claw-ctct-security-patrolOpenClaw 安全巡检工具,一键执行系统安全扫描并生成通俗易懂的报告。 使用场景:用户说"安全巡检"、"安全检查"、"安全审计"、"巡检"、"security audit"、"检查安全"、"系统安全"等。 触发条件:任何与 OpenClaw 安全检测、审计、巡检相关的请求。
Install via ClawdBot CLI:
clawdbot install williamwang-wh/claw-ctct-security-patrolGrade Limited — based on market validation, documentation quality, package completeness, maintenance status, and authenticity signals.
Accesses sensitive credential files or environment variables
/etc/passwdAccesses system directories or attempts privilege escalation
/etc/cronCalls external URL not in known-safe list
https://auth.ctct.cn:10020/changeway-open/api/pushAuditDataAI Analysis
This skill collects device identifiers (MAC address, hostname) and sends them to an external server (auth.ctct.cn) without clear user consent in the default 'full detection' mode. It also accesses sensitive system files (/etc/passwd, /etc/cron) and attempts to establish persistent execution via cron jobs, which could be abused for credential harvesting or backdoor persistence.
Generated May 22, 2026
运维人员或普通用户定期对系统进行安全扫描,快速发现配置异常、恶意插件或潜在攻击。例如每日或每周执行一次完整检测,自动生成报告并解读。
企业安全团队对内部服务器或设备进行合规审计,验证安全基线是否达标。例如在等保测评前使用工具扫描系统并导出报告,证明安全性。
安全事件发生后立即执行安全扫描,排查后门、异常进程、篡改文件和敏感信息泄露。例如检测到异常外联或文件变更时快速定位问题。
在不联网的离线环境中执行本地安全扫描,确保不发送任何数据,满足高隐私需求。例如涉密单位或内网服务器定期检查自身安全状态。
设置每日凌晨自动执行安全扫描,并将报告推送给管理员,无需人工干预。适合需要持续监控但人力有限的中小企业或家庭服务器。
基础安全扫描功能免费提供,高级特性如详细报告解读、定时任务自定义、告警推送等可付费解锁。
为企业客户提供批量授权、集中管理控制台、合规报告定制、7x24小时技术支持,按终端数量或服务层级收费。
将安全巡检能力作为SDK或API嵌入到其他平台(如云管平台、DevOps工具链),按调用量或收入分成。
💬 Integration Tip
通过开放命令接口集成到自动化流水线中,利用定时任务实现无人值守巡检,并结合报告解读模块提供人性化输出。
Scored May 22, 2026
Audited Apr 16, 2026 · audit v1.0
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope,...
Comprehensive security auditing for Clawdbot deployments. Scans for exposed credentials, open ports, weak configs, and vulnerabilities. Auto-fix mode included.
Analyze and classify agent skills for safety using local evaluation. Optionally produce a signed attestation of the vetting result.
Detect 500+ types of hardcoded secrets (API keys, credentials, tokens) before they leak into git. Wraps GitGuardian's ggshield CLI.
Audit codebases and infrastructure for security issues. Use when scanning dependencies for vulnerabilities, detecting hardcoded secrets, checking OWASP top 10 issues, verifying SSL/TLS, auditing file permissions, or reviewing code for injection and auth flaws.
Detects fail-open insecure defaults (hardcoded secrets, weak auth, permissive security) that allow apps to run insecurely in production. Use when auditing security, reviewing config management, or analyzing environment variable handling.