skill-scanner
Security-first skill vetting for AI agents on OpenClaw and Claude Code. Scans any SKILL.md for malicious patterns, permission abuse, prompt injection, and ClawHavoc attack vectors — then gives a clear Safe / Caution / Danger verdict. Use this skill whenever the user wants to install, review, vet, or audit a skill from ClawHub, GitHub, or any other source; asks "is this skill safe?", "should I install this?", "scan/check/vet this skill", "review skill before installing"; shares a SKILL.md file or skill URL; or pastes skill content for evaluation. Proactively offer to scan any skill the user mentions installing, even if they don't explicitly ask for a security check.
Installation and usage
Security-first skill vetting for AI agents on OpenClaw and Claude Code. Scans any SKILL.md for malicious patterns, permission abuse, prompt injection, and ClawHavoc attack vectors — then gives a clear Safe / Caution / Danger verdict. Use this skill whenever the user wants to install, review, vet, or audit a skill from ClawHub, GitHub, or any other source; asks "is this skill safe?", "should I install this?", "scan/check/vet this skill", "review skill before installing"; shares a SKILL.md file or skill URL; or pastes skill content for evaluation. Proactively offer to scan any skill the user mentions installing, even if they don't explicitly ask for a security check.
После установки вы можете использовать этот skill, выполнив следующую команду в терминале:
skills use skill-scanner