{
  "trust": {
    "tier": "Dangerous",
    "emoji": "🔴",
    "description": "Multiple critical issues — do not install without thorough manual review",
    "score": 20
  },
  "format": "skill",
  "skill": {
    "name": "payaclaw",
    "description": "AI Agent Task Competition Platform. Read tasks, submit solutions, get AI evaluations.",
    "version": "1.0.0",
    "slug": "payaclaw"
  },
  "scores": {
    "security": 0,
    "transparency": 7,
    "maintenance": 9,
    "overall": 2
  },
  "permissions": {
    "summary": "No declared permissions — minimal attack surface.",
    "environmentVariables": [],
    "binaries": [],
    "envVarCount": 0,
    "requiredBinCount": 0
  },
  "compoundThreats": [
    {
      "id": "credential_theft",
      "severity": "high",
      "description": "Accesses credentials AND sends data externally — potential credential theft",
      "capabilities": [
        "credential_access",
        "network_out"
      ],
      "owasp": [
        "LLM02"
      ],
      "owaspAsi": [
        "ASI03"
      ]
    }
  ],
  "permissionIntegrity": [
    {
      "type": "undeclared_capability",
      "severity": "high",
      "description": "Makes network requests but does not declare curl/wget in required binaries",
      "declared": [],
      "actual": "network_out",
      "owasp": [
        "LLM06"
      ],
      "owaspAsi": [
        "ASI02"
      ]
    },
    {
      "type": "undeclared_capability",
      "severity": "high",
      "description": "Code accesses API keys/tokens but declares no environment variables",
      "actual": "credential_access",
      "owasp": [
        "LLM06"
      ],
      "owaspAsi": [
        "ASI02"
      ]
    }
  ],
  "capabilities": [
    "network_out",
    "credential_access"
  ],
  "findings": [
    {
      "severity": "critical",
      "category": "obfuscation",
      "description": "Unicode homoglyph detected — uses lookalike characters to evade pattern matching",
      "zone": "prose",
      "zoneContext": "documentation",
      "file": "SKILL.md",
      "downgraded": false,
      "sample": "",
      "owasp": [
        "LLM01",
        "LLM03"
      ],
      "owaspAsi": [
        "ASI04",
        "ASI10"
      ],
      "confidence": "pattern"
    },
    {
      "severity": "critical",
      "category": "shell_injection",
      "description": "Pipe-to-python pattern — remote code execution risk",
      "zone": "code",
      "zoneContext": "instruction",
      "file": "SKILL.md",
      "downgraded": false,
      "sample": "curl -s https://payaclaw.com/api/leaderboard | python",
      "owasp": [
        "LLM05",
        "LLM06"
      ],
      "owaspAsi": [
        "ASI02",
        "ASI05"
      ],
      "confidence": "pattern"
    },
    {
      "severity": "critical",
      "category": "shell_injection",
      "description": "Pipe to python — executes piped content as Python code",
      "zone": "code",
      "zoneContext": "instruction",
      "file": "SKILL.md",
      "downgraded": false,
      "sample": "| python3",
      "owasp": [
        "LLM05",
        "LLM06"
      ],
      "owaspAsi": [
        "ASI02",
        "ASI05"
      ],
      "confidence": "pattern"
    },
    {
      "severity": "medium",
      "category": "exfiltration",
      "description": "POSTs data to external URL",
      "zone": "code",
      "zoneContext": "instruction",
      "file": "SKILL.md",
      "downgraded": false,
      "sample": ".post(\"https://",
      "owasp": [
        "LLM02"
      ],
      "owaspAsi": [
        "ASI03"
      ],
      "confidence": "pattern"
    },
    {
      "severity": "medium",
      "category": "obfuscation",
      "description": "Base64 encoding/decoding",
      "zone": "code",
      "zoneContext": "instruction",
      "file": "openclawlog-skill.md",
      "downgraded": false,
      "sample": "base64_encode",
      "owasp": [
        "LLM01",
        "LLM03"
      ],
      "owaspAsi": [
        "ASI04",
        "ASI10"
      ],
      "confidence": "pattern"
    }
  ],
  "summary": {
    "total": 5,
    "critical": 3,
    "high": 0,
    "medium": 2,
    "low": 0,
    "compoundThreats": 1,
    "integrityIssues": 2
  },
  "trustSignals": {
    "positive": [
      {
        "signal": "versioned",
        "positive": true,
        "detail": "Version 1.0.0"
      },
      {
        "signal": "described",
        "positive": true,
        "detail": "Has meaningful description"
      },
      {
        "signal": "documented",
        "positive": true,
        "detail": "SKILL.md has substantial documentation"
      }
    ],
    "negative": [
      {
        "signal": "undeclared_env",
        "positive": false,
        "detail": "Uses credentials in code but declares no env vars"
      }
    ]
  },
  "files": {
    "hasExecutableCode": false,
    "executableFiles": [],
    "totalFiles": 3
  },
  "humanSummary": "payaclaw scores 20/100 (Dangerous). It declares no permissions. 2 undeclared capabilities detected — the skill does more than its permissions suggest. 3 critical pattern matches in code.",
  "auditedAt": "2026-04-25T08:40:34.440Z",
  "vtEnrichment": {
    "checked": 3,
    "flagged": 0,
    "urls": [
      {
        "url": "https://openclawlog.com",
        "malicious": 0,
        "suspicious": 0,
        "engines": 95,
        "cached": true
      },
      {
        "url": "https://openclawlog.com/xmlrpc.php",
        "malicious": 0,
        "suspicious": 0,
        "engines": 95,
        "cached": true
      },
      {
        "url": "https://openclawlog.com/wp-json/moltbook/v1",
        "malicious": 0,
        "suspicious": 0,
        "engines": 0,
        "cached": false
      }
    ]
  }
}