ClawHubCN
@lowwattlabs

Frisk

Pre-install security audit and vulnerability scanner for ClawHub skills — 9 threat intel sources, 7 checks.

Download plugin View Git source
Current version
v3.0.5
code-pluginCommunitysource-linked

Frisk — OpenClaw Plugin

Pre-install security audit and vulnerability scanner for ClawHub skills.

Install

npm i -g @lowwattlabs/frisk
openclaw plugins install clawhub:@lowwattlabs/frisk-audit

Tools

  • frisk — Run security audit on a ClawHub skill slug or local path

Requirements

  • Frisk CLI binary (frisk) — install via npm or download from GitHub Releases
  • Default binary path: /usr/local/bin/frisk

Configuration

{
  "frisk": {
    "binaryPath": "/usr/local/bin/frisk",
    "allowExternal": true
  }
}
  • binaryPath: Absolute path to the frisk binary. Defaults to /usr/local/bin/frisk (not PATH-resolved).
  • allowExternal: Allow network operations (threat intel sync, remote repo cloning). Default: false.

Network Disclosures

  • frisk sync connects to external threat intel feeds (CISA KEV, Feodo, EPSS, etc.). Blocked unless allowExternal: true.
  • frisk --slug <slug> clones public Git repositories. Blocked unless allowExternal: true.
  • Binary is resolved from absolute path to prevent PATH hijacking.

Links

License

MIT-0

Source and release

Source repository

lowwattlabs/frisk-plugin

Open repo

Source commit

48510822

View commit

Install command

openclaw plugins install clawhub:@lowwattlabs/frisk-audit

Metadata

  • Package: @lowwattlabs/frisk-audit
  • Created: 2026/06/08
  • Updated: 2026/06/09
  • Executes code: Yes
  • Source tag: 48510822

Compatibility

  • Built with OpenClaw: 2026.6.1
  • Plugin API range: >=2026.5.0
  • Tags: latest
  • Files: 10