webcam-monitor Security Report — Low Risk | ClawSafe

15 /100

webcam-monitor

Webcam motion detection and monitoring system for WSL2 with USB/IP passthrough

This is a legitimate webcam motion detection and monitoring tool using standard Python libraries (OpenCV). No malicious code, credential theft, or data exfiltration detected. Minor documentation gaps and a script filename mismatch exist but don't represent security threats.

Skill Namewebcam-monitor

Duration36.1s

Enginepi

✓

Safe to install

Safe to use. Consider improving documentation transparency about image storage and person identification features.

Findings 3 items

Severity	Finding	Location
Low	Image storage not explicitly documented Doc Mismatch SKILL.md describes the motion detection and snapshot features but doesn't explicitly state that images are saved to ~/.openclaw/workspace/camera/snapshots/ `Saves snapshots to ~/.openclaw/workspace/camera/snapshots/` → Add explicit statement about persistent image storage	`SKILL.md:1`
Low	Script filename mismatch Doc Mismatch snapshot.sh references 'motion_detector.py' but the actual file is named 'motion_detector_headless.py', causing the script to fail `/usr/bin/python3.10 motion_detector.py --snapshot` → Update snapshot.sh to reference motion_detector_headless.py	`scripts/snapshot.sh:6`
Low	Hardcoded person identification strings Sensitive Access watcher_with_cleanup.py contains hardcoded identification data for specific individuals ('Jade OR Sarah') with physical descriptions `Person: Jade OR Sarah (home office/living room, cat tree)` → Move identification profiles to a configurable external file	`scripts/watcher_with_cleanup.py:57`

Resource	Declared	Inferred	Status	Evidence
Filesystem	`READ`	`WRITE`	✓ Aligned	Writes to ~/.openclaw/workspace/camera/ directories
Network	`READ`	`READ`	✓ Aligned	Local-only HTTP server on port 8081
Shell	`NONE`	`NONE`	—	No subprocess calls found
Environment	`NONE`	`NONE`	—	No environment variable access
Browser	`NONE`	`NONE`	—	No browser automation

File Tree

6 files · 23.2 KB · 719 lines

Python 4f · 542L Markdown 1f · 172L Shell 1f · 5L

├─ ▾ 📁 scripts

│ ├─ 🐍 cleanup.py Python 71L · 2.2 KB

│ ├─ 🐍 motion_detector_headless.py Python 172L · 6.1 KB

│ ├─ 🔧 snapshot.sh Shell 5L · 130 B

│ ├─ 🐍 watcher_with_cleanup.py Python 125L · 4.3 KB

│ └─ 🐍 web_preview.py Python 174L · 5.7 KB

└─ 📝 SKILL.md Markdown 172L · 4.8 KB

Security Positives

✓ No base64-encoded or obfuscated code found

✓ No credential harvesting or environment variable iteration

✓ No remote script execution (curl|bash, wget|sh)

✓ No access to sensitive paths (~/.ssh, ~/.aws, .env)

✓ No data exfiltration or C2 communication

✓ No reverse shell or RCE capabilities

✓ Uses only standard, well-known libraries (cv2, numpy, pathlib)

✓ Network activity is local-only (localhost:8081)

✓ File system access is confined to designated directory

Scan Report

Findings 3 items

File Tree

Security Positives