Security Audit

wordpress

github.com/openclaw/skills

AI SkillCommit 13146e6a3d46

CAUTION

Scanned about 1 month ago

Critical

Immediate action required

High

Priority fixes suggested

Medium

Best practices review

Low

Acknowledged / Tracked

Trust Assessment

wordpress received a trust score of 69/100, placing it in the Caution category. This skill has some security considerations that users should review before deployment.

SkillShield's automated analysis identified 2 findings: 1 critical, 0 high, 0 medium, and 1 low severity. Key findings include Node lockfile missing, Arbitrary file read via user-controlled path.

The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. All layers scored 70 or above, reflecting consistent security practices.

Last analyzed on February 14, 2026 (commit 13146e6a). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.

Layer Breakdown

Manifest Analysis

100%

Static Code Analysis

100%

Dependency Graph

98%

LLM Behavioral Safety

70%

Behavioral Risk Signals

Network Access

1 finding

Filesystem Write

2 findings

Shell Execution

1 finding

Security Findings2

Severity	Finding	Layer	Location
CRITICAL	Arbitrary file read via user-controlled path The `jsonFromArg` function allows loading JSON data from a local file specified by a user-provided path prefixed with `@` (e.g., `@/etc/passwd`). An attacker can exploit this by providing a path to any readable file on the system. The content of this file is then read and used as the body of an HTTP request, potentially exfiltrating sensitive data to the configured WordPress API endpoint. This vulnerability is present in commands like `posts:create`, `posts:update`, `pages:create`, `pages:update`, `categories:create`, `tags:create`, and `request`. Implement strict validation and sanitization for file paths provided by user input. Consider restricting file access to a specific, sandboxed directory, or disallowing arbitrary file loading altogether. If file loading is essential, ensure the loaded content is validated before processing and that the file path cannot traverse directories (e.g., disallow `../` or absolute paths).	LLM	scripts/wp-cli.js:124
LOW	Node lockfile missing package.json is present but no lockfile was found (package-lock.json, pnpm-lock.yaml, or yarn.lock). Commit a lockfile for deterministic dependency resolution.	Dependencies	skills/codedao12/wordpress/package.json

Scan History

Embed Code

[![SkillShield](https://skillshield.io/api/v1/badge/f64d21e9004ec15d.svg)](https://skillshield.io/report/f64d21e9004ec15d)