code-auditorAudit any GitHub repo or raw code for security, quality, or gas optimization. Returns score, findings, severity counts, and summary.
Install via ClawdBot CLI:
clawdbot install unixlamadev-spec/code-auditorGrade Fair — based on market validation, documentation quality, package completeness, maintenance status, and authenticity signals.
Sends data to undocumented external endpoint (potential exfiltration)
POST → https://aiprox.dev/api/orchestrateCalls external URL not in known-safe list
https://aiprox.devAudited Apr 17, 2026 · audit v1.0
Generated Mar 20, 2026
Audit Solidity contracts for gas inefficiencies and security flaws before deploying to blockchain networks like Ethereum. This helps prevent costly exploits and optimize transaction fees, crucial for DeFi projects and NFT platforms.
Evaluate third-party open source libraries for vulnerabilities before integrating them into enterprise software. This reduces risks of supply chain attacks and ensures compliance with security standards in industries like fintech or healthcare.
Analyze existing codebases in legacy systems to identify quality issues, such as poor maintainability or outdated practices. This aids in planning refactoring efforts and improving software reliability for sectors like manufacturing or logistics.
Conduct security-focused audits on web application code to detect vulnerabilities like SQL injection or XSS before launching to production. This is essential for e-commerce and SaaS companies to protect user data and maintain trust.
Audit code for adherence to regulatory standards such as PCI-DSS or GDPR in financial applications. This ensures that security best practices are followed, helping banks and fintech firms avoid penalties and data breaches.
Charge users based on the number of audits performed through the API, with tiered pricing for different code sizes or complexity levels. This model suits developers and small teams needing occasional reviews without long-term commitments.
Offer monthly or annual subscriptions that include unlimited audits, priority support, and advanced features like custom rule sets. This targets large organizations with continuous code review needs, providing steady recurring income.
License the auditing technology to other companies, such as cybersecurity firms or DevOps tool providers, who integrate it into their own products. This expands market reach through partnerships and generates licensing revenue.
💬 Integration Tip
Set up the AIPROX_SPEND_TOKEN environment variable securely and test with a small repo first to verify API connectivity and response format.
Scored Apr 19, 2026
Security vetting protocol before installing any AI agent skill. Red flag detection for credential theft, obfuscated code, exfiltration. Risk classification L...
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope,...
Comprehensive security auditing for Clawdbot deployments. Scans for exposed credentials, open ports, weak configs, and vulnerabilities. Auto-fix mode included.
Audit codebases and infrastructure for security issues. Use when scanning dependencies for vulnerabilities, detecting hardcoded secrets, checking OWASP top 10 issues, verifying SSL/TLS, auditing file permissions, or reviewing code for injection and auth flaws.
Audit a user's current AI tool stack. Score each tool by ROI, identify redundancies, gaps, and upgrade opportunities. Produces a structured report with score...
Detect anomalies and outliers in construction data: unusual costs, schedule variances, productivity spikes. Statistical and ML-based detection methods.