ClawAudit verdict

esp32-cam-eyes

88
๐ŸŸข Trusted
Low risk โ€” reviewed by ClawAudit, behavior matches stated purpose

This skill is a hardware setup guide for ESP32-CAM modules covering firmware flashing and HTTP server deployment; it uses curl only to test local LAN endpoints and has no credentials, exfiltration paths, or suspicious behavior.

โš  Flagged for review โ€” coarse, uncorroborated signal, not a confirmed exploit. Review the config yourself before installing.

Automated static analysis โ€” not a human review. ClawAudit flags capabilities, not confirmed intent, and can produce false positives. Disagree with this verdict? Use Dispute below.

68
security
90
transparency
70
maintenance

Findings (2)

Pattern match critical

Possible hardcoded credential

references/setup-guide.md ยท code ยท password = "YOUR_WIFI_PASSWORD

Pattern match low

pip3 install โ€” installs Python packages at runtime

SKILL.md ยท prose ยท downgraded ยท pip3 install

Permissions & capabilities

No declared permissions โ€” minimal attack surface.

Is this flag fair?

Check another skill Browse the registry Auditing your own skills or configs? Use the API