Siteaudit
Security checks across static analysis, malware telemetry, and agentic risk
Overview
The skill’s code matches its stated purpose: it audits user-provided websites for uptime, TLS, and security headers without credentials, persistence, or local data access.
This skill appears safe for its intended use. It will make network requests to the domains you provide, so only audit sites or internal services when you have permission to do so.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Running the skill will send HTTP/TLS requests to the websites being checked.
The script accepts user-supplied URLs and performs network requests to audit uptime and headers. This is expected for a website audit tool, but users should be aware it contacts the specified sites.
p.add_argument("urls", nargs="+") ... urllib.request.urlopen(req, timeout=timeout)Use it only for websites you are allowed to test, and avoid pointing it at internal or sensitive services unless that is intentional.