ClawHubCN
@lowwattlabs

Frisk

Pre-install security audit and vulnerability scanner for ClawHub skills — 9 threat intel sources, 7 checks.

下载插件 查看 Git 源码
当前版本
v3.0.5
code-plugin社区source-linked

Frisk — OpenClaw Plugin

Pre-install security audit and vulnerability scanner for ClawHub skills.

Install

npm i -g @lowwattlabs/frisk
openclaw plugins install clawhub:@lowwattlabs/frisk-audit

Tools

  • frisk — Run security audit on a ClawHub skill slug or local path

Requirements

  • Frisk CLI binary (frisk) — install via npm or download from GitHub Releases
  • Default binary path: /usr/local/bin/frisk

Configuration

{
  "frisk": {
    "binaryPath": "/usr/local/bin/frisk",
    "allowExternal": true
  }
}
  • binaryPath: Absolute path to the frisk binary. Defaults to /usr/local/bin/frisk (not PATH-resolved).
  • allowExternal: Allow network operations (threat intel sync, remote repo cloning). Default: false.

Network Disclosures

  • frisk sync connects to external threat intel feeds (CISA KEV, Feodo, EPSS, etc.). Blocked unless allowExternal: true.
  • frisk --slug <slug> clones public Git repositories. Blocked unless allowExternal: true.
  • Binary is resolved from absolute path to prevent PATH hijacking.

Links

License

MIT-0

源码与版本

源码仓库

lowwattlabs/frisk-plugin

打开仓库

源码提交

48510822

查看提交

安装命令

openclaw plugins install clawhub:@lowwattlabs/frisk-audit

元数据

  • 包名: @lowwattlabs/frisk-audit
  • 创建时间: 2026/06/08
  • 更新时间: 2026/06/09
  • 执行代码:
  • 源码标签: 48510822

兼容性

  • 构建于 OpenClaw: 2026.6.1
  • 插件 API 范围: >=2026.5.0
  • 标签: latest
  • 文件数: 10