From sundial-org-awesome-openclaw-skills-4
Security auditing for Clawdbot deployments: scans for exposed credentials, open ports, weak configs, and vulnerabilities. Auto-fix mode included.
How this skill is triggered — by the user, by Claude, or both
Slash command
/sundial-org-awesome-openclaw-skills-4:security-auditThe summary Claude sees in its skill listing — used to decide when to auto-load this skill
Run a security audit to identify vulnerabilities in your Clawdbot setup before deployment or on a schedule. Use auto-fix to remediate common issues automatically.
Run a security audit to identify vulnerabilities in your Clawdbot setup before deployment or on a schedule. Use auto-fix to remediate common issues automatically.
No external dependencies required. Uses native system tools where available.
node skills/security-audit/scripts/audit.cjs
node skills/security-audit/scripts/audit.cjs --full
node skills/security-audit/scripts/audit.cjs --fix
node skills/security-audit/scripts/audit.cjs --credentials # Check for exposed API keys
node skills/security-audit/scripts/audit.cjs --ports # Scan for open ports
node skills/security-audit/scripts/audit.cjs --configs # Validate configuration
node skills/security-audit/scripts/audit.cjs --permissions # Check file permissions
node skills/security-audit/scripts/audit.cjs --docker # Docker security checks
node skills/security-audit/scripts/audit.cjs --full --json > audit-report.json
The audit produces a report with:
| Level | Description |
|---|---|
| 🔴 CRITICAL | Immediate action required (exposed credentials) |
| 🟠 HIGH | Significant risk, fix soon |
| 🟡 MEDIUM | Moderate concern |
| 🟢 INFO | FYI, no action needed |
The --fix option automatically:
security-monitor - Real-time monitoring (available separately)npx claudepluginhub joshuarweaver/cascade-ai-ml-agents-misc-2 --plugin sundial-org-awesome-openclaw-skills-4Security auditing for Clawdbot deployments: scans for exposed credentials, open ports, weak configs, and vulnerabilities. Auto-fix mode included.
Audits and hardens Clawdbot/Moltbot installations by checking gateway binding, file permissions, authentication, Node.js version, mDNS, and external accessibility. Guides firewall and Tailscale setup.
Performs full security audits scanning for hardcoded secrets, vulnerable dependencies, IAM misconfigs, auth flaws, SQL injection, XSS, HTTPS issues, rate limiting, public storage exposures.