Communityv1.0.0

sec-audit

对 OpenClaw 部署进行只读安全审计,检测环境泄露、认证配置、恶意 Skill 等已知风险和漏洞。

1.7kdownloads5active installsnx4dm1n
View on ClawHubBack to Skills

Skill Details

Slug
sec-audit
Latest Version
1.0.0
Author
nx4dm1n
Published
Feb 11, 2026
Updated
May 11, 2026
Total Versions
1

How to Install

  1. 1 on OpenClawdBots (takes under 60 seconds).
  2. 2Open your bot dashboard and go to the Skills tab.
  3. 3Switch to the ClawHub tab and search for sec-audit.
  4. 4Click Install and the skill is deployed to your bot automatically.

Changelog — v1.0.0

OpenClaw Security Audit Skill v1.0.0 - Initial release of a read-only security audit tool for OpenClaw deployments. - Detects common vulnerabilities, insecure configurations, and the presence of known malicious skills and IOCs. - Covers configuration checks for environment leaks, plaintext credentials, authentication, gateway binding, sandboxing, rate limiting, WebSocket encryption, and more. - Outputs risk levels for findings (CRITICAL, HIGH, MEDIUM, LOW/PASS) and supports both CLI and JSON reporting. - Ensures audit results are never transmitted externally and does not alter any system configuration.