openclaw-security-watchdog

SUSPICIOUS. The claimed security-audit purpose broadly matches the requested host visibility, but trust and data-flow integrity are weak: the skill is loaded transitively from an unrelated-looking GitHub org, routes scan metadata to an external threat-intel domain, and presents broad sensitive-system access without verifiable implementation details. This is high-risk as an AI skill even without confirmed malware behavior.