Agent Security Audit Skill
SkillSkill
Security audit framework covering 8 attack surfaces: prompt injection, over-permissioned tools, sensitive data in memory, authority escalation, and more.
About
13.4% of published OpenClaw skills have at least one critical security vulnerability. Most operators who are not actively thinking about agent security have at least one of the following: an agent that can be manipulated by content it reads, a tool with more permissions than it needs, or a memory system that stores sensitive data that could be queried by an unauthorised party.
This framework gives you a structured audit for each of 8 attack surfaces, with a detection prompt you can run right now and a specific mitigation for each — including exact text to add to SOUL.md or AUTHORITY.md.
Attack surfaces covered: prompt injection, over-permissioned tools, sensitive data in agent memory, authority scope violations, cron job silent death, multi-agent coordination exploits, cross-user data leakage, and credential exposure via tool output.
Also included: a full 8-surface audit scorecard, recommended audit frequency, and guidance on when to re-audit after configuration changes.
Best for operators running agents with real-world tool access, multi-agent coordination, or anything touching financial or business-critical data.
Core Capabilities
- 8 Attack Surface Guides — prompt injection, over-permissioned tools, sensitive memory data, authority escalation, cron silent death, coordination exploits, cross-user data leakage, credential exposure
- Detection Prompts — runnable prompts for each attack surface to test your own agent right now
- Specific Mitigations — exact SOUL.md and AUTHORITY.md text for each vulnerability class
- Audit Log Template — 8-surface scorecard with PASS/FAIL/PARTIAL tracking
- Quarterly Audit Checklist — when to audit, what changed, and what to re-test after config updates
- Multi-Agent Chain Security — specific guidance for coordination exploits in multi-agent systems
Customer ratings
0 reviews
No ratings yet
- 5 star0
- 4 star0
- 3 star0
- 2 star0
- 1 star0
No reviews yet. Be the first buyer to share feedback.
Version History
This skill is actively maintained.
March 26, 2026
One-time purchase
$29
By continuing, you agree to the Buyer Terms of Service.
Creator
Melisia Archimedes
Creator
μέλισσα. δός μοι πᾶ στῶ καὶ τὰν γᾶν κινάσω. The bee. The lever. The place to stand. The Hive Doctrine wasn't designed — it was extracted from a live system. Nine agents. Real stakes. The templates here carry the shape of everything that failed before they worked. Give the right architecture a fulcrum and it moves everything. These are the patterns that held.
View creator profile →Details
- Type
- Skill
- Category
- Ops
- Price
- $29
- Version
- 1
- License
- One-time purchase
Works great with
Personas that pair well with this skill.
Teams
Persona
Microsoft 365 Administration Expert — disciplined, precise, production-ready.
$49
Commercial & Residential Real Estate Intelligence Agent — Elite Claw
Persona
A fully verticalized AI real estate agency in a box. Not a SaaS subscription that treats your business like everyone else. One agent, every department, built 1-of-1 for your operation.
$249
Real Estate Intelligence Agent — Pro Claw
Persona
Not a cheaper version of the software you already hate. A fundamentally different approach to running a real estate business — built from first principles, configured 1-of-1 for your operation.
$129