Trust Assessment
openclaw-connector received a trust score of 82/100, placing it in the Mostly Trusted category. This skill has passed most security checks with only minor considerations noted.
SkillShield's automated analysis identified 5 findings: 0 critical, 0 high, 2 medium, and 2 low severity. Key findings include Unpinned npm dependency version, Node lockfile missing, Unpinned dependency `axios`.
The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. All layers scored 70 or above, reflecting consistent security practices.
Last analyzed on February 12, 2026 (commit 5acc5677). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.
Layer Breakdown
Behavioral Risk Signals
Security Findings5
| Severity | Finding | Layer | Location | |
|---|---|---|---|---|
| MEDIUM | Unpinned npm dependency version Dependency 'axios' is not pinned to an exact version ('^1.6.0'). Pin dependencies to exact versions to reduce drift and supply-chain risk. | Dependencies | skills/magnum-opus-v1/wooclaw-lite/package.json | |
| MEDIUM | Unsanitized external API output returned to LLM The `check_order`, `find_product`, and `store_status` tools return data fetched directly from the external WooCommerce API without sanitization. If the external API is compromised or returns malicious content (e.g., text like 'ignore previous instructions' or other prompt injection payloads), this content could be interpreted as instructions by the host LLM, leading to prompt injection. Implement output sanitization (e.g., escaping special characters, filtering keywords, or using a structured output format that prevents interpretation as instructions) for all data returned from external APIs to the LLM. Ensure that any user-controlled or external content is clearly demarcated or escaped. | LLM | scripts/index.js:70 | |
| LOW | Node lockfile missing package.json is present but no lockfile was found (package-lock.json, pnpm-lock.yaml, or yarn.lock). Commit a lockfile for deterministic dependency resolution. | Dependencies | skills/magnum-opus-v1/wooclaw-lite/package.json | |
| LOW | Potential sensitive data exposure in `store_status` error output When the `store_status` tool encounters an unexpected response from the external API, it returns the full `JSON.stringify(data)` of the response. If the external API's error or status responses contain sensitive information (e.g., internal server details, debugging information, or other proprietary data), this could be inadvertently exposed to the LLM and potentially to the end-user. Filter or redact sensitive information from external API responses before returning them to the LLM. Only return necessary and safe information, or provide a generic, non-descriptive error message for unexpected statuses. | LLM | scripts/index.js:129 | |
| INFO | Unpinned dependency `axios` The `axios` dependency is specified with a caret (`^1.6.0`), allowing for automatic updates to new minor or patch versions. While common, this practice introduces a slight supply chain risk if a future version introduces a vulnerability or malicious code. Pinning to exact versions ensures deterministic builds and reduces the risk of unexpected changes. Pin dependencies to exact versions (e.g., `"axios": "1.6.0"`) or use a lock file (e.g., `package-lock.json`) to ensure deterministic builds and prevent unintended updates. | LLM | package.json:6 |
Scan History
Embed Code
[](https://skillshield.io/report/023bd03d96f8565e)
Powered by SkillShield