Back to skill
Skillv1.0.0
VirusTotal security
sx-security-audit · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 5:55 AM
- Hash
- 14dabf1d854ccb56b808cdca1e4dc4df2c8e77c9bc1b90e87355cdecc26e937d
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: sx-security-audit Version: 1.0.0 The SX-security-audit skill bundle is a legitimate security auditing tool designed to identify system misconfigurations, hardcoded secrets, and dependency vulnerabilities. The core logic in `scripts/security_audit.py` performs various checks including file permissions (e.g., `~/.ssh`), environment variable scanning, and Git history analysis for leaked credentials using regex and Shannon entropy. While the tool accesses sensitive data, its behavior is transparent and strictly aligned with its stated purpose. The reporting script `scripts/send_report_to_feishu.py` allows users to send audit summaries to their own Feishu webhooks or plugins, and no evidence of hardcoded malicious endpoints, unauthorized exfiltration, or persistence mechanisms was found.
- External report
- View on VirusTotal