{
  "trust": {
    "tier": "Dangerous",
    "emoji": "🔴",
    "description": "Multiple critical issues — do not install without thorough manual review",
    "score": 20
  },
  "format": "skill",
  "skill": {
    "name": "failover-gateway",
    "description": "Set up an active-passive failover gateway for OpenClaw. Deploy a standby node that auto-promotes when your primary goes down and auto-demotes when it recovers. Includes health monitor script, systemd services, channel splitting strategy, and step-by-step deployment guide. Use when you need high availability, disaster recovery, or redundancy for your OpenClaw instance.",
    "version": "1.0.0",
    "slug": "failover-gateway-pub"
  },
  "scores": {
    "security": 0,
    "transparency": 8,
    "maintenance": 9,
    "overall": 2
  },
  "permissions": {
    "summary": "No declared permissions — minimal attack surface.",
    "environmentVariables": [],
    "binaries": [],
    "envVarCount": 0,
    "requiredBinCount": 0
  },
  "compoundThreats": [],
  "permissionIntegrity": [
    {
      "type": "undeclared_capability",
      "severity": "high",
      "description": "Makes network requests but does not declare curl/wget in required binaries",
      "declared": [],
      "actual": "network_out",
      "owasp": [
        "LLM06"
      ],
      "owaspAsi": [
        "ASI02"
      ]
    },
    {
      "type": "opaque_dependency",
      "severity": "medium",
      "description": "Installs packages at runtime — transitive dependencies are not auditable",
      "actual": "package_install",
      "owasp": [
        "LLM03"
      ],
      "owaspAsi": [
        "ASI04"
      ]
    }
  ],
  "capabilities": [
    "network_out",
    "package_install"
  ],
  "findings": [
    {
      "severity": "critical",
      "category": "shell_injection",
      "description": "Pipe-to-shell pattern (curl | sh) — supply chain attack vector",
      "zone": "code",
      "zoneContext": "instruction",
      "file": "SKILL.md",
      "downgraded": false,
      "sample": "curl -fsSL https://tailscale.com/install.sh | sh",
      "owasp": [
        "LLM05",
        "LLM06"
      ],
      "owaspAsi": [
        "ASI02",
        "ASI05"
      ],
      "confidence": "pattern"
    },
    {
      "severity": "high",
      "category": "shell_injection",
      "description": "References sudo — requests elevated privileges",
      "zone": "code",
      "zoneContext": "instruction",
      "file": "SKILL.md",
      "downgraded": false,
      "sample": "sudo",
      "owasp": [
        "LLM05",
        "LLM06"
      ],
      "owaspAsi": [
        "ASI02",
        "ASI05"
      ],
      "confidence": "pattern"
    },
    {
      "severity": "critical",
      "category": "shell_injection",
      "description": "Pipe to sh — executes piped content as shell commands",
      "zone": "code",
      "zoneContext": "instruction",
      "file": "SKILL.md",
      "downgraded": false,
      "sample": "| sh",
      "owasp": [
        "LLM05",
        "LLM06"
      ],
      "owaspAsi": [
        "ASI02",
        "ASI05"
      ],
      "confidence": "pattern"
    },
    {
      "severity": "critical",
      "category": "shell_injection",
      "description": "Pipe to bash — executes piped content as shell commands",
      "zone": "code",
      "zoneContext": "instruction",
      "file": "SKILL.md",
      "downgraded": false,
      "sample": "| bash",
      "owasp": [
        "LLM05",
        "LLM06"
      ],
      "owaspAsi": [
        "ASI02",
        "ASI05"
      ],
      "confidence": "pattern"
    }
  ],
  "summary": {
    "total": 4,
    "critical": 3,
    "high": 1,
    "medium": 0,
    "low": 0,
    "compoundThreats": 0,
    "integrityIssues": 2
  },
  "trustSignals": {
    "positive": [
      {
        "signal": "versioned",
        "positive": true,
        "detail": "Version 1.0.0"
      },
      {
        "signal": "described",
        "positive": true,
        "detail": "Has meaningful description"
      },
      {
        "signal": "minimal_env",
        "positive": true,
        "detail": "No environment variables required"
      },
      {
        "signal": "documented",
        "positive": true,
        "detail": "SKILL.md has substantial documentation"
      }
    ],
    "negative": [
      {
        "signal": "opaque_deps",
        "positive": false,
        "detail": "Installs packages at runtime — transitive dependencies are unauditable"
      }
    ]
  },
  "files": {
    "hasExecutableCode": true,
    "executableFiles": [
      "scripts/health-monitor.sh"
    ],
    "totalFiles": 3
  },
  "humanSummary": "failover-gateway scores 20/100 (Dangerous). It declares no permissions. 1 undeclared capability detected — the skill does more than its permissions suggest. 3 critical pattern matches in code.",
  "auditedAt": "2026-04-23T03:42:48.939Z",
  "vtEnrichment": {
    "checked": 3,
    "flagged": 0,
    "urls": [
      {
        "url": "http://${PRIMARY_IP}:${PRIMARY_PORT}/health",
        "malicious": 0,
        "suspicious": 0,
        "engines": 0,
        "cached": false
      },
      {
        "url": "https://tailscale.com",
        "malicious": 1,
        "suspicious": 0,
        "engines": 91,
        "cached": true
      },
      {
        "url": "https://tailscale.com/install.sh",
        "malicious": 1,
        "suspicious": 0,
        "engines": 91,
        "cached": true
      }
    ]
  }
}