← Back to Skills Marketplace

OpenScan

Name: OpenScan
Author: dev-null321

by dev-null321 · GitHub ↗ · v1.0.0

cross-platform ⚠ suspicious

1213

Downloads

Stars

Active Installs

Versions

Install in OpenClaw

/install openscan

Description

Scan binaries and scripts for malicious patterns before trusting them. Use when installing skills, evaluating unknown binaries, or auditing tool dependencies.

Usage Guidance

This skill appears to implement what it advertises (static scanning) and has no credential requests, but exercise caution before using it on untrusted inputs or integrating it automatically: 1) The code runs a shell command (codesign) with an interpolated file path via execSync — that can be abused if an attacker controls a filename. Prefer a patched version that uses child_process.execFile / spawn with an args array or properly escapes/sanitizes paths. 2) The scanner reads file contents and computes hashes; do not run it on directories containing secrets unless you trust its environment. 3) There's a small metadata inconsistency (homepage vs package repository); verify origin (author/repo) before trusting. Recommended actions: review/patch the codesign invocation, run the tool in an isolated environment (container/VM) until patched, or only scan files from trusted sources.

Capability Analysis

Type: OpenClaw Skill Name: openscan Version: 1.0.0 The OpenScan skill is a security tool designed to scan binaries and scripts for malicious patterns. Its code legitimately uses file system access (`fs`) to read files and directories for analysis, and `child_process.execSync` to run `codesign --verify` on macOS, which is a necessary function for its stated purpose of checking code signatures. The skill's documentation (SKILL.md, README.md) and code do not contain any prompt injection attempts against the AI agent, nor do they exhibit any malicious behaviors such as data exfiltration, unauthorized network communication, or persistence mechanisms. All identified high-risk capabilities are directly aligned with the skill's security scanning functionality.

Capability Assessment

✓ Purpose & Capability

Name, README, SKILL.md and implementation align: a Node.js-based static scanner for Mach-O/ELF/scripts. Declared platform/node constraints match code. No unrelated environment variables, binaries, or install steps are requested.

⚠ Instruction Scope

Runtime instructions and code stay within scanning/auditing scope (reading files, parsing binaries, computing hashes, pattern matching). However scanner.js uses child_process.execSync to run codesign via a constructed shell command: execSync(`codesign --verify --deep --strict "${filePath}" 2>&1`, ...). Because execSync is called with a shell string and an unescaped filePath is interpolated inside double quotes, a filename containing a double-quote or other shell metacharacters could terminate the quoted string and inject shell commands. This is a command-injection vulnerability when scanning attacker-controlled paths or untrusted skill folders. The scanner also reads entire directories/files (including contents that may include passwords or secrets), so while it doesn't exfiltrate by itself, scanned data could be sensitive and should be handled with caution.

✓ Install Mechanism

No install spec; code is bundled in the skill. No remote downloads or archive extraction. This is low risk from an install-mechanism perspective.

✓ Credentials

The skill requires no environment variables, credentials, or config paths. All filesystem access is for scanning; there are no network endpoints, API keys, or unrelated credentials requested.

✓ Persistence & Privilege

Skill is not always-enabled, does not request elevated platform privileges, and does not modify other skills or system agent configuration. Autonomous invocation is allowed (platform default) but not by itself problematic here.

How to Use

Make sure OpenClaw is installed (local or Docker)
Run the install command in chat: /install openscan
After installation, invoke the skill by name or use /openscan
Provide required inputs per the skill's parameter spec and get structured output

Version History

v1.0.0

Initial release - Mach-O/ELF parsing, pattern detection, entropy analysis

Metadata

Slug openscan

Version 1.0.0

License —

All-time Installs 2

Active Installs 2

Total Versions 1

Frequently Asked Questions

What is OpenScan?

Scan binaries and scripts for malicious patterns before trusting them. Use when installing skills, evaluating unknown binaries, or auditing tool dependencies. It is an AI Agent Skill for Claude Code / OpenClaw, with 1213 downloads so far.

How do I install OpenScan?

Run "/install openscan" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is OpenScan free?

Yes, OpenScan is completely free (open-source). You can download, install and use it at no cost.

Which platforms does OpenScan support?

OpenScan is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created OpenScan?

It is built and maintained by dev-null321 (@dev-null321); the current version is v1.0.0.

More Skills