🛡️ Claw Secure Auditor v1.1.1

Security audit tool for ClawHub/OpenClaw skills with static analysis and reputation scoring.

🚀 Quick Start

1. Configure (optional)

export VIRUSTOTAL_API_KEY="your-api-key-here"

2. Use

# Quick audit (static + reputation)
python3 scripts/auditor.py quick ./my-skill

# Full audit (static + sandbox + VirusTotal)
python3 scripts/auditor.py full ./my-skill

# Pre-publish audit
python3 scripts/auditor.py before-publish ./my-skill

📋 Features

• ✅ Static analysis: 120+ dangerous keyword detection
• ✅ Self-whitelist: auto-mark self as safe
• ✅ Reputation score: 0-100 with Safe/Caution/Dangerous levels
• ✅ JSON report export
• ✅ Read-only operation, no file modification

📊 Risk Levels

📌 Usage Examples

python3 scripts/auditor.py quick ./my-skill
python3 scripts/auditor.py full ./my-skill
python3 scripts/auditor.py before-publish ./my-new-skill

⚠️ Security Note

Read-only operation, no file modification, no external writes, API keys only for public data queries.

📝 Changelog

v1.1.1 (2026-03)

• Simplified metadata for ClawHub compatibility
• Removed complex dependencies
• Kept core audit functionality

v1.1.0 (2026-03)

• Self-whitelist: auto-mark self as safe
• Full English translation
• Improved scoring algorithm

v1.0.0 (2026-03)

• Initial release with 120+ pattern detection