clawsec-feed

Provides a daily updated security advisory feed for OpenClaw-related vulnerabilities, enhancing threat intelligence for AI agents.

Install this skill

or

42/100

Security score

The clawsec-feed skill was audited on May 12, 2026 and we found 18 security issues across 4 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

medium line 97

Template literal with variable interpolation in command context

SourceSKILL.md

97

```bash

medium line 306

Template literal with variable interpolation in command context

SourceSKILL.md

306

```bash

medium line 344

Template literal with variable interpolation in command context

SourceSKILL.md

344

```bash

medium line 441

Template literal with variable interpolation in command context

SourceSKILL.md

441

```bash

medium line 639

Template literal with variable interpolation in command context

SourceSKILL.md

639

```bash

medium line 715

Template literal with variable interpolation in command context

SourceSKILL.md

715

```bash

medium line 72

Curl to non-GitHub URL

SourceSKILL.md

72	LATEST_TAG=$(curl -sSL https://api.github.com/repos/prompt-security/ClawSec/releases \| \

medium line 42

Access to hidden dotfiles in home directory

SourceSKILL.md

42	- Standard location - installed to `~/.openclaw/skills/clawsec-feed/`

low line 91

Access to hidden dotfiles in home directory

SourceSKILL.md

91	mkdir -p ~/.openclaw/skills/clawsec-feed

medium line 635

Access to hidden dotfiles in home directory

SourceSKILL.md

635	Save to: `~/.openclaw/clawsec-feed-state.json`

medium line 707

Access to hidden dotfiles in home directory

SourceSKILL.md

707	\| `CLAWSEC_INSTALL_DIR` \| Installation directory \| `~/.openclaw/skills/clawsec-feed` \|

low line 5

External URL reference

SourceSKILL.md

5	homepage: https://clawsec.prompt.security

low line 26

External URL reference

SourceSKILL.md

26	An open source project by [Prompt Security](https://prompt.security)

low line 72

External URL reference

SourceSKILL.md

72	LATEST_TAG=$(curl -sSL https://api.github.com/repos/prompt-security/ClawSec/releases \| \

low line 100

External URL reference

SourceSKILL.md

100	https://api.github.com/repos/prompt-security/ClawSec/releases \| \

low line 722

External URL reference

SourceSKILL.md

722	LATEST_URL="https://api.github.com/repos/prompt-security/ClawSec/releases"

low line 746

External URL reference

SourceSKILL.md

746	1. Verify the source URL - Ensure you are downloading from `https://clawsec.prompt.security`

low line 777

External URL reference

SourceSKILL.md

777	Built with 📡 by the [Prompt Security](https://prompt.security) team and the agent community.

Scanned on May 12, 2026

View Security Dashboard

Installation guide →

GitHub Stars 623

Rate this skill

Categorydevelopment

UpdatedMay 13, 2026

frontend docx git api database testing devops backend security-engineer devops-sre development

prompt-security/clawsec