Security Audit

by cerbug45v0.1.0

⚠️ Review

Minimal helper to audit skill.md-style instructions for supply-chain risks.

clawhub install agents-skill-security-audit
📥
7
All-time Downloads
📦
7
Active Installs
0
Stars

Security Analysis

🤖 Powered by DeepSeek AI

65/100
Safety Score

This security audit skill has appropriate functionality but significant trust issues. The lack of source code, unknown author, missing license, and limited community validation require careful review before deployment. While its purpose is security-focused, the implementation cannot be verified without code access.

Data Privacy RiskSkill analyzes other skills' code, doesn't request sensitive user data
Permission ScopePurpose aligns with security auditing of skill instructions
⚠️Supply Chain RiskAuthor 'cerbug45' unknown, no verified identity or reputation
⚠️Code TransparencyNo source code provided, only summary description of functionality
Malware IndicatorsNo suspicious patterns described, focuses on security scanning
Social Engineering RiskDoesn't manipulate users, provides audit reports
⚠️Dependency SafetyUnknown dependencies, mentions Python but no package details
⚠️Update FrequencyOnly one version, initial release with no update history
⚠️Community Validation929 downloads but 0 stars/comments, limited community feedback
License ComplianceNo license specified, creates legal uncertainty for use/modification

Last scanned: 3/29/2026

Community Mentions

From Reddit & GitHub discussions

🔍

No community mentions found yet.

Be the first to discuss this skill on Reddit or GitHub!

User Reviews

Loading reviews...

Sign in to write a review

Sign In

Changelog v0.1.0

Initial release of the security-audit skill. - Provides heuristic scanning of skill.md instructions for supply-chain risks. - Detects exfiltration patterns such as HTTP POST requests, unknown domain curl commands, ~/.env reads, and credential keywords. - Summarizes detected filesystem and network accesses as a permission manifest reminder. - Generates a safe report in markdown format with an assigned risk level. - Simple command-line usage via Python.

Related Skills

Security Auditor

Use when reviewing code for security vulnerabilities, implementing authenticatio...

Clawdbot Security Check

Perform a comprehensive read-only security audit of Clawdbot's own configuration...

API Security Best Practices

Guide to implement secure API practices including authentication, authorization,...

Safety Score

65
out of 100
⚠️ Review

🤖 AI-powered scan

Info

Version
0.1.0
Versions
1
Author
cerbug45
Updated
Feb 26, 2026
Install on ClawHub →⚖️ Compare Skills← Browse All Skills