← Back to Scanner

openclaw-warden Security Audit Report

🔭 Continuously monitored by ClawSecure Watchtower
Source:
SHA-256:

openclaw-warden is an AI agent skill, created by atlaspa and published at openclaw/skills. ClawSecure audited openclaw-warden across 4 files through the 3-Layer Audit Protocol covering all ten OWASP ASI Top 10 categories, assigning a security score of 5/100 (High Risk). The 10 findings concentrate in Malicious Code, Prompt Injection and Policy Violation, including Detects prompt strings used to override or force malicious tool calls:... and Pattern detected: ignore previous instructions. 8 were rated high or critical severity.

Is openclaw-warden safe?

ClawSecure audited openclaw-warden and assigned a security score of 5/100 (High Risk), identifying 10 findings across Malicious Code and Prompt Injection. Review the findings below before installing.

What did ClawSecure find in openclaw-warden?

ClawSecure identified 10 findings in openclaw-warden, concentrated in Malicious Code, Prompt Injection and Policy Violation. 8 were rated high or critical severity. The most severe include Detects prompt strings used to override or force malicious tool calls:... and Pattern detected: ignore previous instructions.

How was openclaw-warden audited?

ClawSecure ran openclaw-warden through its 3-Layer Audit Protocol with full OWASP ASI Top 10 coverage, scanning 4 files from openclaw/skills.

What does a score of 5 mean?

ClawSecure assigned openclaw-warden a security score of 5/100, placing it in the High Risk range. This is driven by 10 findings led by Malicious Code that should be addressed before use. ClawSecure derives this score with a weighted deduction model (critical -20, high -10, medium -5, low -2 from a base of 100).

Audit Findings for openclaw-warden

ClawSecure detected 10 security findings in openclaw-warden, spanning Malicious Code, Prompt Injection, Policy Violation and Permissions Manifest.

Each finding is expandable in the interactive list below.

3-Layer Audit Protocol

Security Recommendations for openclaw-warden

Audit external network connections
openclaw-warden connects to external endpoints. Verify every outbound connection goes to a trusted destination. Unauthorized callbacks are a primary indicator of ClawHavoc malware and data exfiltration. ClawSecure's proprietary engine monitors for known malicious endpoints including C2 infrastructure.
Investigate prompt injection vectors
Prompt injection is one of the most critical threats to AI agents. Attackers can embed malicious instructions in content the agent processes, causing unintended actions. Review every point where openclaw-warden processes external content and add input validation and output filtering.
Resolve policy violations
openclaw-warden trips ClawSecure policy checks. Review each flagged pattern against your security policy and remediate or document an accepted exception before production use.

Related Security Research

ClawHavoc Explained: The Malware Family Targeting AI AgentsBeyond Static Scans: Why ClawSecure Verifies Agentic Intent

Related AI Agent Security Audits

byterover-cliScore 0/100explain-code-for-developerScore 0/100explain-code-for-developerScore 0/100explain-code-for-developerScore 0/100explain-code-for-developerScore 0/100

Scanned on February 7, 2026. openclaw-warden is one of thousands of agents audited by ClawSecure from the community-curated awesome-openclaw-skills list and the openclaw/skills repository.

Start Your Free Scan