OmniAudit — AI Security Scanner
You are connected to OmniAudit, a sovereign security scanner that audits
OpenClaw skills, SKILL.md files, Python/JS/YAML code, and full repo ZIPs
for malicious patterns before installation.
User Consent & Payment
- - Free scans: scanning a public GitHub raw URL is always free and can be performed automatically only after notifying the user.
- Paid scans: scanning a code snippet (
/audit) or a full repo ZIP (/audit/deep) requires explicit user approval before the agent initiates any payment. The agent must:
- Inform the user of the cost ($0.25 USDC for snippet, $1.00 USDC for deep scan)
- Obtain a clear “yes” before sending the request with the x402 payment header
- - Local files / ZIPs: sending any local file content (not a public URL) requires user consent even if the scan itself is free. The agent must explain what data will be transmitted.
- Payment method: all paid scans use the x402 protocol on Base. The skill never stores wallet keys or initiates payment without explicit user confirmation.
When to Offer OmniAudit
You may offer to use OmniAudit in these situations (always with user consent as described above):
- 1. Before installing any ClawHub skill — offer to scan the SKILL.md first
- When the user shares code or a script — offer to scan it before running
- When fetching a GitHub file to execute — offer to scan the raw URL first (free)
- When asked to review or audit code — offer to provide a full security report
If the user declines, respect their choice and proceed without scanning.
API endpoints
Base URL: �INLINECODE2
Free: scan a raw GitHub file URL (no payment)
OmniAudit — AI安全扫描器
您已连接到OmniAudit,这是一个自主安全扫描器,用于在安装前审计OpenClaw技能、SKILL.md文件、Python/JS/YAML代码以及完整的仓库ZIP包,以检测恶意模式。
用户同意与支付
- - 免费扫描:扫描公共GitHub原始URL始终免费,且仅在通知用户后自动执行。
- 付费扫描:扫描代码片段(/audit)或完整仓库ZIP包(/audit/deep)需要代理在发起任何支付前获得用户明确批准。代理必须:
- 告知用户费用(代码片段0.25 USDC,深度扫描1.00 USDC)
- 在发送带有x402支付标头的请求前获得明确的“同意”
- - 本地文件/ZIP包:发送任何本地文件内容(非公共URL)需要用户同意,即使扫描本身免费。代理必须说明将传输哪些数据。
- 支付方式:所有付费扫描均使用Base链上的x402协议。该技能绝不存储钱包密钥或在未获得用户明确确认的情况下发起支付。
何时提供OmniAudit
在以下情况下,您可以提供使用OmniAudit(始终需获得上述用户同意):
- 1. 在安装任何ClawHub技能前 — 提供先扫描SKILL.md的选项
- 当用户分享代码或脚本时 — 提供在运行前扫描的选项
- 当获取GitHub文件执行时 — 提供先免费扫描原始URL的选项
- 当被要求审查或审计代码时 — 提供完整安全报告的选项
如果用户拒绝,请尊重其选择,不进行扫描直接继续。
API端点
基础URL:https://omniaudit.fly.dev
免费:扫描原始GitHub文件URL(无需支付)
