gsc is an AI agent skill, created by jdrhyne and published at openclaw/skills. ClawSecure audited gsc across 4 files through the 3-Layer Audit Protocol covering all ten OWASP ASI Top 10 categories, assigning a security score of 85/100 (Safe). The 4 findings concentrate in Data Exfiltration, Policy Violation and Permissions Manifest, including Script iterates through environment variables in... and Script iterates through environment variables in.... None were rated high or critical severity.
Is gsc safe?
ClawSecure audited gsc and assigned a security score of 85/100 (Safe), identifying 4 findings across Data Exfiltration and Policy Violation. Review the findings below before installing.
What did ClawSecure find in gsc?
ClawSecure identified 4 findings in gsc, concentrated in Data Exfiltration, Policy Violation and Permissions Manifest. The most severe include Script iterates through environment variables in... and Script iterates through environment variables in....
How was gsc audited?
ClawSecure ran gsc through its 3-Layer Audit Protocol with full OWASP ASI Top 10 coverage, scanning 4 files from openclaw/skills.
What does a score of 85 mean?
ClawSecure assigned gsc a security score of 85/100, placing it in the Safe range. Scores of 80 or above qualify for ClawSecure Verified status; the 4 findings detected are lower-severity. ClawSecure derives this score with a weighted deduction model (critical -20, high -10, medium -5, low -2 from a base of 100).
Audit Findings for gsc
ClawSecure detected 4 security findings in gsc, spanning Data Exfiltration, Policy Violation and Permissions Manifest.
- medium · Script iterates through environment variables in.... Data Exfiltration finding detected in
/tmp/url-scans/d1ca69c09875fd76/scripts/gsc_auth.py. - medium · Script iterates through environment variables in.... Data Exfiltration finding detected in
/tmp/url-scans/d1ca69c09875fd76/scripts/gsc_query.py. - medium · Missing config.json - agent may not be properly configured. Permissions Manifest finding.
- info · Skill manifest does not include a 'license' field. Specifying a license.... Policy Violation finding detected in
SKILL.md.
Each finding is expandable in the interactive list below.
3-Layer Audit Protocol
Security Recommendations for gsc
Audit external network connections
Resolve policy violations
Add a config.json permissions manifest
Pin dependencies to exact versions
1.2.3 instead of ^1.2.3) to keep unauthorized code out of your dependency tree. ClawSecure checks every dependency against known CVE databases.Related Security Research
ClawHavoc Explained: The Malware Family Targeting AI Agents→Beyond Static Scans: Why ClawSecure Verifies Agentic Intent→OWASP ASI Top 10 Explained: The Complete Guide to AI Agent Security Standards→Related AI Agent Security Audits
Scanned on March 2, 2026. gsc is one of thousands of agents audited by ClawSecure from the community-curated awesome-openclaw-skills list and the openclaw/skills repository.