🧪 Skills

Skill Security Scanner

Security audit tool for OpenClaw skills. Scans for credential harvesting, code injection, network exfiltration, obfuscation. ALWAYS run before installing any...

v1.0.1
❤️ 2
⬇️ 478
👁 1
Save📁 Collect
Share

Description

name: skill-security description: > Security audit tool for OpenClaw skills. Scans for credential harvesting, code injection, network exfiltration, obfuscation. ALWAYS run before installing any new skill from external sources. Triggers on: new skill installation, skill audit, security scan, skill review, before loading external skill.

Skill Security Scanner

Security audit tool for OpenClaw skills. Run before installing any new skill.

Quick Audit

# Audit a skill directory
~/workspace/skills/skill-security/audit.sh /path/to/skill

# Audit all installed skills
~/workspace/skills/skill-security/audit-all.sh

What It Checks

Check Risk Level Pattern
Network Exfiltration 🚨 HIGH requests., urllib, http.client, socket., fetch(, axios
Credential Harvesting 🚨 HIGH .ssh/, .aws/, pass , keyring, credential, secret, token file reads
Code Injection 🚨 CRITICAL exec(, eval(, compile(, Function(, __import__
Obfuscation ⚠️ MEDIUM base64.decode, atob, encoded payloads
Env Dumping ⚠️ MEDIUM os.environ, process.env, getenv bulk access
Subprocess Abuse ⚠️ MEDIUM subprocess.run, os.system, child_process with credentials

Severity Levels

  • CRITICAL (🚨): Block installation, report to owner
  • HIGH (🔴): Requires manual review before use
  • MEDIUM (🟡): Note but allow if from trusted source
  • LOW (🟢): Informational only

Safe Skill Checklist

Before using any skill:

  1. ✅ Is it from a trusted source? (official OpenClaw, known publisher)
  2. ✅ Is the code readable (not obfuscated)?
  3. ✅ Does it document why it needs network/credential access?
  4. ✅ Does it scope file access to its own directory?
  5. ✅ Has it been audited by the community?

Integration with AGENTS.md

Add this to your workflow:

## Skill Installation Protocol

Before loading any new skill:
1. Run `~/workspace/skills/skill-security/audit.sh <skill-path>`
2. If CRITICAL/HIGH findings → STOP, alert the user
3. If MEDIUM findings → Review manually, proceed if justified
4. If CLEAN → Safe to use

Automatic Protection

The scanner creates a blocklist at ./blocklist.txt. Skills with CRITICAL findings are automatically added.

Manual Override

If a skill is flagged but you've verified it's safe:

echo "skill-name:verified:YYYY-MM-DD:reason" >> allowlist.txt

Premium Skills

Like this? Check out our premium skills at skillpacks.dev:

  • 🛡️ Security Suite — Full PII scanning, secrets detection, prompt injection defense — $9.90
  • 🧠 Structured Memory — Three-tier memory replacing flat MEMORY.md — $9.90
  • 📋 Planning & Execution — Systematic task plans with batch execution — $9.90
  • 💎 Bundle — all 3 for $24.90

Reviews (0)

Sign in to write a review.

No reviews yet. Be the first to review!

Comments (0)

Sign in to join the discussion.

No comments yet. Be the first to share your thoughts!

Compatible Platforms

Links

📂 Source Code

Pricing

Free

Related Configs

🧪 Skill

self-improving-agent

Free

Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...

❤️ 2.0k ⬇️ 218k
🧪 Skill

Self Improving Agent

Free

Captures learnings, errors, and corrections to enable continuous improvement. And also 50+ models for image generation, video generation, text-to-speech, spe...

❤️ 2.0k ⬇️ 206k
🧪 Skill

Find Skills

Free

Search, discover, and install skills from the open agent skills ecosystem to extend agent capabilities for specific tasks or domains.

❤️ 814 ⬇️ 199k
🧪 Skill

Summarize

Free

--- name: summarize description: Summarize URLs or files with the summarize CLI (web, PDFs, images, audio, YouTube). homepage: https://summarize.sh metadata: {"clawdbot":{"emoji":"🧾","requires":{"b

❤️ 609 ⬇️ 160k