Communityv1.0.0

claw skill security audit

Conduct comprehensive security audits and vulnerability analysis on codebases. Use when explicitly asked for security analysis, code security review, vulnerability assessment, SAST scanning, or identifying security issues in source code. Covers injection flaws, broken access control, hardcoded secrets, insecure data handling, authentication weaknesses, LLM safety, and privacy violations.

2.3kdownloads1stars16active installskylehuan
View on ClawHubBack to Skills

Skill Details

Slug
skill-security-audit
Latest Version
1.0.0
Author
kylehuan
Published
Feb 5, 2026
Updated
Feb 26, 2026
Total Versions
1

How to Install

  1. 1 on OpenClawdBots (takes under 60 seconds).
  2. 2Open your bot dashboard and go to the Skills tab.
  3. 3Switch to the ClawHub tab and search for claw skill security audit.
  4. 4Click Install and the skill is deployed to your bot automatically.

Changelog — v1.0.0

Initial release of security-analysis skill for codebase and SKILL.md vulnerability assessment. - Provides detailed procedures for conducting security audits, vulnerability analysis, and SAST scanning. - Strict "analyze only on explicit request" policy to minimize unnecessary access. - Covers injection flaws, broken access control, hardcoded secrets, insecure data handling, authentication issues, LLM/prompt risks, and privacy violations. - Defines comprehensive review checklist for OpenClaw SKILL.md and agent instruction files to catch instruction injection, data exfiltration, privilege escalation, hidden instructions, unsafe tool use, and social engineering. - Includes report format, severity rubric, and evidence-based reporting requirements to ensure accurate, actionable security findings.