ClawAudit verdict
agent-backlink-network
abn-skill
The skill facilitates a decentralized backlink exchange for AI agents. It uses its capabilities for legitimate purposes and does not exhibit malicious behavior.
⚠ Flagged for review — coarse, uncorroborated signal, not a confirmed exploit. Review the config yourself before installing.
Automated static analysis — not a human review. ClawAudit flags capabilities, not confirmed intent, and can produce false positives. Disagree with this verdict? Use Dispute below.
Permission integrity
credential_access
package_install
Findings (4)
Accesses process.env — reads environment variables
SKILL.md · code
Dynamic import() — loads module at runtime
src/test.ts · prose · downgraded · import('
Uses exec() — may execute shell commands
src/verify.js · prose · downgraded · exec(
Opens WebSocket connection
src/test.ts · prose · downgraded · websocket
Permissions & capabilities
No declared permissions — minimal attack surface.
credential_accesspackage_install Is this flag fair?
Thanks — recorded.