ClawAudit verdict

ai-enterprise-profiler

45
🟠 Risky
Significant concerns — only install if you understand the risks

The skill requires an API token and uses curl, which could potentially be used to exfiltrate data.

⚠ Flagged for review — coarse, uncorroborated signal, not a confirmed exploit. Review the config yourself before installing.

Automated static analysis — not a human review. ClawAudit flags capabilities, not confirmed intent, and can produce false positives. Disagree with this verdict? Use Dispute below.

95
security
100
transparency
90
maintenance

Permissions & capabilities

Requires 1 environment variable. (1 sensitive: JQZX_API_TOKEN). Requires 1 system binary. (1 elevated: curl).

Is this flag fair?

Check another skill Browse the registry Auditing your own skills or configs? Use the API