← Back to Skills Marketplace
805
Downloads
0
Stars
5
Active Installs
2
Versions
Install in OpenClaw
/install skulk-skill-scanner
Description
Scan OpenClaw skill folders for security red flags before installing or publishing. Detects data exfiltration, credential theft, prompt injection, destructiv...
Usage Guidance
This scanner appears to be what it claims: a static pattern-based skill scanner. Before trusting its results, run it in a sandbox or on a copy of the skill directory (not on system roots), and: (1) run it with --include-self to self-audit the scanner; (2) manually review any FAIL/WARN findings (static checks produce false positives and false negatives); (3) inspect and if needed customize SAFE_DOMAINS to match your environment; (4) remember it is static-only — it cannot detect runtime-generated exfiltration or sophisticated obfuscation, so follow up with manual review and, for high-risk skills, runtime monitoring in an isolated environment prior to granting sensitive credentials or deployment.
Capability Analysis
Type: OpenClaw Skill
Name: skulk-skill-scanner
Version: 1.0.1
The 'skulk-skill-scanner' skill is a static analysis tool designed to identify security risks in other OpenClaw skills. Its core logic in `scripts/scanner.js` reads file contents and matches them against a comprehensive set of patterns for data exfiltration, credential access, prompt injection, destructive commands, and other malicious indicators. The scanner itself does not perform any high-risk actions like network requests, arbitrary file system writes, command execution, or attempts to manipulate the agent via prompt injection. Its behavior is entirely consistent with its stated purpose as a security auditing tool.
Capability Assessment
Purpose & Capability
Name, description, SKILL.md usage, and the included scripts/scanner.js are consistent: the tool is a static analyzer for skill folders and does only file-reading and pattern-matching. It does not request unrelated credentials, binaries, or system privileges.
Instruction Scope
SKILL.md limits runtime actions to running node scripts/scanner.js against a skill folder and describes the scanner's detection categories. This stays within the stated purpose. One design note: the scanner defaults to ignoring its own scripts (shouldIgnore excludes scripts/scanner.js unless --include-self is used), which reduces self-noise but can hide issues in the scanner itself unless the user intentionally self-scans.
Install Mechanism
There is no install spec and no downloads; the skill is instruction-only with a bundled script. Nothing writes new binaries or pulls external code during install — lowest-risk install model.
Credentials
The skill requires no environment variables or external credentials. The scanner looks for environment-variable usage patterns in target skills (e.g., process.env) but does not itself read the host environment. The hardcoded SAFE_DOMAINS allowlist is a policy choice — it can cause false negatives for otherwise benign domains or false negatives for suspicious domains if the list is overly permissive; changing it requires editing the script.
Persistence & Privilege
The skill does not request persistent presence (always:false) and does not modify other skills or agent configuration. It runs when invoked by the user and has no autonomous background behavior.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install skulk-skill-scanner - After installation, invoke the skill by name or use
/skulk-skill-scanner - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.1
Fix self-scan false positives; tighten env/network matching; add --summary/--ignore/--include-self; align skill name with slug.
v1.0.0
Initial release — static analysis security scanner for OpenClaw skills. Detects exfiltration, credential theft, prompt injection, destructive commands, obfuscation, and supply chain risks. Smart domain allowlist to reduce false positives.
Metadata
Frequently Asked Questions
What is Skulk Skill Scanner?
Scan OpenClaw skill folders for security red flags before installing or publishing. Detects data exfiltration, credential theft, prompt injection, destructiv... It is an AI Agent Skill for Claude Code / OpenClaw, with 805 downloads so far.
How do I install Skulk Skill Scanner?
Run "/install skulk-skill-scanner" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Skulk Skill Scanner free?
Yes, Skulk Skill Scanner is completely free (open-source). You can download, install and use it at no cost.
Which platforms does Skulk Skill Scanner support?
Skulk Skill Scanner is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Skulk Skill Scanner?
It is built and maintained by Ada Vale (@adainthelab); the current version is v1.0.1.
More Skills