ClawAudit verdict

winguictl

45
🟠 Risky
Significant concerns — only install if you understand the risks

The skill directly controls Windows desktop through mouse/keyboard simulation, which could lead to security issues if not properly validated.

⚠ Flagged for review — coarse, uncorroborated signal, not a confirmed exploit. Review the config yourself before installing.

Automated static analysis — not a human review. ClawAudit flags capabilities, not confirmed intent, and can produce false positives. Disagree with this verdict? Use Dispute below.

48
security
100
transparency
70
maintenance

Findings (4)

Pattern match high

Instructs covert action — may act without user awareness

assets/wechat/system-tools.md · code · Silently

Pattern match high

Pipe to python — executes piped content as Python code

references/dependencies.md · prose · downgraded · | Python

Pattern match medium

Uses exec() — may execute shell commands

AGENTS.md · prose · downgraded · exec(

Pattern match low

Popular HTTP library — network access

scripts/find_driver.py · prose · downgraded · got

Permissions & capabilities

Requires 1 system binary.

Is this flag fair?

Check another skill Browse the registry Auditing your own skills or configs? Use the API