{"skill":{"slug":"skill-security-check","displayName":"Skill Security Audit","summary":"This skill should be used when evaluating the security of a ClawHub skill before installation. It performs comprehensive security risk assessment on skill di...","tags":{"latest":"1.3.1"},"stats":{"comments":0,"downloads":35,"installsAllTime":0,"installsCurrent":0,"stars":0,"versions":1},"createdAt":1772171009969,"updatedAt":1778491656611},"latestVersion":{"version":"1.3.1","createdAt":1772171009969,"changelog":"- Skill renamed from “skill-security-check” to “skill-security-audit.”\n- Expanded and clarified workflow: now includes detailed steps for both automated static analysis and structured expert review.\n- Scanner can now accept a local directory path, ClawHub skill slug, or ClawHub URL as input, with automated download and cleanup for remote sources.\n- SKILL.md review process enhanced with specific detection for semantic intent discrepancy, prompt injection, hidden directives, and prerequisite section traps.\n- Added strict definitions and criteria for risk ratings (CRITICAL, HIGH, MEDIUM, LOW, SAFE) and aligned reporting format.\n- Reference to real-world attacks (e.g., ClawHavoc campaign) and comprehensive threat knowledge base for in-depth guidance.","license":null},"metadata":null,"owner":{"handle":"tjefferson","userId":"s170z4mt16txtqsqz0ea9rph3183f336","displayName":"Jeff","image":"https://avatars.githubusercontent.com/u/2939233?v=4"},"moderation":null}