# Send Security Audit (Sona) to your agent
Hand the extracted package to your coding agent with a concrete install brief instead of figuring it out manually.
## Fast path
- Download the package from Yavira.
- Extract it into a folder your agent can access.
- Paste one of the prompts below and point your agent at the extracted folder.
## Suggested prompts
### New install

```text
I downloaded a skill package from Yavira. Read SKILL.md from the extracted folder and install it by following the included instructions. Then review README.md for any prerequisites, environment setup, or post-install checks. Tell me what you changed and call out any manual steps you could not complete.
```
### Upgrade existing

```text
I downloaded an updated skill package from Yavira. Read SKILL.md from the extracted folder, compare it with my current installation, and upgrade it while preserving any custom configuration unless the package docs explicitly say otherwise. Then review README.md for any prerequisites, environment setup, or post-install checks. Summarize what changed and any follow-up checks I should run.
```
## Machine-readable fields
```json
{
  "schemaVersion": "1.0",
  "item": {
    "slug": "sona-security-audit",
    "name": "Security Audit (Sona)",
    "source": "tencent",
    "type": "skill",
    "category": "安全合规",
    "sourceUrl": "https://clawhub.ai/virtaava/sona-security-audit",
    "canonicalUrl": "https://clawhub.ai/virtaava/sona-security-audit",
    "targetPlatform": "OpenClaw"
  },
  "install": {
    "downloadUrl": "/downloads/sona-security-audit",
    "sourceDownloadUrl": "https://wry-manatee-359.convex.site/api/v1/download?slug=sona-security-audit",
    "sourcePlatform": "tencent",
    "targetPlatform": "OpenClaw",
    "packageFormat": "ZIP package",
    "primaryDoc": "SKILL.md",
    "includedAssets": [
      "CHANGELOG.md",
      "README.md",
      "SKILL.md",
      "docs/OPENCLAW_SKILL_MANIFEST_SCHEMA.md",
      "docs/README_ZERO_TRUST_INSTALL.md",
      "openclaw-skill.json"
    ],
    "downloadMode": "redirect",
    "sourceHealth": {
      "source": "tencent",
      "slug": "sona-security-audit",
      "status": "healthy",
      "reason": "direct_download_ok",
      "recommendedAction": "download",
      "checkedAt": "2026-04-29T14:06:02.598Z",
      "expiresAt": "2026-05-06T14:06:02.598Z",
      "httpStatus": 200,
      "finalUrl": "https://wry-manatee-359.convex.site/api/v1/download?slug=sona-security-audit",
      "contentType": "application/zip",
      "probeMethod": "head",
      "details": {
        "probeUrl": "https://wry-manatee-359.convex.site/api/v1/download?slug=sona-security-audit",
        "contentDisposition": "attachment; filename=\"sona-security-audit-0.1.3.zip\"",
        "redirectLocation": null,
        "bodySnippet": null,
        "slug": "sona-security-audit"
      },
      "scope": "item",
      "summary": "Item download looks usable.",
      "detail": "Yavira can redirect you to the upstream package for this item.",
      "primaryActionLabel": "Download for OpenClaw",
      "primaryActionHref": "/downloads/sona-security-audit"
    },
    "validation": {
      "installChecklist": [
        "Use the Yavira download entry.",
        "Review SKILL.md after the package is downloaded.",
        "Confirm the extracted package contains the expected setup assets."
      ],
      "postInstallChecks": [
        "Confirm the extracted package includes the expected docs or setup files.",
        "Validate the skill or prompts are available in your target agent workspace.",
        "Capture any manual follow-up steps the agent could not complete."
      ]
    }
  },
  "links": {
    "detailUrl": "https://openagent3.xyz/skills/sona-security-audit",
    "downloadUrl": "https://openagent3.xyz/downloads/sona-security-audit",
    "agentUrl": "https://openagent3.xyz/skills/sona-security-audit/agent",
    "manifestUrl": "https://openagent3.xyz/skills/sona-security-audit/agent.json",
    "briefUrl": "https://openagent3.xyz/skills/sona-security-audit/agent.md"
  }
}
```
## Documentation

### security-audit

A hostile-by-design, fail-closed audit workflow for codebases and OpenClaw/ClawHub skills.

It does not try to answer “does this skill work?”.
It tries to answer: “can this skill betray the system?”

### What it checks (high level)

This skill’s scripts combine multiple layers:

Secrets / credential leakage: trufflehog
Static analysis: semgrep (auto rules)
Hostile repo audit (custom): prompt-injection signals, persistence mechanisms, suspicious artifacts, dependency hygiene

If any layer fails, the overall audit is FAIL.

### Run an audit (JSON)

From this skill folder (use bash so it works even if executable bits were not preserved by a zip download):

bash scripts/run_audit_json.sh <path>

Example:

bash scripts/run_audit_json.sh . > /tmp/audit.json
jq '.ok, .tools' /tmp/audit.json

### Security levels (user configurable)

Set the strictness level (default: standard):

OPENCLAW_AUDIT_LEVEL=standard bash scripts/run_audit_json.sh <path>
OPENCLAW_AUDIT_LEVEL=strict   bash scripts/run_audit_json.sh <path>
OPENCLAW_AUDIT_LEVEL=paranoid bash scripts/run_audit_json.sh <path>

standard: pragmatic strict defaults (lockfiles required; install hooks/persistence/prompt-injection signals fail)
strict: more patterns become hard FAIL (e.g. minified/obfuscation artifacts)
paranoid: no "best-effort" hashing failures; more fail-closed behavior

### Manifest requirement (for zero-trust install workflows)

For strict/quarantine workflows, require a machine-readable intent/permissions manifest at repo root:

openclaw-skill.json

If a repo/skill does not provide this manifest, the hostile audit should treat it as FAIL.

See: docs/OPENCLAW_SKILL_MANIFEST_SCHEMA.md.

### Optional: execution sandbox (Docker)

Docker is optional here. This skill can be used for static auditing without Docker.

If you want to execute any generated/untrusted code, run it in a separate sandbox workflow (recommended).

### Files

scripts/run_audit_json.sh — main JSON audit runner
scripts/hostile_audit.py — prompt-injection/persistence/dependency hygiene scanner
scripts/security_audit.sh — convenience wrapper (always returns JSON, never non-zero)
openclaw-skill.json — machine-readable intent/permissions manifest
## Trust
- Source: tencent
- Verification: Indexed source record
- Publisher: virtaava
- Version: 0.1.3
## Source health
- Status: healthy
- Item download looks usable.
- Yavira can redirect you to the upstream package for this item.
- Health scope: item
- Reason: direct_download_ok
- Checked at: 2026-04-29T14:06:02.598Z
- Expires at: 2026-05-06T14:06:02.598Z
- Recommended action: Download for OpenClaw
## Links
- [Detail page](https://openagent3.xyz/skills/sona-security-audit)
- [Send to Agent page](https://openagent3.xyz/skills/sona-security-audit/agent)
- [JSON manifest](https://openagent3.xyz/skills/sona-security-audit/agent.json)
- [Markdown brief](https://openagent3.xyz/skills/sona-security-audit/agent.md)
- [Download page](https://openagent3.xyz/downloads/sona-security-audit)