Skill Trust Decision

Self-Audit

Name: Self-Audit Trust Review Report
Item: Self-Audit
Rating: 55
Author: ClawSafe

Skill declares a 'self-audit' CLI script and 'audit/' directory that do not exist; undeclared sensitive config.json with LLM tool permissions is present but not documented.

Install decision first Source: Manual upload Scanned: Apr 5, 2026

Files 2

Artifacts 0

Violations 0

Findings 3

Why this conclusion was reached

0/4 dimensions flagged

Pass

Declared vs actual capability

Declared resources and inferred behavior are broadly aligned.

Pass

Hidden execution and egress

No obvious high-risk egress or execution signals were found.

Pass

Attack chain and severe findings

There is no explicit malicious chain in the report.

Review

Dependencies and supply chain hygiene

Dependency information is incomplete, so supply-chain confidence stays limited.

What drove the risk score up

Non-existent declared entry point +20

SKILL.md declares 'self-audit' as main CLI script but file does not exist

Undeclared sensitive file +15

config.json with LLM system prompts and allowed-tools mapping is not mentioned in documentation

No implementation files +10

Skill has zero executable code despite claiming CLI functionality

Most important evidence

Medium Doc Mismatch

Declared entry point does not exist

SKILL.md lists 'self-audit' as the 'Main CLI script' but no such file exists in the package. This is a significant doc-to-code mismatch.

SKILL.md:66

Either implement the declared script or remove the reference from documentation.

Medium Doc Mismatch

Undeclared sensitive configuration file

config.json contains LLM system prompts and tool permission mappings but is not mentioned anywhere in SKILL.md. This file includes allowed-tools definitions (Bash, Read, Write, WebFetch) which map to resource permissions.

config.json:1

Document all configuration files in SKILL.md or remove unnecessary sensitive files.

Low Doc Mismatch

Declared storage directory does not exist

SKILL.md mentions an 'audit/' directory for audit log storage that does not exist.

SKILL.md:67

Either implement the directory creation or remove from documentation.

Declared capability vs actual capability

Filesystem Pass

Declared NONE

→

Inferred NONE

No scripts exist to infer capabilities

Network Pass

Declared NONE

→

Inferred NONE

No network code exists

Shell Pass

Declared NONE

→

Inferred NONE

No shell scripts exist

Environment Pass

Declared NONE

→

Inferred NONE

No env access code exists

Suspicious artifacts and egress

No obvious IOC was extracted.

Dependencies and supply chain

There are no structured dependency warnings.

File composition

2 files · 88 lines

Markdown 1 files · 75 linesJSON 1 files · 13 lines

Files of concern · 2

config.json JSON · 13 lines

Undeclared sensitive configuration file

SKILL.md Markdown · 75 lines

Declared entry point does not exist · Declared storage directory does not exist

Security positives

No executable malicious code present in the package

No credential harvesting or exfiltration mechanisms

No network communication code detected

No obfuscated or base64-encoded payloads