Pre-install security audit and vulnerability scanner for ClawHub skills and code plugins — scan by slug or local path, 9 threat intel sources, 7 checks including malware scanning, dependency vulnerabilities, and credential leak detection. Wedge paid API available at https://node1.tail507e53.ts.net/frisk for automated scanning at scale.
Install
$
openclaw plugins install clawhub:@lowwattlabs/frisk-auditFrisk — OpenClaw Plugin
Pre-install security audit and vulnerability scanner for ClawHub skills.
Install
npm i -g @lowwattlabs/frisk
openclaw plugins install clawhub:@lowwattlabs/frisk-audit
Tools
- frisk — Run security audit on a ClawHub skill slug or local path
Requirements
- Frisk CLI binary (
frisk) — install via npm or download from GitHub Releases - Default binary path:
/usr/local/bin/frisk
Configuration
{
"frisk": {
"binaryPath": "/usr/local/bin/frisk",
"allowExternal": true
}
}
binaryPath: Absolute path to the frisk binary. Defaults to/usr/local/bin/frisk(not PATH-resolved).allowExternal: Allow network operations (threat intel sync, remote repo cloning). Default:false.
Network Disclosures
frisk syncconnects to external threat intel feeds (CISA KEV, Feodo, EPSS, etc.). Blocked unlessallowExternal: true.frisk --slug <slug>clones public Git repositories. Blocked unlessallowExternal: true.- Binary is resolved from absolute path to prevent PATH hijacking.
Links
- GitHub: https://github.com/lowwattlabs/frisk
- npm: https://www.npmjs.com/package/@lowwattlabs/frisk
- ClawHub: https://clawhub.ai/lowwattlabs/frisk-audit
License
MIT-0