← Back to Scanner

ai-persona-os Security Audit Report

🔭 Continuously monitored by ClawSecure Watchtower
Source:
SHA-256:

ai-persona-os is an AI agent skill, created by jeffjhunter and published at openclaw/skills. ClawSecure audited ai-persona-os across 43 files through the 3-Layer Audit Protocol covering all ten OWASP ASI Top 10 categories, assigning a security score of 0/100 (High Risk). The 47 findings concentrate in Malicious Code, Policy Violation and Prompt Injection, including Detects prompt strings used to override or force malicious tool calls:... and Attempts to access sensitive file: SOUL.md. 45 were rated high or critical severity.

Is ai-persona-os safe?

ClawSecure audited ai-persona-os and assigned a security score of 0/100 (High Risk), identifying 47 findings across Malicious Code and Policy Violation. Review the findings below before installing.

What did ClawSecure find in ai-persona-os?

ClawSecure identified 47 findings in ai-persona-os, concentrated in Malicious Code, Policy Violation and Prompt Injection. 45 were rated high or critical severity. The most severe include Detects prompt strings used to override or force malicious tool calls:... and Attempts to access sensitive file: SOUL.md.

How was ai-persona-os audited?

ClawSecure ran ai-persona-os through its 3-Layer Audit Protocol with full OWASP ASI Top 10 coverage, scanning 43 files from openclaw/skills.

What does a score of 0 mean?

ClawSecure assigned ai-persona-os a security score of 0/100, placing it in the High Risk range. This is driven by 47 findings led by Malicious Code that should be addressed before use. ClawSecure derives this score with a weighted deduction model (critical -20, high -10, medium -5, low -2 from a base of 100).

Audit Findings for ai-persona-os

ClawSecure detected 47 security findings in ai-persona-os, spanning Malicious Code, Policy Violation, Prompt Injection and Permissions Manifest.

Showing the 12 highest-severity of 47 findings. The full interactive list appears below.

3-Layer Audit Protocol

Security Recommendations for ai-persona-os

Audit external network connections
ai-persona-os connects to external endpoints. Verify every outbound connection goes to a trusted destination. Unauthorized callbacks are a primary indicator of ClawHavoc malware and data exfiltration. ClawSecure's proprietary engine monitors for known malicious endpoints including C2 infrastructure.
Resolve policy violations
ai-persona-os trips ClawSecure policy checks. Review each flagged pattern against your security policy and remediate or document an accepted exception before production use.
Investigate prompt injection vectors
Prompt injection is one of the most critical threats to AI agents. Attackers can embed malicious instructions in content the agent processes, causing unintended actions. Review every point where ai-persona-os processes external content and add input validation and output filtering.

Related Security Research

ClawHavoc Explained: The Malware Family Targeting AI AgentsBeyond Static Scans: Why ClawSecure Verifies Agentic Intent

Related AI Agent Security Audits

memory-lancedb-proScore 0/100ai-persona-osScore 0/100ai-persona-osScore 0/100cognitive-memoryScore 0/100memory-keeperScore 15/100

Scanned on February 7, 2026. ai-persona-os is one of thousands of agents audited by ClawSecure from the community-curated awesome-openclaw-skills list and the openclaw/skills repository.

Start Your Free Scan