# Send Skill Trust Auditor to your agent
Hand the extracted package to your coding agent with a concrete install brief instead of figuring it out manually.
## Fast path
- Download the package from Yavira.
- Extract it into a folder your agent can access.
- Paste one of the prompts below and point your agent at the extracted folder.
## Suggested prompts
### New install

```text
I downloaded a skill package from Yavira. Read SKILL.md from the extracted folder and install it by following the included instructions. Then review README.md for any prerequisites, environment setup, or post-install checks. Tell me what you changed and call out any manual steps you could not complete.
```
### Upgrade existing

```text
I downloaded an updated skill package from Yavira. Read SKILL.md from the extracted folder, compare it with my current installation, and upgrade it while preserving any custom configuration unless the package docs explicitly say otherwise. Then review README.md for any prerequisites, environment setup, or post-install checks. Summarize what changed and any follow-up checks I should run.
```
## Machine-readable fields
```json
{
  "schemaVersion": "1.0",
  "item": {
    "slug": "skill-trust-auditor",
    "name": "Skill Trust Auditor",
    "source": "tencent",
    "type": "skill",
    "category": "安全合规",
    "sourceUrl": "https://clawhub.ai/JonathanJing/skill-trust-auditor",
    "canonicalUrl": "https://clawhub.ai/JonathanJing/skill-trust-auditor",
    "targetPlatform": "OpenClaw"
  },
  "install": {
    "downloadUrl": "/downloads/skill-trust-auditor",
    "sourceDownloadUrl": "https://wry-manatee-359.convex.site/api/v1/download?slug=skill-trust-auditor",
    "sourcePlatform": "tencent",
    "targetPlatform": "OpenClaw",
    "packageFormat": "ZIP package",
    "primaryDoc": "SKILL.md",
    "includedAssets": [
      "CHANGELOG.md",
      "README.md",
      "SKILL.md",
      "references/clawhavoc-patterns.md",
      "scripts/analyze_skill.py",
      "scripts/audit.sh"
    ],
    "downloadMode": "redirect",
    "sourceHealth": {
      "source": "tencent",
      "slug": "skill-trust-auditor",
      "status": "healthy",
      "reason": "direct_download_ok",
      "recommendedAction": "download",
      "checkedAt": "2026-04-29T15:44:36.239Z",
      "expiresAt": "2026-05-06T15:44:36.239Z",
      "httpStatus": 200,
      "finalUrl": "https://wry-manatee-359.convex.site/api/v1/download?slug=skill-trust-auditor",
      "contentType": "application/zip",
      "probeMethod": "head",
      "details": {
        "probeUrl": "https://wry-manatee-359.convex.site/api/v1/download?slug=skill-trust-auditor",
        "contentDisposition": "attachment; filename=\"skill-trust-auditor-1.1.3.zip\"",
        "redirectLocation": null,
        "bodySnippet": null,
        "slug": "skill-trust-auditor"
      },
      "scope": "item",
      "summary": "Item download looks usable.",
      "detail": "Yavira can redirect you to the upstream package for this item.",
      "primaryActionLabel": "Download for OpenClaw",
      "primaryActionHref": "/downloads/skill-trust-auditor"
    },
    "validation": {
      "installChecklist": [
        "Use the Yavira download entry.",
        "Review SKILL.md after the package is downloaded.",
        "Confirm the extracted package contains the expected setup assets."
      ],
      "postInstallChecks": [
        "Confirm the extracted package includes the expected docs or setup files.",
        "Validate the skill or prompts are available in your target agent workspace.",
        "Capture any manual follow-up steps the agent could not complete."
      ]
    }
  },
  "links": {
    "detailUrl": "https://openagent3.xyz/skills/skill-trust-auditor",
    "downloadUrl": "https://openagent3.xyz/downloads/skill-trust-auditor",
    "agentUrl": "https://openagent3.xyz/skills/skill-trust-auditor/agent",
    "manifestUrl": "https://openagent3.xyz/skills/skill-trust-auditor/agent.json",
    "briefUrl": "https://openagent3.xyz/skills/skill-trust-auditor/agent.md"
  }
}
```
## Documentation

### Skill Trust Auditor

Audit any ClawHub skill for security risks before installation.

### 1. Ask OpenClaw (Recommended)

Tell OpenClaw: "Install the skill-trust-auditor skill." The agent will handle the installation and configuration automatically.

### 2. Manual Installation (CLI)

If you prefer the terminal, run:

clawhub install skill-trust-auditor

### Setup (first run only)

bash scripts/setup.sh

### Audit a Skill

When user says "audit [skill-name]" or "is [skill-name] safe" or before any clawhub install:

bash scripts/audit.sh [skill-name-or-url]
# Example:
bash scripts/audit.sh steipete/clawhub
bash scripts/audit.sh https://clawhub.ai/someuser/someskill

Output:

{
  "skill": "someuser/someskill",
  "trust_score": 72,
  "verdict": "INSTALL WITH CAUTION",
  "risks": [
    {"level": "HIGH", "pattern": "curl to external domain", "location": "scripts/sync.sh:14"},
    {"level": "MEDIUM", "pattern": "reads MEMORY.md", "location": "SKILL.md:23"}
  ],
  "safe_patterns": ["no env var access", "no self-modification"],
  "author_verified": false,
  "recommendation": "Review scripts/sync.sh:14 before installing. The external curl call could exfiltrate data."
}

Post to user with clear summary:

🛡️ Trust Audit: someuser/someskill
Score: 72/100 — ⚠️ INSTALL WITH CAUTION

🔴 HIGH: curl to unknown domain in scripts/sync.sh:14
🟡 MEDIUM: reads your MEMORY.md

Recommendation: Inspect line 14 of sync.sh before proceeding.
Run: clawhub show someuser/someskill --file scripts/sync.sh

### Trust Score Guide

ScoreVerdictAction90-100✅ SAFEInstall freely70-89⚠️ CAUTIONReview flagged items first50-69🟠 RISKYOnly if you understand the risks0-49🔴 DO NOT INSTALLHigh probability of malicious intent

### Risk Pattern Reference

HIGH RISK (-30 each):

process.env access in scripts
curl/wget to non-standard domains
Reading ~/.config or ~/.openclaw directly
exec() with user-controlled input
Instructions to modify SOUL.md/AGENTS.md/openclaw.json

MEDIUM RISK (-10 each):

Any outbound API calls (even to known services)
File writes outside workspace
Reading MEMORY.md or diary files

LOW RISK (-3 each):

web_fetch to standard domains
Read-only file access in workspace

### Auto-Audit Mode

Optionally prepend audit to every install:

# Add to your shell aliases:
alias clawhub-safe='bash ~/.openclaw/workspace/skills/skill-trust-auditor/scripts/audit.sh $1 && clawhub install $1'

### ClawHavoc Pattern Reference

See references/clawhavoc-patterns.md for known malicious patterns from the February 2026 incident. Update this file when new incidents are reported.
## Trust
- Source: tencent
- Verification: Indexed source record
- Publisher: JonathanJing
- Version: 1.1.3
## Source health
- Status: healthy
- Item download looks usable.
- Yavira can redirect you to the upstream package for this item.
- Health scope: item
- Reason: direct_download_ok
- Checked at: 2026-04-29T15:44:36.239Z
- Expires at: 2026-05-06T15:44:36.239Z
- Recommended action: Download for OpenClaw
## Links
- [Detail page](https://openagent3.xyz/skills/skill-trust-auditor)
- [Send to Agent page](https://openagent3.xyz/skills/skill-trust-auditor/agent)
- [JSON manifest](https://openagent3.xyz/skills/skill-trust-auditor/agent.json)
- [Markdown brief](https://openagent3.xyz/skills/skill-trust-auditor/agent.md)
- [Download page](https://openagent3.xyz/downloads/skill-trust-auditor)