little-snitch
PassAudited by ClawScan on May 1, 2026.
Overview
This is a transparent, instruction-only Little Snitch helper, but it can guide root-level firewall changes, so users should approve sensitive actions deliberately.
Use this only if you intentionally want AI help operating Little Snitch on macOS. Verify the official Little Snitch CLI is installed, treat sudo prompts as sensitive, prefer read-only log/status checks first, back up configuration before changes, and confirm any profile, rule group, preference, restore, or traffic-capture command before running it.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If run unintentionally, these commands could weaken firewall rules, change security preferences, restore an older configuration, or collect traffic data.
The skill documents privileged operations that can change firewall behavior or inspect traffic. This is central to Little Snitch control and is disclosed, but misuse could affect system network protections.
`profile` | Yes | Activate/deactivate profiles ... `write-preference` | Yes | Write a preference value ... `restore-model` | Yes | Restore from backup ... `capture-traffic` | Yes | Capture process traffic
Use read-only log/status commands first and require explicit user confirmation before sudo, disabling profiles or rule groups, writing preferences, restoring models, or capturing traffic.
Granting sudo allows system-level Little Snitch changes that can affect how the Mac blocks or allows network connections.
The skill relies on root privileges for several firewall-management actions. That privilege level is disclosed and purpose-aligned, but it crosses an important local permission boundary.
Many commands require `sudo` (root access)
Only enter a sudo password when you intentionally requested the specific firewall change, and prefer scoped commands over broad actions like deactivating all profiles.
Users may need to verify they are using the official Little Snitch CLI on macOS rather than relying on registry metadata to enforce compatibility.
The skill is instruction-only, so there is no package code to install, but the metadata does not declare the macOS-only environment or the required `littlesnitch` CLI dependency.
Source: unknown; Homepage: none ... OS restriction: none ... Required binaries ... none
Declare macOS and the `littlesnitch` command as requirements, and verify Little Snitch CLI setup against the official Objective Development documentation.