← Back to Skills Marketplace
yangyixxxx

skillguard-check

by Yangyi · GitHub ↗ · v1.0.0 · MIT-0
cross-platform ✓ Security Clean
41
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install skillguard-check
Description
Audit every locally-installed AI Skill against skill-guard's public security database (skillguard.vip). Use when (1) the user asks 'are my skills safe?' or '...
README (SKILL.md)

skillguard-check

Audit AI Skills installed on this machine against the public skill-guard security database at https://skillguard.vip. Returns a JSON report listing blocked and high-risk skills along with links to their public audit pages so the user can decide what to uninstall.

When to invoke

Trigger this skill any time the user expresses concern about installed-skill safety, or after the user installs a new skill. Concrete cues:

  • "are my skills safe?", "check my installed skills", "audit my skills"
  • "I just installed XYZ from ClawHub, is it ok?"
  • "any malicious skills on my machine?"
  • The user mentions a skill name and asks if it's trusted.
  • Periodic: when no audit has been run this session and the user is doing security-sensitive work (handling secrets, on a new machine, etc.).

How to invoke

Run the bundled script. It needs Python 3 (pre-installed on macOS / most Linux). No network access beyond https://skillguard.vip.

python3 scripts/check.py

The script outputs a single JSON object to stdout. Sample shape:

{
  "total": 12,
  "audited": 9,
  "unauditedCount": 3,
  "blocked": [
    {
      "slug": "openclaw-omni-expert",
      "path": "/Users/x/.claude/skills/openclaw-omni-expert",
      "score": 3,
      "riskLevel": "Critical",
      "findingsCount": 155,
      "auditUrl": "https://skillguard.vip/skills/clawhub/openclaw-omni-expert"
    }
  ],
  "highRisk": [
    {
      "slug": "some-skill",
      "score": 42,
      "riskLevel": "High",
      "auditUrl": "..."
    }
  ],
  "medium": [...],
  "safe": 5,
  "unaudited": [
    {"slug": "my-private-skill", "path": "...", "reason": "not in skill-guard database"}
  ],
  "errors": []
}

How to report back to the user

After parsing the JSON:

  1. If blocked is non-empty — open with ⚠️ \x3CN> blocked skill(s) found on this machine. Then for each entry, give:

    • the slug + install path,
    • a one-line risk summary (use riskLevel + findingsCount),
    • the auditUrl so they can see findings,
    • a recommendation to uninstall.

  2. If highRisk is non-empty (and no blocked) — open with Found \x3CN> high-risk skill(s). Same format but softer language: "review the audit page and consider whether you trust the publisher".

  3. If only medium/safe/unauditedNo blocked or high-risk skills detected. Mention the unaudited count so the user knows some skills couldn't be checked (private/local skills that haven't been uploaded to skill-guard's database).

  4. Always end with the auditUrl for each surfaced skill. Don't paraphrase the audit verdict — link to the canonical page so the user reads the real findings, not a summary.

What gets scanned

The script checks these install paths (in order):

Path Used by
~/.claude/skills/ Claude Code
~/.openclaw/skills/ OpenClaw
~/.local/share/claude-skills/ Linux convention
~/.skills/ Generic
~/Library/Application Support/Claude/skills/ Claude Desktop on macOS

Each immediate subdirectory is treated as one skill, named by the directory. The script then queries https://skillguard.vip/skills/clawhub/\x3Cslug>.json for the public audit verdict.

Skills that aren't in the public database (private skills, custom builds, unpublished bundles) are reported under unaudited — not flagged, but called out so the user knows they're un-audited.

Limitations

  • Only checks skills that match a slug in skill-guard's ClawHub-sourced database. Privately-developed skills won't have an audit. Users can run a fresh scan via https://skillguard.vip/ (paste the GitHub URL) or POST /v1/scan/upload with a zip.

  • Uses the most recent verdict in skill-guard's DB. If a skill was re-published on ClawHub after the last skill-guard scan, the verdict may be stale. The audit page shows lastScannedAt for transparency.

  • Slug-matching only. Two different skills with the same directory name (e.g. github) collide. The audit URL is the source of truth — if the displayed name doesn't match what the user installed, treat as unaudited.

Usage Guidance
This skill appears reasonable for checking installed skills against a public security database. Before installing, decide whether you are comfortable with a local script enumerating your skill directory names and sending those slugs to skillguard.vip; use a pinned or verified install source if installing from GitHub.
Capability Analysis
Type: OpenClaw Skill Name: skillguard-check Version: 1.0.0 The skill is a security auditing tool designed to check locally-installed AI skills against a public database at skillguard.vip. The Python script (scripts/check.py) discovers skill directory names in standard paths (e.g., ~/.claude/skills) and queries their status via HTTPS GET requests. The behavior is transparent, matches the documentation in SKILL.md and README.md, and does not access sensitive files, environment variables, or execute unauthorized commands.
Capability Assessment
Purpose & Capability
The stated purpose is to audit locally installed AI skills, and the provided code matches that purpose by enumerating skill directories and querying public audit records. The notable privacy impact is that skill slugs are sent to an external service.
Instruction Scope
Invocation guidance includes user-requested checks, checks after installing new skills, and periodic checks during security-sensitive work. This is purpose-aligned, but it can lead to agent-initiated network lookups without a separate explicit prompt each time.
Install Mechanism
There is no install spec, and the reviewed bundle includes the script source. The README also documents user-directed git/curl installation from GitHub, which is common but relies on mutable remote source unless users pin or verify it.
Credentials
The script reads only immediate subdirectory names in common skill install locations and sends those names to the configured audit API. That is proportionate to the skill's purpose, but it still reveals a local skill inventory.
Persistence & Privilege
No persistence, credential access, file writes, destructive actions, or privilege escalation are shown in the provided artifacts.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install skillguard-check
  3. After installation, invoke the skill by name or use /skillguard-check
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release: discovers locally-installed skills and audits each against skillguard.vip's public security database. Surfaces blocked + high-risk hits with audit-page links.
Metadata
Slug skillguard-check
Version 1.0.0
License MIT-0
All-time Installs 0
Active Installs 0
Total Versions 1
Frequently Asked Questions

What is skillguard-check?

Audit every locally-installed AI Skill against skill-guard's public security database (skillguard.vip). Use when (1) the user asks 'are my skills safe?' or '... It is an AI Agent Skill for Claude Code / OpenClaw, with 41 downloads so far.

How do I install skillguard-check?

Run "/install skillguard-check" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is skillguard-check free?

Yes, skillguard-check is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does skillguard-check support?

skillguard-check is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created skillguard-check?

It is built and maintained by Yangyi (@yangyixxxx); the current version is v1.0.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments