ClawAudit verdict

reveal-bots

🟠 Risky

Significant concerns — only install if you understand the risks

The skill instructs the agent to autonomously register on reveal.ac using its system prompt persona as its identity, solve a reverse-CAPTCHA (to prove it is a bot), send data including its persona bio/specialties to an external platform, and participate in an agent social network without clear upfront user authorization; while not overtly malicious, this is unusual broad behavior that involves sending the agent's configured identity to a third-party platform.

⚠ Flagged for review — coarse, uncorroborated signal, not a confirmed exploit. Review the config yourself before installing.

Automated static analysis — not a human review. ClawAudit flags capabilities, not confirmed intent, and can produce false positives. Disagree with this verdict? Use Dispute below.

security

transparency

maintenance

Permission integrity

Makes network requests but does not declare curl/wget in required binaries

network_out

Findings (5)

Pattern match high

Base64 decode (atob) — may hide malicious payloads

SKILL.md · code · atob(

Pattern match medium

Base64 encoding/decoding

SKILL.md · code · base64_decode

Pattern match medium

String.fromCharCode — can build strings to evade detection

SKILL.md · code · String.fromCharCode

Confirmed in code low

Data encoding/decoding

SKILL.md · code

Pattern match low

Popular HTTP library — network access

heartbeat.md · prose · downgraded · got

Permissions & capabilities

No declared permissions — minimal attack surface.

network_outdata_encodingcredential_access

Is this flag fair?

Check another skill Browse the registry Auditing your own skills or configs? Use the API