← Back to Skills Marketplace
skill-audit
by
ProduktEntdecker
· GitHub ↗
· v1.0.2
· MIT-0
132
Downloads
0
Stars
0
Active Installs
3
Versions
Install in OpenClaw
/install openclaw-skill-audit
Description
Security scanner for OpenClaw skills. Analyzes skill folders and .skill files for: prompt injection, data exfiltration, malicious scripts, suspicious network...
Usage Guidance
This skill appears to be a legitimate static scanner bundled with a Python script, but exercise caution before using it as an automated pre-install hook. Actions to take before installing/auto-running: (1) Manually inspect scripts/scan_skill.py for any code that makes network calls, forks processes, or executes scanned files — confirm it only reads files and writes local JSON. (2) Confirm the SKILL.md prompt-injection flag is harmless (e.g., example text) and not an attempt to influence other automated tools. (3) If you intend to allow automated deletion on 'critical' findings, verify the code constructs the deletion path safely and that you will be prompted for explicit confirmation; never allow blind rm -rf operations. (4) Prefer to run the scanner in an isolated environment (container or sandbox) the first time and cross-check results with an independent tool. (5) If provenance matters, verify the GitHub repository and publisher identity before trusting the skill widely.
Capability Analysis
Type: OpenClaw Skill
Name: openclaw-skill-audit
Version: 1.0.2
The skill is a legitimate security auditing tool designed to perform static analysis on other OpenClaw skill bundles. The Python script (scripts/scan_skill.py) implements a comprehensive scanner using regex and AST analysis to detect prompt injection, data exfiltration patterns, and dangerous code execution (e.g., eval, exec, subprocess). The instructions in SKILL.md are defensive, directing the AI agent to act as a security gatekeeper during the installation of new skills. No malicious intent, hidden exfiltration, or unauthorized access patterns were found.
Capability Assessment
Purpose & Capability
Name/description match the included files: SKILL.md documents a scanner and scripts/scan_skill.py implements static checks. No unrelated credentials, binaries, or install steps are requested — this aligns with a local static analysis tool.
Instruction Scope
Instructions are primarily scoped to scanning installed skill folders and optionally deleting a flagged skill. This is appropriate for a pre-install scanner, but the SKILL.md tells the agent to run 'rm -rf <skill-path>' on user confirmation — destructive operations are expected for removal, but they must be performed carefully (ensure path sanitization and explicit user consent). A prompt-injection signal ('ignore-previous-instructions') was flagged inside SKILL.md which could indicate attempted manipulation of an automated evaluation or is a false positive; this needs manual verification.
Install Mechanism
No install spec; this is instruction + bundled script only. No downloads or remote installers are invoked by the skill itself, which keeps install risk low.
Credentials
The skill requests no environment variables, no credentials, and no config paths. The bundled scanner looks for references to API keys and env vars in other skills, which is expected behavior for a scanner and does not mean the scanner itself needs those secrets.
Persistence & Privilege
always:false (default) and model invocation is allowed (default). The skill does not request permanent inclusion or system configuration changes. The ability to delete files is present in its recommended workflow, but that is not the same as requesting elevated, persistent privileges.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install openclaw-skill-audit - After installation, invoke the skill by name or use
/openclaw-skill-audit - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.2
Added GitHub repository link: https://github.com/ProduktEntdecker/skill-audit
v1.0.1
Clean publish: removed non-skill files (drafts, landing page) that incorrectly triggered content scanners.
v1.0.0
Initial release — security scanner for OpenClaw skills. Detects prompt injection, data exfiltration, dangerous code patterns, file system abuse, and secret access.
Metadata
Frequently Asked Questions
What is skill-audit?
Security scanner for OpenClaw skills. Analyzes skill folders and .skill files for: prompt injection, data exfiltration, malicious scripts, suspicious network... It is an AI Agent Skill for Claude Code / OpenClaw, with 132 downloads so far.
How do I install skill-audit?
Run "/install openclaw-skill-audit" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is skill-audit free?
Yes, skill-audit is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does skill-audit support?
skill-audit is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created skill-audit?
It is built and maintained by ProduktEntdecker (@produktentdecker); the current version is v1.0.2.
More Skills