molt-security-auditor-v3

Review·Scanned 2/18/2026

This skill scans a host for credentials, open ports, configs and vulnerabilities and can apply fixes and rollbacks (writes security-report-v3.json and rollback.sh). It executes system commands (e.g., netstat/ss/lsof, npm audit fix) and searches files for tokens using the regex sk-[a-z0-9]{48}, which is security-relevant.

from clawhub.ai·v0a6eb7d·5.5 KB·0 installs
Scanned from 1.0.1 at 0a6eb7d · Transparency log ↗
$ vett add clawhub.ai/kunoiiv/molt-security-auditor-v3Review findings below

Molt Security Auditor V3 (Bulletproof)

Scans + fixes (preview/verify). Hardcoded safe—no malicious paths.

Quick Run

node scripts/audit.js --full     # Scan → security-report-v3.json
node scripts/audit.js --fix      # Guided fixes
node scripts/audit.js --auto     # Preview → Run + verify
node scripts/rollback.js         # Atomic revert

Scans

  • Creds: Hash-only grep (sk-*, api_key) — 100 files/1MB limit.
  • Ports: netstat/ss/lsof — open ports list.
  • Configs: SSH pass/root, users/sudo.
  • Vulns: npm audit JSON, openclaw update.

V3 Security

  • Immutable Cmds: Hardcoded whitelist—no injection.
  • Mutex: 5min lock expire.
  • Backup: Read-only copies + SHA verify.
  • Timeouts: 5-10s execs.
  • Cross-OS: Win/Linux/Mac native.
  • Verify: Pre/post diff.
  • Rollback: backup/*.bak → one-script restore.

Report: security-report-v3.json (safe JSON).

Prod eternal—ClawdHub V3 ready.