风险评分

59/100 (Medium)

OpenClaw: suspicious
VirusTotal: benign
StaticScan: unknown

sec-audit

作者: nx4dm1n
Slug:sec-audit
版本:1.0.0
更新时间:2026-03-24 03:59:57
风险信息

OpenClaw: suspicious

查看 OpenClaw 分析摘要(前 200 字预览) 
The skill's stated purpose (local security audit) matches most of its behavior, but the bundled script enumerates environment variables, reads many files under the user home, and uses child_process.ex...

[内容已截断]

VirusTotal: benign VT 报告

静态扫描: unknown

README

README 未提供

文件列表

无文件信息

下载
下载官方 ZIP
原始 JSON 数据
{
    "latestVersion": {
        "_creationTime": 1770820556709,
        "_id": "k975v8z8yn9h1j7j49vdrshqjd80zs8t",
        "changelog": "OpenClaw Security Audit Skill v1.0.0\n\n- Initial release of a read-only security audit tool for OpenClaw deployments.\n- Detects common vulnerabilities, insecure configurations, and the presence of known malicious skills and IOCs.\n- Covers configuration checks for environment leaks, plaintext credentials, authentication, gateway binding, sandboxing, rate limiting, WebSocket encryption, and more.\n- Outputs risk levels for findings (CRITICAL, HIGH, MEDIUM, LOW\/PASS) and supports both CLI and JSON reporting.\n- Ensures audit results are never transmitted externally and does not alter any system configuration.",
        "changelogSource": "user",
        "createdAt": 1770820556709,
        "version": "1.0.0"
    },
    "owner": {
        "_creationTime": 0,
        "_id": "publishers:missing",
        "displayName": "nx4dm1n",
        "handle": "nx4dm1n",
        "image": "https:\/\/avatars.githubusercontent.com\/u\/7656848?v=4",
        "kind": "user",
        "linkedUserId": "kn7d5wj93br8hhqs53sey3qgxd80z6js"
    },
    "ownerHandle": "nx4dm1n",
    "skill": {
        "_creationTime": 1770820556709,
        "_id": "kd7edzp1gnftembg06ja01ggfd80y3s2",
        "badges": [],
        "createdAt": 1770820556709,
        "displayName": "sec-audit",
        "latestVersionId": "k975v8z8yn9h1j7j49vdrshqjd80zs8t",
        "ownerUserId": "kn7d5wj93br8hhqs53sey3qgxd80z6js",
        "slug": "sec-audit",
        "stats": {
            "comments": 0,
            "downloads": 901,
            "installsAllTime": 3,
            "installsCurrent": 3,
            "stars": 0,
            "versions": 1
        },
        "summary": "对 OpenClaw 部署进行只读安全审计,检测环境泄露、认证配置、恶意 Skill 等已知风险和漏洞。",
        "tags": {
            "latest": "k975v8z8yn9h1j7j49vdrshqjd80zs8t"
        },
        "updatedAt": 1774295997281
    }
}