ClawAudit verdict
activecampaign-claw
Accesses credentials AND makes external network calls
The skill requires ActiveCampaign credentials, which are sensitive. However, it seems to be used for legitimate analysis and reporting purposes.
Automated static analysis — not a human review. ClawAudit flags capabilities, not confirmed intent, and can produce false positives. Disagree with this verdict? Use Dispute below.
What it does
These are capability combinations: each listed behavior occurs in the skill, but ClawAudit detects co-occurrence — it does not verify that one flows into another. Read the code to confirm a live chain.
Accesses credentials AND makes external network calls — potential credential theft
LLM02 · ASI03
Permission integrity
network_out
Findings (9)
Recursive delete from root or home — destructive command
SKILL.md · code · rm -rf ~
Possible hardcoded credential
INSTALL.md · code · TOKEN="YOUR-TOKEN-HERE
Accesses shell history/config
INSTALL.md · code · ~/.zshrc
Popular HTTP library — network access
SKILL.md · frontmatter · got
Accesses system credential store
CHANGELOG.md · prose · downgraded · keychain
Sets world-executable permissions
INSTALL.md · code · chmod 700
Instructs covert action — may act without user awareness
scripts/_skill/secrets.py · prose · downgraded · silently
Python urllib.request — network access
scripts/_skill/client.py · prose · downgraded · urllib.request
Python os.environ.get — reads environment variable
scripts/_skill/client.py · prose · downgraded · os.environ.get(
Permissions & capabilities
Requires 2 environment variables. (1 sensitive: AC_API_TOKEN). Requires 1 system binary.
network_outcredential_access Thanks — recorded.