Firm Security Audit

风险评分

59/100 (Medium)

OpenClaw： suspicious
VirusTotal： benign
StaticScan： unknown

作者： romainsantoli-web

Slug：firm-security-audit

版本：1.0.0

更新时间：2026-03-01 08:11:21

风险信息

OpenClaw： suspicious

查看 OpenClaw 分析摘要（前 200 字预览）

The skill's stated purpose (security audit/hardening) matches its instructions at a high level, but the SKILL.md expects access to local configs, environment files, and an outbound alerting tool (Slac...

[内容已截断]

VirusTotal： benign VT 报告

静态扫描： unknown

README

README 未提供

文件列表

无文件信息

下载

下载官方 ZIP

原始 JSON 数据

{
    "latestVersion": {
        "_creationTime": 1772323864875,
        "_id": "k973vrbe3pfs1zddj20cqvk91h82268a",
        "changelog": "firm-security-audit 1.0.0 — Initial release.\n\n- Provides proactive security auditing for OpenClaw deployments.\n- Detects and remediates four critical\/high security gaps: SQL injection, sandbox off by default, non-persistent session secret, and missing rate limiting.\n- Includes step-by-step audit sequence with ready-to-use remediation templates.\n- Issues automatic Slack alerts for CRITICAL findings.\n- Requires manual checklist review for Matrix E2EE documentation gap.\n- Designed for mandatory execution before any deployment or public exposure.",
        "changelogSource": "auto",
        "createdAt": 1772323864875,
        "parsed": {
            "clawdis": []
        },
        "version": "1.0.0"
    },
    "owner": {
        "_creationTime": 0,
        "_id": "publishers:missing",
        "displayName": "romainsantoli-web",
        "handle": "romainsantoli-web",
        "image": "https:\/\/avatars.githubusercontent.com\/u\/246739959?v=4",
        "kind": "user",
        "linkedUserId": "kn71jwfkxm3jzawn6e9a07kewx8204rq"
    },
    "ownerHandle": "romainsantoli-web",
    "skill": {
        "_creationTime": 1772323864875,
        "_id": "kd76q5b7jmgfxxgkrst13xxac5823jm4",
        "badges": [],
        "createdAt": 1772323864875,
        "displayName": "Firm Security Audit",
        "latestVersionId": "k973vrbe3pfs1zddj20cqvk91h82268a",
        "ownerUserId": "kn71jwfkxm3jzawn6e9a07kewx8204rq",
        "slug": "firm-security-audit",
        "stats": {
            "comments": 0,
            "downloads": 215,
            "installsAllTime": 1,
            "installsCurrent": 1,
            "stars": 0,
            "versions": 1
        },
        "summary": "Audit de sécurité proactif des déploiements OpenClaw. Détecte et remédie aux 4 gaps critiques\/hauts identifiés dans openclaw\/openclaw : SQL injection (C1), s...",
        "tags": {
            "latest": "k973vrbe3pfs1zddj20cqvk91h82268a"
        },
        "updatedAt": 1772323881027
    }
}