Security audit
test
Security checks across malware telemetry and agentic risk
Overview
ClawCheck is a disclosed local audit skill that reads OpenClaw configuration, cron, skill, and workspace files to report health and secret-hygiene issues.
Install this only if you want an agent to audit your OpenClaw setup. For full audits, ask the agent to mask secret values and report only file paths, key names, and secret types unless you explicitly approve more detail.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
65/65 vendors flagged this skill as clean.