← Back to Skills Marketplace
spbavarva

OpenClaw Policy Check

by spbavarva · GitHub ↗ · v1.0.0
cross-platform ✓ Security Clean
1006
Downloads
0
Stars
4
Active Installs
1
Versions
Install in OpenClaw
/install openclaw-policy-check
Description
Scan repositories for risky security patterns before execution. Use when users ask for a quick preflight security check, policy enforcement scan, suspicious code triage, or detection of unsafe commands, secret leakage, and dangerous shell behavior.
Usage Guidance
This skill is coherent: it runs a local regex-based scan and prints findings. Before installing or running it, consider: (1) it reads repository files (including any secrets present) and will print snippets to stdout — run it on sensitive repos in a secure or isolated environment if you are worried about logs or agent transcripts; (2) the scanner is rule-based and may produce false positives/negatives—review the rules if you need tuned behavior; (3) because it prints detected snippets, do not forward its raw output to untrusted destinations; and (4) if you want to be extra cautious, inspect scripts/policy_check.py yourself (it is short and contains no network or write-side effects).
Capability Analysis
Type: OpenClaw Skill Name: openclaw-policy-check Version: 1.0.0 The OpenClaw Policy Check skill is designed as a security scanner to detect risky patterns in code and scripts. The `scripts/policy_check.py` script uses regular expressions to identify common vulnerabilities and potentially malicious constructs (e.g., `curl|sh`, `rm -rf /`, `shell=True` in Python, hardcoded secrets, exfiltration endpoints). The script itself does not perform any malicious actions like data exfiltration, unauthorized execution, or persistence. It only reads specified files and reports findings. The `SKILL.md` instructions guide the AI agent to run the scan and report results, without any evidence of prompt injection attempting to subvert the agent's intended behavior for harmful purposes. All identified high-risk patterns are for detection, not execution by the skill itself.
Capability Assessment
Purpose & Capability
Name/description (preflight policy scan) match the actual files and behavior: a Python script that walks a repo and applies regex-based rules. No unrelated credentials, tools, or capabilities are requested.
Instruction Scope
SKILL.md instructs the agent to run the included scanner against a target path. The script only reads files under the target (skips large files and common ignore dirs) and reports matches; it does not read unrelated system state or other config paths.
Install Mechanism
Instruction-only skill with a bundled script and no install spec. Nothing is downloaded or written to disk beyond normal execution of the included script.
Credentials
No environment variables, credentials, or config paths are requested. The script operates on user-supplied target_path only.
Persistence & Privilege
No forced persistence (always=false). agents/openai.yaml allows implicit invocation (normal for skills), but the skill does not modify other skills or system settings.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install openclaw-policy-check
  3. After installation, invoke the skill by name or use /openclaw-policy-check
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release of openclaw-policy-check. - Scans repositories for risky security patterns prior to execution. - Detects unsafe commands, secret leakage, and dangerous shell behavior. - Supports severity thresholds and JSON output for flexible integration. - Provides clear summaries with findings, severity breakdown, and actionable remediation guidance.
Metadata
Slug openclaw-policy-check
Version 1.0.0
License
All-time Installs 4
Active Installs 4
Total Versions 1
Frequently Asked Questions

What is OpenClaw Policy Check?

Scan repositories for risky security patterns before execution. Use when users ask for a quick preflight security check, policy enforcement scan, suspicious code triage, or detection of unsafe commands, secret leakage, and dangerous shell behavior. It is an AI Agent Skill for Claude Code / OpenClaw, with 1006 downloads so far.

How do I install OpenClaw Policy Check?

Run "/install openclaw-policy-check" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is OpenClaw Policy Check free?

Yes, OpenClaw Policy Check is completely free (open-source). You can download, install and use it at no cost.

Which platforms does OpenClaw Policy Check support?

OpenClaw Policy Check is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created OpenClaw Policy Check?

It is built and maintained by spbavarva (@spbavarva); the current version is v1.0.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments