ClawAudit verdict
content-safety-guard
phy-content-safety-guard
Fetches from network AND uses eval/Function
Dual-layer AI output guardrail using Gemini Flash as a judge model; reads GOOGLE_GENAI_API_KEY from env for its stated purpose of evaluating AI-generated messages, with no exfiltration or deceptive behavior.
Automated static analysis โ not a human review. ClawAudit flags capabilities, not confirmed intent, and can produce false positives. Disagree with this verdict? Use Dispute below.
What it does
These are capability combinations: each listed behavior occurs in the skill, but ClawAudit detects co-occurrence โ it does not verify that one flows into another. Read the code to confirm a live chain.
Fetches from network AND uses eval/Function โ the remote-code-execution pattern (data-flow not verified)
LLM05 ยท LLM06 ยท ASI05
Accesses credentials AND makes external network calls โ potential credential theft
LLM02 ยท ASI03
Permission integrity
network_out
package_install
Findings (6)
Dynamic import() โ loads modules at runtime
SKILL.md ยท code
Dynamic import() โ loads module at runtime
SKILL.md ยท code ยท import("
Accesses process.env โ reads environment variables
SKILL.md ยท code
Popular HTTP library โ network access
SKILL.md ยท code ยท node-fetch
Accesses sensitive environment variables
SKILL.md ยท code ยท process.env.GOOGLE_GENAI_API_KEY
fetch() โ outbound network request
SKILL.md ยท code
Permissions & capabilities
Requires 1 environment variable. (1 sensitive: GOOGLE_GENAI_API_KEY).
network_outpackage_installcredential_accessdynamic_eval Thanks โ recorded.