ClawAudit verdict

last30days

last30days-skill

88
🟢 Trusted
Low risk — reviewed by ClawAudit, behavior matches stated purpose

Topic research skill across Reddit, X, YouTube, and the web using WebSearch and user-provided OPENAI_API_KEY for summarization — all operations match the stated research and content analysis purpose.

⚠ Flagged for review — coarse, uncorroborated signal, not a confirmed exploit. Review the config yourself before installing.

Automated static analysis — not a human review. ClawAudit flags capabilities, not confirmed intent, and can produce false positives. Disagree with this verdict? Use Dispute below.

0
security
90
transparency
90
maintenance

Permission integrity

Accesses agent memory/configuration files

agent_memory

Findings (12)

Pattern match high

subprocess execution — runs system commands from Python

docs/plans/2026-02-03-bird-cli-implementation.md · code · subprocess.run(

Pattern match high

Recursive delete from root or home — destructive command

docs/plans/2026-02-06-feat-last30days-bird-cli-release-plan.md · prose · downgraded · rm -rf ~

Pattern match medium

Possible prompt injection — attempts to redefine agent identity

SKILL.md · prose · downgraded · you are now

Pattern match medium

Instructs covert action — may act without user awareness

docs/plans/2026-02-06-fix-skill-execution-fork-mode-plan.md · prose · downgraded · silently

Pattern match medium

Accesses OpenClaw config/secrets directly

docs/plans/2026-02-14-feat-merge-openclaw-variant-plan.md · prose · downgraded · ~/.openclaw/openclaw.json

Pattern match medium

Accesses system credential store

docs/v2.1-launch-copy.md · prose · downgraded · Keychain

Pattern match medium

Uses exec() — may execute shell commands

scripts/lib/vendor/bird-search/lib/runtime-query-ids.js · prose · downgraded · exec(

Pattern match low

Popular HTTP library — network access

SKILL.md · prose · downgraded · got

Pattern match low

References agent configuration files

README.md · prose · downgraded · CLAUDE.md

Pattern match low

Python threading.Timer — deferred execution

scripts/last30days.py · prose · downgraded · threading.Timer(

Pattern match low

Python os.environ.get — reads environment variable

scripts/lib/cache.py · prose · downgraded · os.environ.get(

Pattern match low

Python urllib.request — network access

scripts/lib/http.py · prose · downgraded · urllib.request

Why the tier is capped

Execution sink present in raw bytes (Hard Floor: class B/D). Final tier capped at Caution — cannot be lifted by any downgrade, example-payload opt-in, or allowlist.

Permissions & capabilities

Requires 1 environment variable. (1 sensitive: OPENAI_API_KEY). Requires 2 system binaries.

agent_memory

Is this flag fair?

Check another skill Browse the registry Auditing your own skills or configs? Use the API