← Back to Skills Marketplace
rustyorb

RedPincer — AI Red Team Suite

by rustyorb · GitHub ↗ · v1.0.0
cross-platform ⚠ suspicious
620
Downloads
0
Stars
3
Active Installs
1
Versions
Install in OpenClaw
/install redpincer
Description
AI/LLM red team testing skill. Point at any LLM API endpoint and run automated security assessments. 160+ attack payloads across prompt injection, jailbreak,...
Usage Guidance
This skill appears to be a red-team tool but contains several red flags you should address before running it: 1) Verify provenance — the registry entry lacks a homepage and source is 'unknown'; inspect the GitHub repo (https://github.com/rustyorb/pincer) yourself. 2) Do not run npm ci / npm run dev until you review package.json and all scripts and dependencies; run in an isolated environment (container or VM) and as a non-root user. 3) The SKILL.md uses git clone but metadata does not list git as required — ensure your environment matches actual instructions or adjust the instructions. 4) The doc claims 'all client-side' but instructs starting a Next.js server (npx next start -H 0.0.0.0) — confirm whether API keys are ever proxied server-side and avoid binding to 0.0.0.0 on untrusted networks; prefer localhost-only or a browser-only build. 5) If you must test, run initial scans (npm audit, static analysis) and host the app in a sandbox before supplying any real API keys; consider using throwaway keys or scope-limited accounts. 6) Ensure you have explicit authorization to test any target systems; this tool is for authorized testing only. If you want a safer evaluation, provide the repository URL and package.json so the code can be reviewed for network calls, telemetry, and server-side behavior.
Capability Analysis
Type: OpenClaw Skill Name: redpincer Version: 1.0.0 The skill bundle is classified as suspicious because it instructs the OpenClaw agent to install a 'red team testing skill' (RedPincer) via `git clone` and `npm ci` commands specified in `SKILL.md`. While the `SKILL.md` explicitly states the tool is 'For authorized security testing and research only' and claims API keys stay local, the installed tool's capabilities include 'prompt injection, jailbreak, data extraction, and guardrail bypass' against target LLMs. The installation process itself involves shell execution, network access (to GitHub and npm registry), and file system modifications, which are risky capabilities. Although there's no direct evidence of malicious intent from the skill bundle's instructions (e.g., exfiltrating user data or prompt injection against the OpenClaw agent), the installation of a powerful red-teaming tool with such capabilities warrants a 'suspicious' classification due to the inherent potential for misuse and the broad system permissions required for its setup.
Capability Assessment
Purpose & Capability
The declared purpose (red-team testing of LLM endpoints) matches the instructions to provide an endpoint and API key and run attacks. However, SKILL.md instructs cloning and running a GitHub project (npm ci, npm run dev) while metadata only requires node and npm — it omits git even though git clone is used. The companion autonomous tool (RedClaw) is mentioned, which expands scope and should be explicit in metadata if intended.
Instruction Scope
The SKILL.md tells users/agents to clone an external repo and run npm scripts that will execute unreviewed code. It asks for LLM endpoints and API keys (expected) but also instructs running a Next.js server with -H 0.0.0.0, which can expose a web UI and potentially keys to the network. The file claims 'All client-side — your API keys stay local' yet instructs starting server components — this is a contradictory instruction that affects where credentials live and how requests may be proxied.
Install Mechanism
No formal install spec is provided; instead SKILL.md recommends cloning https://github.com/rustyorb/pincer and running npm ci / npm run dev. That is effectively an install-from-GitHub workflow without integrity checks. Cloning and running unvetted third-party code presents a high install risk (arbitrary code executed via npm scripts).
Credentials
The skill declares no required env vars, which is consistent with an interactive UI, but it expects users to supply LLM endpoints and API keys at runtime. The SKILL.md claims keys remain local, yet running a server on 0.0.0.0 or using server-side Next.js could cause keys to be used or proxied server-side. The skill does not explain where keys are stored or whether they are ever transmitted to third parties; that lack of clarity is disproportionate to the declared 'client-side' guarantee.
Persistence & Privilege
always is false and the skill does not request persistent system-level privileges. Autonomous invocation is allowed (default), which is normal; however, the companion RedClaw autonomous agent mentioned in the docs indicates potential for automated campaigns if the user later installs/uses that tool — be aware of automated attack capability but this by itself is not an immediate privilege escalation.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install redpincer
  3. After installation, invoke the skill by name or use /redpincer
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release. 160+ attack payloads, 20 variant transforms, adaptive attack engine, heuristic analysis, vulnerability heatmaps, regression testing. For authorized security testing only.
Metadata
Slug redpincer
Version 1.0.0
License
All-time Installs 3
Active Installs 3
Total Versions 1
Frequently Asked Questions

What is RedPincer — AI Red Team Suite?

AI/LLM red team testing skill. Point at any LLM API endpoint and run automated security assessments. 160+ attack payloads across prompt injection, jailbreak,... It is an AI Agent Skill for Claude Code / OpenClaw, with 620 downloads so far.

How do I install RedPincer — AI Red Team Suite?

Run "/install redpincer" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is RedPincer — AI Red Team Suite free?

Yes, RedPincer — AI Red Team Suite is completely free (open-source). You can download, install and use it at no cost.

Which platforms does RedPincer — AI Red Team Suite support?

RedPincer — AI Red Team Suite is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created RedPincer — AI Red Team Suite?

It is built and maintained by rustyorb (@rustyorb); the current version is v1.0.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments