Skill Security Auditor

by AMv1.0.1

⚠️ Review

Command-line security analyzer for ClawHub skills. Run analyze-skill.sh to scan SKILL.md files for malicious patterns, credential leaks, and C2 infrastructure before installation. Includes threat intelligence database with 20+ detection patterns.

auditcli-tooldefensemalware-detectionpattern-matching

clawhub install skill-security-auditor

📥

All-time Downloads

📦

Active Installs

⭐

Stars

Security Analysis

🤖 Powered by DeepSeek AI

75/100

Safety Score

“This security auditing tool appears legitimate and well-documented with clear manual-only operation. Primary concerns are the unknown author identity and missing license information, but the tool's purpose and implementation seem appropriate for security analysis.”

✅Data Privacy RiskTool analyzes skill files locally; no data collection or transmission mentioned

✅Permission ScopeCLI tool with manual invocation only; no automatic permissions required

⚠️Supply Chain RiskAuthor unknown (akhmittra), no verified identity or reputation data

✅Code TransparencyWell-documented scope, detection patterns, and workflow in changelog

✅Malware IndicatorsSecurity auditing tool with no suspicious behavior patterns described

✅Social Engineering RiskNo user manipulation; clearly states manual CLI usage only

✅Dependency SafetyAppears to be standalone Bash script with no external dependencies mentioned

✅Update FrequencyVersion 2 with recent updates and detailed changelog

✅Community Validation3,391 downloads, 46 current installs, 4 stars indicate reasonable adoption

⚠️License ComplianceLicense field is null; unclear usage rights and redistribution terms

Last scanned: 3/29/2026

Community Mentions

From Reddit & GitHub discussions

🔍

No community mentions found yet.

Be the first to discuss this skill on Reddit or GitHub!

User Reviews

Loading reviews...

Changelog v1.0.1

- Added a command-line Bash script (analyze-skill.sh) for local security audits of ClawHub skills. - Updated documentation to emphasize CLI usage and step-by-step instructions. - Clearly outlined the scope: manual invocation, no automatic scanning or VirusTotal API integration. - Improved description of detection heuristics and audit workflow. - Detailed how to analyze skills by slug or local file for risk assessment.

Related Skills

Skill Builder / Creator

Create high-quality skills with modular structure, progressive disclosure, and t...

Skill Test

Test skills before using or publishing. Trial, compare, evaluate in isolation wi...

skill-router

Context-based skill auto-routing + federated skill composition. Analyzes user in...

Safety Score

ⓘ

out of 100

⚠️ Review

🤖 AI-powered scan

Info

Version: 1.0.1
Versions: 2
Author: akhmittra
Updated: Mar 23, 2026

Install on ClawHub →⚖️ Compare Skills ← Browse All Skills