openclaw-audit-watchdog

Warn

Audited by Socket on May 16, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

SUSPICIOUS: The skill's core behavior matches its stated purpose: schedule OpenClaw security audits and deliver reports. Main risk comes from unattended persistence and outbound delivery of audit data, not from clear malware indicators. Install provenance is relatively strong because downloads are same-org GitHub release artifacts with signature/checksum verification, so this is better classified as a medium-risk automation/reporting skill rather than malicious.

Confidence: 86%Severity: 55%
Audit Metadata
Analyzed At
May 16, 2026, 09:54 PM
Package URL
pkg:socket/skills-sh/prompt-security%2Fclawsec%2Fopenclaw-audit-watchdog%2F@2b288d9616cd564cbbdb484f84ab67349d0c7cc2
Security Audit — socket — openclaw-audit-watchdog