SX-security-audit 安全扫描报告 — 可信 | ClawSafe

5 /100

SX-security-audit

全方位安全审计技能 - Comprehensive security audit for OpenClaw: file permissions, environment variables, dependency vulnerabilities, config files, network ports, Git/Shell/macOS security, and secret key detection.

This is a legitimate, well-documented security audit tool that detects secrets, checks file permissions, scans dependencies, and audits Git/network/shell configurations. All capabilities are explicitly declared in SKILL.md and serve the stated purpose.

技能名称SX-security-audit

分析耗时45.6s

引擎pi

✓

可以安装

No action required. The skill is a genuine security auditing tool with comprehensive documentation and no hidden malicious functionality.

安全发现 3 项

严重性	安全发现	位置
低危	Reference file contains example secret patterns 文档欺骗 references/secrets-detection.md contains hardcoded example credentials (AKIAIOSFODNN7EXAMPLE, ghp_xxxxxxx, xoxb-123-456) as detection pattern examples. These are reference/documentation patterns, not actual secrets used by the tool. `AKIAIOSFODNN7EXAMPLE` → These are standard AWS documentation example keys (intentionally non-functional). No action needed; consider adding a comment clarifying these are examples.	`references/secrets-detection.md:11`
低危	Network WRITE capability not declared in SKILL.md 文档欺骗 SKILL.md declares network capability for port scanning but does not mention that send_report_to_feishu.py makes outbound POST requests to a webhook URL to deliver audit reports. `urllib.request.urlopen(req, timeout=10)` → Add '飞书报告' webhook POST to SKILL.md declared capabilities.	`scripts/send_report_to_feishu.py:85`
提示	No pinned dependency versions 供应链 The skill uses npm, subprocess, and urllib.request but has no requirements.txt or package.json. All dependencies rely on system-installed packages. `import subprocess, urllib.request` → This is acceptable as the skill uses only Python standard library and system tools (npm, git, lsof).	`scripts/security_audit.py:1`

资源类型	声明权限	推断权限	状态	证据
文件系统	`READ`	`READ`	✓ 一致	SKILL.md describes file permission checks; scripts only read sensitive paths
网络访问	`READ`	`WRITE`	✓ 一致	scripts/send_report_to_feishu.py:85 - POST to webhook URL for report delivery; n…
命令执行	`WRITE`	`WRITE`	✓ 一致	SKILL.md states subprocess usage for npm audit, git, lsof; security_audit.py use…
环境变量	`READ`	`READ`	✓ 一致	SKILL.md env check module; security_audit.py:336 iterates os.environ for API key…
技能调用	`NONE`	`NONE`	—	No skill invocation observed
剪贴板	`NONE`	`NONE`	—	No clipboard access
浏览器	`NONE`	`NONE`	—	No browser automation
数据库	`NONE`	`NONE`	—	No database access

3 严重 1 高危 12 项发现

🔑

严重 API 密钥硬编码 API 密钥

AKIAIOSFODNN7EXAMPLE

references/secrets-detection.md:11

🔑

严重 API 密钥硬编码 API 密钥

ghp_xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx

references/secrets-detection.md:12

🔑

严重 API 密钥硬编码 API 密钥

xoxb-123-456

references/secrets-detection.md:14

🔑

高危 API 密钥疑似硬编码凭证

API_KEY = "your-api-key-here"

references/secrets-detection.md:109

🔗

中危外部 URL 外部 URL

https://api.example.com

references/code-security.md:315

🔗

中危外部 URL 外部 URL

https://owasp.org/www-project-top-ten/

references/code-security.md:326

🔗

中危外部 URL 外部 URL

https://cwe.mitre.org/top25/

references/code-security.md:327

🔗

中危外部 URL 外部 URL

https://www.sans.org/top25-software-errors/

references/code-security.md:328

🔗

中危外部 URL 外部 URL

https://nodejs.org/en/docs/guides/security

references/code-security.md:329

🔗

中危外部 URL 外部 URL

https://python.readthedocs.io/en/latest/security/index.html

references/code-security.md:330

🔗

中危外部 URL 外部 URL

https://npm.example.com

references/dependency-audit.md:164

🔗

中危外部 URL 外部 URL

https://cve.mitre.org/

references/dependency-audit.md:212

目录结构

7 文件 · 85.0 KB · 2794 行

Python 2f · 1777L Markdown 5f · 1017L

├─ ▾ 📁 references

│ ├─ 📝 code-security.md Markdown 341L · 7.7 KB

│ ├─ 📝 dependency-audit.md Markdown 254L · 4.9 KB

│ ├─ 📝 permissions.md Markdown 48L · 1.5 KB

│ └─ 🔑 secrets-detection.md ⚠ Markdown 188L · 4.6 KB

├─ ▾ 📁 scripts

│ ├─ 🐍 security_audit.py Python 1335L · 47.6 KB

│ └─ 🐍 send_report_to_feishu.py Python 442L · 13.3 KB

└─ 📝 SKILL.md Markdown 186L · 5.5 KB

依赖分析 4 项

包名	版本	来源	已知漏洞	备注
`Python standard library (subprocess, urllib.request, json, re, math)`	`N/A`	stdlib	否	Only standard library + system tools (npm, git, lsof) used; no external packages
`npm`	`system`	system	否	Used only for npm audit --json on workspace dependencies
`git`	`system`	system	否	Used only for git config and git log inspection
`lsof`	`system`	system	否	Used only for network port enumeration

安全亮点

✓ SKILL.md is comprehensive and explicitly documents all major capabilities

✓ Subprocess calls are restricted to legitimate security audit tools (npm audit, git, lsof, platform-specific security commands)

✓ No arbitrary shell command execution - only controlled, documented commands

✓ No obfuscation (base64, eval tricks, or anti-analysis techniques)

✓ No credential exfiltration - environment variables are only read to detect secrets, not sent anywhere

✓ No persistence mechanisms (no cron, startup hooks, or backdoors)

✓ High-entropy detection uses Shannon entropy algorithm, a standard technique

✓ Sensitive path access (~/.ssh, ~/.aws) is read-only for permission checking

✓ Feishu webhook only receives generated audit reports, not attacker commands

✓ Code includes proper error handling (try/except) and timeout controls on subprocess calls

✓ No prompt injection or LLM manipulation techniques detected