Openclaw Web Automation
PassAudited by ClawScan on May 1, 2026.
Overview
This looks like a public web-page checking wrapper, not malware, but it has broad network access and depends on a local Automation Kit while the registry wording is broader than the no-credential skill instructions.
Before installing, confirm you trust the local OpenClaw Automation Kit repository this wrapper calls. Use the skill for public webpage checks only, do not provide login credentials through it, and be aware that its manifest permits network access to any domain.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A user might assume the skill supports or needs login-related automation even though the included instructions say not to use it for login-required tasks.
This registry-level wording is broader than SKILL.md's public-only, no-credential framing, which could confuse users about whether the skill is meant for authenticated workflows.
Description: Automates web interactions for public site checks or authenticated flows with credential references and optional iMessage notifications.
Treat this skill as public-site-only unless the publisher clearly documents and declares any authenticated or notification-related capability.
If used carelessly, the agent could be directed to fetch pages outside the intended public-site use case.
The skill can make network requests to any domain. That is expected for arbitrary public page checks, but it is still broad access that users should notice.
"permissions": { "browser": false, "network_domains": ["*"] }Use it only with public URLs you intend to check, and avoid internal, private, or login-required sites.
The skill's safety depends partly on the provenance and contents of the local OpenClaw Automation Kit installation.
The helper delegates execution to a locally installed `openclaw_automation` package, so the real automation behavior depends on the local repository/package the user has installed.
cmd = [sys.executable, "-m", "openclaw_automation.cli", "run-query", "--query", args.query]
Install and run it only from a trusted local OpenClaw Automation Kit repository, and review that package before relying on this wrapper.