← 返回 Skills 市场
1280
总下载
0
收藏
4
当前安装
1
版本数
在 OpenClaw 中安装
/install sec-audit
功能描述
对 OpenClaw 部署进行只读安全审计,检测环境泄露、认证配置、恶意 Skill 等已知风险和漏洞。
安全使用建议
This package appears to implement an on-host OpenClaw security auditor and is mostly coherent with that purpose, but exercise caution before running it on sensitive systems:
- Review the entire tools/security-audit.js file yourself (search for any HTTP/HTTPS/fetch/axios/request usage, or net/socket code). The snippet you provided was truncated; ensure the full file contains no network calls or remote upload logic.
- Run the tool first in a safe/test environment or inside an isolated container/VM so it cannot access production secrets or exfiltrate data if there is hidden logic.
- If you must run it on a host with secrets, run it after reducing available environment variables (unset secrets) or run with a clean environment: e.g., in a dedicated container with only necessary vars.
- Inspect produced outputs (console and any --output file) before sharing them; the script masks env values but may still include partial identifiers.
- If you plan to allow an agent to invoke this skill autonomously, restrict that agent’s permissions and review logs of when the skill is executed.
If you want, I can scan the remainder of tools/security-audit.js (the truncated portion) for network calls or suspicious behavior — provide the full file and I will re-evaluate and may upgrade/downgrade the verdict.
功能分析
Type: OpenClaw Skill
Name: sec-audit
Version: 1.0.0
This OpenClaw skill bundle is a security audit tool designed to detect vulnerabilities and malicious configurations within an OpenClaw deployment. The `SKILL.md` clearly states its purpose as 'read-only detection' and 'no data exfiltration', which is consistently supported by the `tools/security-audit.js` code. The script performs various legitimate security checks, including scanning for sensitive environment variables, plaintext credentials, insecure gateway configurations, known malicious skills/authors, suspicious patterns in `SKILL.md` and code files (e.g., Base64 encoded commands, reverse shells, known C2s), and system-level Indicators of Compromise (IOCs) using standard commands like `netstat`, `grep`, `shasum`, `ps aux`, and `crontab -l`. All `child_process.execSync` calls are for audit purposes with controlled inputs, and there is no evidence of intentional harmful behavior, data exfiltration to external endpoints, or prompt injection attempts against the agent running this skill.
能力评估
Purpose & Capability
Name, SKILL.md, package.json and the included tools/security-audit.js all describe and implement a local OpenClaw security audit (checking env vars, config files, gateway config, installed skills, IOC lookups, etc.). The resources accessed (~/.clawdbot or ~/.openclaw, installed skills, process.env) are coherent with an audit tool.
Instruction Scope
SKILL.md instructs the user to run node tools/security-audit.js and explicitly claims the tool is read-only and keeps results local. The script does enumerate process.env, recursively scans config and skill directories, reads multiple config files, and uses execSync (via safeExec) to run system commands. Those actions are within scope for a scanner, but they are powerful and could expose secrets (it enumerates env vars and reports masked values). Because the provided tools/security-audit.js content was truncated in the prompt, I cannot confirm there is no later code that performs network requests or writes data elsewhere — that uncertainty is the main reason for caution.
Install Mechanism
No install spec; the skill is instruction-and-file based. That is low risk compared to remote fetch/install steps. The package.json is simple and the main script is included in the bundle (no external downloads shown).
Credentials
The skill does not request any credentials or environment variables, but it enumerates all process.env entries and flags ones matching many sensitive patterns (AWS_, OPENAI_, etc.). Enumerating env vars is reasonable for this audit purpose, but it does mean the tool will see all your environment variables at runtime; the script masks values in its console report but still includes partial values. If you run it in an environment containing secrets, those values will be read by the script (and could be written to a local file if you use --output).
Persistence & Privilege
The skill does not request always: true and has no install hooks declared. It does not appear to modify other skills or system-wide settings based on the provided code. Autonomous invocation (disable-model-invocation: false) is the platform default and not itself a problem, but be mindful that an agent could run the script if allowed.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install sec-audit - 安装完成后,直接呼叫该 Skill 的名称或使用
/sec-audit触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
OpenClaw Security Audit Skill v1.0.0
- Initial release of a read-only security audit tool for OpenClaw deployments.
- Detects common vulnerabilities, insecure configurations, and the presence of known malicious skills and IOCs.
- Covers configuration checks for environment leaks, plaintext credentials, authentication, gateway binding, sandboxing, rate limiting, WebSocket encryption, and more.
- Outputs risk levels for findings (CRITICAL, HIGH, MEDIUM, LOW/PASS) and supports both CLI and JSON reporting.
- Ensures audit results are never transmitted externally and does not alter any system configuration.
元数据
常见问题
sec-audit 是什么?
对 OpenClaw 部署进行只读安全审计,检测环境泄露、认证配置、恶意 Skill 等已知风险和漏洞。 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 1280 次。
如何安装 sec-audit?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install sec-audit」即可一键安装,无需额外配置。
sec-audit 是免费的吗?
是的,sec-audit 完全免费(开源免费),可自由下载、安装和使用。
sec-audit 支持哪些平台?
sec-audit 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 sec-audit?
由 nx4dm1n(@nx4dm1n)开发并维护,当前版本 v1.0.0。
推荐 Skills