← Back to Skills Marketplace
mirni

Skillscan

by mirni · GitHub ↗ · v1.0.0 · MIT-0
cross-platform ✓ Security Clean
113
Downloads
0
Stars
0
Active Installs
3
Versions
Install in OpenClaw
/install gh-skillscan
Description
Scan an OpenClaw SKILL.md file for security threats before installing it. Posts the raw SKILL.md content and gets back a safety score (0-1), detected threat...
README (SKILL.md)

SkillScan

Check if a SKILL.md is safe before you install it.

Start the server

uvicorn skillscan.app:app --port 8001

Scan a SKILL.md file

curl -s -X POST http://localhost:8001/v1/scan-skill \
  -H "Content-Type: application/json" \
  -d "{\"skill_content\": $(cat path/to/SKILL.md | jq -Rs)}" | jq

Returns safety_score (1.0 = safe, 0.0 = dangerous), findings (list of threat names), verdict (SAFE/CAUTION/DANGEROUS), and skill_name.

What it detects

  • credential_harvesting — accessing $API_KEY, $TOKEN, $SECRET, $PASSWORD
  • data_exfiltration — curl/wget sending data to external URLs
  • obfuscated_command — base64 decode piped to bash, eval, exec
  • permission_overreach — accessing /etc/shadow, .ssh/, reverse shells

Example: scan before install

clawdhub inspect some-skill > /tmp/skill.md
VERDICT=$(curl -s -X POST http://localhost:8001/v1/scan-skill \
  -H "Content-Type: application/json" \
  -d "{\"skill_content\": $(cat /tmp/skill.md | jq -Rs)}" | jq -r '.verdict')
echo "Verdict: $VERDICT"
Usage Guidance
This skill appears internally consistent and appropriate for scanning SKILL.md files. Before installing: (1) verify that the platform will install the listed pip packages from trusted sources (PyPI) and not a mirror you don't control, (2) run the uvicorn server locally and avoid exposing its port to the public (it accepts raw SKILL.md content, which could include sensitive data), and (3) treat its results as heuristic — the scanner uses regex rules that can both false-flag benign content and miss cleverly obfuscated threats, so manual review of any suspicious findings is still recommended.
Capability Analysis
Type: OpenClaw Skill Name: gh-skillscan Version: 1.0.0 The gh-skillscan bundle is a security utility designed to perform static analysis on OpenClaw SKILL.md files via a local FastAPI server. The code in skillscan/detectors.py uses regex patterns to identify common indicators of malicious behavior, such as credential harvesting, data exfiltration, and obfuscated commands. The implementation is transparent, lacks any hidden execution or exfiltration logic, and aligns perfectly with its stated purpose of providing a safety verdict for other skills.
Capability Tags
requires-wallet
Capability Assessment
Purpose & Capability
Name/description (SKILL.md scanner) align with required binary (python), listed pip packages (fastapi, uvicorn, pydantic), and included code files which implement a local FastAPI scanner. No unrelated credentials, config paths, or unrelated binaries are requested.
Instruction Scope
SKILL.md instructs running a local uvicorn server and POSTing raw SKILL.md content to it — this is appropriate for a scanner, but the endpoint accepts raw skill content (which might itself contain secrets). The detector logic is rule-based (regexes) and may produce false positives (e.g., harmless docs mentioning API_KEY) or false negatives for novel obfuscation; the SKILL.md does not request the agent to read arbitrary system files or other unrelated environment variables.
Install Mechanism
Install spec is a uv-style pip install of known Python packages (fastapi, uvicorn, pydantic) — this is proportionate. The registry metadata shows an 'uv' install entry which appears to map to pip; the spec is not a remote arbitrary binary download. Confirm that the platform's install runner will install these packages from a trusted registry (PyPI).
Credentials
No environment variables, secrets, or config paths are requested. The code does not reference external credentials. This is proportionate for a local scanning utility.
Persistence & Privilege
always is false and the skill does not request elevated/system-wide privileges or alter other skills' configs. It runs as a normal local service (uvicorn) and does not claim permanent elevated presence.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install gh-skillscan
  3. After installation, invoke the skill by name or use /gh-skillscan
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
- Updated the description for clarity and conciseness, emphasizing safety verdict and supported threat types. - Simplified instructions: combined installation and usage sections; added concise curl and jq usage for scanning. - Listed exact threat types detected with clear pattern names. - Added server startup and real-world example for scanning before install. - Enhanced metadata details and removed version number from YAML frontmatter.
v0.1.1
- Renamed skill to gh-skillscan and updated version to 0.1.1. - Added detailed installation instructions, including required dependencies (fastapi, uvicorn, pydantic). - Updated usage section for clearer setup and API call guidance. - Introduced OpenClaw metadata for runtime and install requirements. - Reorganized and clarified documentation for easier onboarding.
v0.1.0
Initial release of SkillScan: a tool to assess security risks in OpenClaw SKILL.md files. - Scans SKILL.md file content for risky patterns before installation. - Checks for credential exposure, outbound data transfer, obfuscated commands, and elevated permission use. - Provides a safety score, list of findings, and an overall verdict. - Supports both hosted API and standalone operation.
Metadata
Slug gh-skillscan
Version 1.0.0
License MIT-0
All-time Installs 0
Active Installs 0
Total Versions 3
Frequently Asked Questions

What is Skillscan?

Scan an OpenClaw SKILL.md file for security threats before installing it. Posts the raw SKILL.md content and gets back a safety score (0-1), detected threat... It is an AI Agent Skill for Claude Code / OpenClaw, with 113 downloads so far.

How do I install Skillscan?

Run "/install gh-skillscan" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Skillscan free?

Yes, Skillscan is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does Skillscan support?

Skillscan is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Skillscan?

It is built and maintained by mirni (@mirni); the current version is v1.0.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments