ClawAudit verdict
jcvd
jean-claw-van-damme
Authorization gatekeeper skill implementing the APOA security framework to enforce scoped, time-bound permissions for agent actions; the skill's purpose is explicitly defensive security monitoring and audit logging.
⚠ Flagged for review — coarse, uncorroborated signal, not a confirmed exploit. Review the config yourself before installing.
Automated static analysis — not a human review. ClawAudit flags capabilities, not confirmed intent, and can produce false positives. Disagree with this verdict? Use Dispute below.
Findings (13)
Uses eval() — can execute arbitrary code
SKILL.md · prose · downgraded · eval(
Prompt injection — tries to override agent instructions
SKILL.md · prose · downgraded · ignore previous instructions
Accesses sensitive system files
scan-skill.sh · prose · downgraded · /etc/passwd
apt-get install — installs system packages
audit-export.sh · prose · downgraded · apt-get install
References SSH/GPG private keys
scan-skill.sh · prose · downgraded · SSH_KEY
Accesses system credential store
scan-skill.sh · prose · downgraded · keychain
References sudo — requests elevated privileges
scan-skill.sh · prose · downgraded · sudo
Uses exec() — may execute shell commands
scan-skill.sh · prose · downgraded · exec(
Dynamic import() — loads module at runtime
scan-skill.sh · prose · downgraded · import("
References agent configuration files
policy.json · prose · downgraded · agent_config
Sets world-executable permissions
scan-skill.sh · prose · downgraded · chmod 777
Changes file ownership
scan-skill.sh · prose · downgraded · chown
String.fromCharCode — can build strings to evade detection
scan-skill.sh · prose · downgraded · String.fromCharCode
Permissions & capabilities
No declared permissions — minimal attack surface.
Is this flag fair?
Thanks — recorded.