← Back to Skills Marketplace
226
Downloads
0
Stars
0
Active Installs
3
Versions
Install in OpenClaw
/install preclick
Description
Companion skill for @cybrlab/preclick-openclaw. Requires PreClick plugin tools to assess URLs for threats and intent alignment before navigation.
Usage Guidance
This skill is consistent with being a helper that delegates URL checks to a PreClick plugin, but it contains no code itself — the plugin you install will perform the actual network calls and analysis. Before installing or using it: 1) Verify the provenance of @cybrlab/preclick-openclaw (source repo, release host, and maintainers); do not install plugins from unknown/untrusted sources. 2) Review what the plugin will send to external endpoints — avoid sending URLs that include session tokens, auth query parameters, or other sensitive data. 3) Check the plugin's required environment variables and permissions and ensure they are proportionate. 4) Test the plugin on non-sensitive, known-safe URLs first to observe behavior. 5) If you need higher assurance, request the plugin's code or a signed release and inspect its network endpoints and dependencies. If you cannot audit the plugin or trust its source, treat it as potentially privacy-impacting even though the companion skill itself is coherent.
Capability Analysis
Type: OpenClaw Skill
Name: preclick
Version: 1.2.2
The skill bundle provides instructions and metadata for a URL security verification tool called PreClick. It defines how an agent should use external tools (provided by the @cybrlab/preclick-openclaw plugin) to assess URLs for threats and intent alignment before navigation. The instructions in SKILL.md are consistent with its stated security purpose and do not contain any malicious directives, data exfiltration patterns, or obfuscated code.
Capability Assessment
Purpose & Capability
The skill is a thin, instruction-only companion that delegates URL scanning to a PreClick plugin and requires the plugin's config entry (plugins.entries.preclick-openclaw.enabled). That dependency is consistent with the stated purpose. However, the provided metadata lists no source or homepage for the plugin/skill bundle, making it impossible to audit the upstream code from this package alone — this reduces transparency and is worth noting.
Instruction Scope
SKILL.md only instructs the agent to call the plugin's URL scanning tools and to act on the returned agent_access_directive. It does not instruct reading unrelated files, environment variables, or system paths. It explicitly warns not to verify localhost/file:// addresses and instructs how to interpret results, which is appropriate for the stated goal.
Install Mechanism
The skill has no install spec and no code files (lowest on-disk risk). However, the SKILL.md tells users to install @cybrlab/preclick-openclaw via openclaw plugins install — that plugin will introduce code and network behavior. Because the plugin's source/homepage is not provided here, you cannot audit what the plugin will install or call; review the plugin before installing.
Credentials
This skill itself requests no credentials or env vars. That is proportionate for an instruction-only wrapper. Be aware the referenced plugin may require credentials, keys, or network access; those requirements are not visible in this skill and should be evaluated separately.
Persistence & Privilege
The skill is not marked always:true and is user-invocable; it does not request persistent system-wide privileges. Its one declared requirement is that the plugin be enabled in the gateway config, which is reasonable for a companion skill.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install preclick - After installation, invoke the skill by name or use
/preclick - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.2.2
- Clarified that the skill is free to use with no API key or sign-up required (up to 100 requests/day).
- No functional or technical changes; documentation only.
- Updated Quick Start section to reflect the new usage policy.
v1.2.0
- Adds documentation and instructions for new "compatibility async tools" (`url_scanner_async_scan*`) which enable non-blocking scans without requiring native MCP Tasks.
- Clarifies the distinction between compatibility async tools and OpenClaw task-method proxy tools.
- Updates scan timing information to state verifications typically take 70–80 seconds (was 30–90).
- Explains when to use each type of async tool for best compatibility.
- Minor improvements for precision and clarity throughout.
v1.0.0
- Initial release of the PreClick skill for intent-aware URL security verification.
- Provides tools to assess URLs for threats and intent alignment prior to navigation or sensitive actions.
- Supports both direct and asynchronous verification workflows.
- Integrates with @cybrlab/preclick-openclaw plugin; requires plugin enabled in environment.
- No API key needed for trial mode (up to 100 requests/day).
- Includes detailed result handling guidance and user messaging recommendations.
Metadata
Frequently Asked Questions
What is PreClick : URL Security Scanner?
Companion skill for @cybrlab/preclick-openclaw. Requires PreClick plugin tools to assess URLs for threats and intent alignment before navigation. It is an AI Agent Skill for Claude Code / OpenClaw, with 226 downloads so far.
How do I install PreClick : URL Security Scanner?
Run "/install preclick" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is PreClick : URL Security Scanner free?
Yes, PreClick : URL Security Scanner is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does PreClick : URL Security Scanner support?
PreClick : URL Security Scanner is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created PreClick : URL Security Scanner?
It is built and maintained by cplusdev (@cplusdev); the current version is v1.2.2.
More Skills