Security Audit

jooey/openclaw-skill-add-newcli-provider:root

github.com/jooey/openclaw-skill-add-newcli-provider

AI SkillCommit e715267a8f12

TRUSTED

Scanned 12 days ago

Critical

Immediate action required

High

Priority fixes suggested

Medium

Best practices review

Low

Acknowledged / Tracked

Trust Assessment

jooey/openclaw-skill-add-newcli-provider:root received a trust score of 93/100, placing it in the Trusted category. This skill has passed all critical security checks and demonstrates strong security practices.

SkillShield's automated analysis identified 1 finding: 0 critical, 0 high, 1 medium, and 0 low severity. Key findings include Sensitive environment variable access: $HOME.

The analysis covered 4 layers: dependency_graph, llm_behavioral_safety, manifest_analysis, static_code_analysis. All layers scored 70 or above, reflecting consistent security practices.

Last analyzed on February 8, 2026 (commit e715267a). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.

Layer Breakdown

Manifest Analysis

100%

Static Code Analysis

93%

Dependency Graph

100%

LLM Behavioral Safety

100%

Behavioral Risk Signals

Shell Execution

1 finding

Excessive Permissions

1 finding

Security Findings1

Severity	Finding	Layer	Location
MEDIUM	Sensitive environment variable access: $HOME Access to sensitive environment variable '$HOME' detected in shell context. Verify this environment variable access is necessary and the value is not exfiltrated.	Unknown	/tmp/skillscan-clone-u9h9gx75/repo/SKILL.md:203

Scan History

Embed Code

[![SkillShield](https://skillshield.io/api/v1/badge/54ecb30b0bed5352.svg)](https://skillshield.io/report/54ecb30b0bed5352)