Go back
More in category Open on GitHub

Jump to related tools in the same category or review the original source on GitHub.

DevOps & Cloud @chandrasekar-r Updated 2/26/2026

Security Audit OpenClaw Skill - ClawHub

Do you want your AI agent to automate Security Audit workflows? This free skill from ClawHub helps with devops & cloud tasks without building custom tools from scratch.

What this skill does

Comprehensive security auditing for Clawdbot deployments. Scans for exposed credentials, open ports, weak configs, and vulnerabilities. Auto-fix mode included.

Install

npx clawhub@latest install security-audit

Full SKILL.md

Open original
namedescription
security-auditComprehensive security auditing for Clawdbot deployments. Scans for exposed credentials, open ports, weak configs, and vulnerabilities. Auto-fix mode included.

Security Audit Skill

When to use

Run a security audit to identify vulnerabilities in your Clawdbot setup before deployment or on a schedule. Use auto-fix to remediate common issues automatically.

Setup

No external dependencies required. Uses native system tools where available.

How to

Quick audit (common issues)

node skills/security-audit/scripts/audit.cjs

Full audit (comprehensive scan)

node skills/security-audit/scripts/audit.cjs --full

Auto-fix common issues

node skills/security-audit/scripts/audit.cjs --fix

Audit specific areas

node skills/security-audit/scripts/audit.cjs --credentials      # Check for exposed API keys
node skills/security-audit/scripts/audit.cjs --ports            # Scan for open ports
node skills/security-audit/scripts/audit.cjs --configs          # Validate configuration
node skills/security-audit/scripts/audit.cjs --permissions      # Check file permissions
node skills/security-audit/scripts/audit.cjs --docker           # Docker security checks

Generate report

node skills/security-audit/scripts/audit.cjs --full --json > audit-report.json

Output

The audit produces a report with:

Level Description
🔴 CRITICAL Immediate action required (exposed credentials)
🟠 HIGH Significant risk, fix soon
🟡 MEDIUM Moderate concern
🟢 INFO FYI, no action needed

Checks Performed

Credentials

  • API keys in environment files
  • Tokens in command history
  • Hardcoded secrets in code
  • Weak password patterns

Ports

  • Unexpected open ports
  • Services exposed to internet
  • Missing firewall rules

Configs

  • Missing rate limiting
  • Disabled authentication
  • Default credentials
  • Open CORS policies

Files

  • World-readable files
  • Executable by anyone
  • Sensitive files in public dirs

Docker

  • Privileged containers
  • Missing resource limits
  • Root user in container

Auto-Fix

The --fix option automatically:

  • Sets restrictive file permissions (600 on .env)
  • Secures sensitive configuration files
  • Creates .gitignore if missing
  • Enables basic security headers

Related skills

  • security-monitor - Real-time monitoring (available separately)
Original URL: https://github.com/openclaw/skills/blob/main/skills/chandrasekar-r/security-audit

Related skills

If this matches your use case, these are close alternatives in the same category.

adguard

Control AdGuard Home DNS filtering via HTTP API.

agent-directory

The directory for AI agent services.

agent-framework-azure-ai-py

Build Azure AI Foundry agents

agent-news

Monitors Hacker News, Reddit, and arXiv for AI agent developments.

agentguard

**Category:** Security & Monitoring

agentmemory

End-to-end encrypted cloud memory for AI agents.