openclaw-audit-watchdog

SUSPICIOUS: the skill is purpose-aligned for audit automation, but its footprint is materially risky because it creates unattended persistent jobs and autonomously transmits security audit results to DM/email destinations. No strong evidence of malware or covert credential theft is present; the main concerns are persistence, external data delivery, and only partially specified standalone install trust.