openclaw-mcp-adapter Security Audit Report
openclaw-mcp-adapter is a Other skill for the OpenClaw ecosystem, created by androidStern-personal. ClawSecure audited this skill through our 3-Layer Audit Protocol covering all 10 OWASP ASI Top 10 categories. This skill received a security score of 75/100, indicating moderate risk areas that should be addressed. The audit identified 3 findings across the scan's three security layers.
What does a score of 75 mean?
A security score of 75/100 places this skill in the Medium Risk range. Skills in this range have identifiable security concerns that may need remediation before production use. Review the findings below and consider the specific recommendations provided. ClawSecure calculates scores using a weighted deduction model: critical findings deduct 20 points, high-severity findings deduct 10, medium-severity 5, and low-severity 2. A perfect score of 100 means no findings were detected across all three audit layers.
3-Layer Audit Protocol
Security Recommendations for openclaw-mcp-adapter
Pin npm dependencies to exact versions
1.2.3 instead of ^1.2.3) to prevent unauthorized code from entering your dependency tree. ClawSecure's supply chain scanning checks every dependency against known CVE databases.Add a config.json permissions manifest
Update vulnerable dependencies
npm audit locally to see the full dependency tree and use npm audit fix to automatically resolve compatible updates. ClawSecure's Watchtower will re-scan this skill automatically when the code changes.Related OpenClaw Security Research
Beyond Static Scans: The Case for Runtime Integrity→Securing the OpenClaw Ecosystem: Your Complete Guide→Related Other Security Audits
Scanned on April 28, 2026. openclaw-mcp-adapter is one of 2,890+ agents audited by ClawSecure from the community-curated awesome-openclaw-skills list and the openclaw/skills repository.