ClawHub

OpenClaw Audit

v1.1.1

Audit an OpenClaw installation against 12 production primitives using local configuration and workspace files. Use for read-only OpenClaw config reviews, har...

0· 47·0 current·0 all-time
by@shawnpetros
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description and runtime instructions consistently describe a read-only audit of local OpenClaw config and workspace files. One minor inconsistency: the registry metadata lists the 'openclaw' binary as required, but the SKILL.md explicitly says the default offline audit should not run the openclaw CLI and that live checks are optional. Requiring the binary for an offline-only flow is unnecessary but not harmful.
Instruction Scope
SKILL.md instructs the agent to read ~/.openclaw/openclaw.json and optional workspace files (AGENTS.md, HEARTBEAT.md, skills/, memory/, hooks/). These file reads are necessary for the stated audit purpose; the document emphasizes redaction of secrets and labels live checks clearly. There are no instructions to exfiltrate data or contact unknown endpoints; live checks require explicit user consent and the openclaw CLI.
Install Mechanism
This is an instruction-only skill with no install spec and no code files. That minimizes on-disk risk; nothing is downloaded or executed by default.
Credentials
The skill declares no required environment variables or credentials and the instructions do not request secrets beyond reading local config files. The guidance to redact sensitive values is appropriate. No unrelated credentials or broad secret access are requested.
Persistence & Privilege
always is false and there is no indication the skill alters other skills or system-wide settings. It does not request persistent presence or elevated privileges.
Assessment
This skill appears to do what it says: a read-only, local-file OpenClaw configuration audit. Before installing or running it, be aware it will read files under ~/.openclaw (including openclaw.json and workspace docs) — these may contain sensitive tokens or pointers to secrets; the SKILL.md instructs redaction but the agent will still access those files. The 'openclaw' binary is marked as required even though the default offline audit does not invoke it; it is only needed if you explicitly request live runtime checks (which may contact local gateways or configured services). Also note there is no homepage and the published metadata is minimal, so verify you trust the publisher (SKILL.md lists PennywiseOps and a contact email). If you do not want local config files read, do not grant the skill access or only allow it when run interactively and after confirming the scope (offline-only vs live checks).

Like a lobster shell, security has layers — review code before you run it.

latestvk97f8w55mdj8960d2apfmh40e584f9ce

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

Binsopenclaw

Comments