UI Audit
PassAudited by VirusTotal on May 12, 2026.
Overview
Type: OpenClaw Skill Name: ui-audit Version: 1.0.1 The OpenClaw AgentSkills skill bundle for 'ui-audit' is benign. The `SKILL.md` provides detailed instructions for the AI agent to perform UI audits and generate structured JSON reports, but these instructions are entirely aligned with the stated purpose and do not contain any directives for prompt injection, data exfiltration, or unauthorized actions. The `package.json` includes a `postinstall` script that only executes a benign `echo` command for informational purposes, without any malicious execution or persistence mechanisms.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If installed through npm, a local install-time command runs, but the shown command only prints text.
npm postinstall scripts run during npm installation. In this artifact, the lifecycle script is limited to an echo message with setup guidance, so it is noteworthy but not suspicious.
"postinstall": "echo '\\n📖 UI Audit skill installed. Add to your project:..."
Install from a source you trust and verify package metadata if using npm; no additional action is needed for the shown postinstall behavior.