal — requesting an API key (a sensitive credential) is not justified by the code. The script also contains a SELF_WHITELIST that auto-marks the skill as safe when auditing itself; this behavior is reasonable for self-audits but can be misleading or abused if not clearly documented.
Persistence & Privilege
The skill does not request persistent privileges (always:false) and the code claims read-only behavior. The script reads files in the target skill path but does not modify files or alter other skills' configurations. This aligns with expected privilege levels.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install claw-secure-auditor - 安装完成后,直接呼叫该 Skill 的名称或使用
/claw-secure-auditor触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.1.1
v1.1.1
- Simplified metadata for wider ClawHub compatibility
- Removed complex dependencies; now requires only Python 3 and `requests`
- Maintained core audit features: static analysis and reputation scoring
- Updated documentation and usage instructions for easier setup
v1.1.0
claw-secure-auditor v1.1.0
Fully automated ClawHub/OpenClaw skill sandbox auditor with real-time reputation scoring (static analysis + execution testing + VirusTotal + ClawHub community scoring).
元数据
常见问题
Claw Secure Auditor 是什么?
Security audit tool for ClawHub/OpenClaw skills (static analysis + reputation scoring). 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 347 次。
如何安装 Claw Secure Auditor?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install claw-secure-auditor」即可一键安装,无需额外配置。
Claw Secure Auditor 是免费的吗?
是的,Claw Secure Auditor 完全免费(开源免费),可自由下载、安装和使用。
Claw Secure Auditor 支持哪些平台?
Claw Secure Auditor 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Claw Secure Auditor?
由 emeraldring3134-netizen(@emeraldring3134-netizen)开发并维护,当前版本 v1.1.1。
推荐 Skills