{"skill":{"slug":"sec-audit","displayName":"sec-audit","summary":"对 OpenClaw 部署进行只读安全审计，检测环境泄露、认证配置、恶意 Skill 等已知风险和漏洞。","tags":{"latest":"1.0.0"},"stats":{"comments":0,"downloads":1286,"installsAllTime":5,"installsCurrent":4,"stars":0,"versions":1},"createdAt":1770820556709,"updatedAt":1777525102416},"latestVersion":{"version":"1.0.0","createdAt":1770820556709,"changelog":"OpenClaw Security Audit Skill v1.0.0\n\n- Initial release of a read-only security audit tool for OpenClaw deployments.\n- Detects common vulnerabilities, insecure configurations, and the presence of known malicious skills and IOCs.\n- Covers configuration checks for environment leaks, plaintext credentials, authentication, gateway binding, sandboxing, rate limiting, WebSocket encryption, and more.\n- Outputs risk levels for findings (CRITICAL, HIGH, MEDIUM, LOW/PASS) and supports both CLI and JSON reporting.\n- Ensures audit results are never transmitted externally and does not alter any system configuration.","license":null},"metadata":null,"owner":{"handle":"nx4dm1n","userId":"publishers:nx4dm1n","displayName":"nx4dm1n","image":"https://avatars.githubusercontent.com/u/7656848?v=4"},"moderation":{"isSuspicious":true,"isMalwareBlocked":false,"verdict":"suspicious","reasonCodes":["suspicious.dangerous_exec","suspicious.dynamic_code_execution","suspicious.llm_suspicious"],"summary":"Detected: suspicious.dangerous_exec, suspicious.dynamic_code_execution, suspicious.llm_suspicious","engineVersion":"v2.4.5","updatedAt":1777525102416}}