← Back to Skills Marketplace
kenswj

Skill Guard 1.0.2

by kenswj · GitHub ↗ · v1.0.0 · MIT-0
cross-platform ⚠ suspicious
299
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install skill-guard-1-0-2
Description
Scan ClawHub skills for security vulnerabilities BEFORE installing. Use when installing new skills from ClawHub to detect prompt injections, malware payloads...
Usage Guidance
This skill appears to implement a reasonable pre-install scan workflow, but take these precautions before installing or running it: - Verify prerequisites: the SKILL.md and script require the 'clawhub' CLI and the 'uv/uvx' runner, but registry metadata does not list them; ensure you have and trust those binaries. - Be cautious about remote installers: the README suggests installing uv with a curl | sh from https://astral.sh and the script runs 'uvx mcp-scan@latest' which will download and execute remote code. Audit mcp-scan and the uv installer source and verify checksums or use a pinned, reviewed release instead of '@latest'. - Review the script: safe-install.sh is short and readable—inspect it locally (it stages to /tmp, runs the scanner, and moves files into your skills directory). Note it attempts to source "$HOME/.local/bin/env" (unusual) and allows skipping or bypassing the scan (--skip-scan and manual mv), so don't use those options unless you understand the risk. - Treat flagged patterns as warnings: the SKILL.md includes an example of a prompt-injection marker; that alone isn't proof of malicious behavior, but any skill that your scanner flags should be inspected manually. - If unsure, run the script in an isolated environment (VM/container) and manually verify the remote mcp-scan package and astral.sh installer before trusting it. If you want, I can: (a) point out exact lines in safe-install.sh that are worth auditing, (b) help verify the integrity/source of mcp-scan and the astral.sh installer, or (c) propose a safer variant that pins mcp-scan to a specific version and avoids curl | sh.
Capability Analysis
Type: OpenClaw Skill Name: skill-guard-1-0-2 Version: 1.0.0 The skill-guard bundle is a security utility designed to scan other OpenClaw skills for vulnerabilities before installation. It uses a bash script (scripts/safe-install.sh) to download skills to a staging directory via the clawhub CLI and then analyzes them using the legitimate mcp-scan tool via uvx. The logic is transparent, follows a 'stage-scan-install' workflow, and contains no evidence of data exfiltration, malicious execution, or hidden prompt injections.
Capability Assessment
Purpose & Capability
The skill's name/description (pre-install scanning) aligns with the included safe-install.sh which stages a ClawHub skill and runs a scanner before installing. However, registry metadata lists no required binaries/env vars while SKILL.md and the script require 'clawhub' and the 'uv/uvx' runner; that mismatch is an inconsistency and should be clarified.
Instruction Scope
Instructions and the script stay mostly within the stated purpose (download to /tmp, scan, move to skills dir). Concerns: the SKILL.md recommends installing uv via a curl | sh from https://astral.sh (a remote install script) and the script runs 'uvx mcp-scan@latest' which will fetch/execute remote code at runtime. The script also sources "$HOME/.local/bin/env" (odd path) and provides a --skip-scan option and explicit instructions to manually mv a staged (quarantined) skill into the final directory—both allow bypassing the scanner.
Install Mechanism
There is no formal install spec (instruction-only), but the runtime relies on uvx to run mcp-scan@latest and suggests bootstrapping uv with a curl installer. Running uvx/mcp-scan and executing a remote install script are moderate-to-high risk behaviors because they pull and execute remote code; the script itself does not download arbitrary payloads beyond using clawhub and uvx, but those tools will fetch remote content.
Credentials
The skill requests no credentials and only uses CLAWHUB_WORKDIR (optional) and HOME to determine paths — this is proportionate. However, registry metadata omits dependency declarations (clawhub and uv) that the SKILL.md and script require; that's an informational mismatch that could mislead users about prerequisites.
Persistence & Privilege
The skill does not request always:true or other elevated persistent privileges. It only writes installed skills into the user's skills directory (expected behavior). Autonomous invocation is allowed by default (platform standard) but not by itself a red flag here.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install skill-guard-1-0-2
  3. After installation, invoke the skill by name or use /skill-guard-1-0-2
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release: client-side security scanning for ClawHub skills before installation. - Scans skill packages for prompt injections, malware, hardcoded secrets, exfiltration URLs, and other AI-specific threats before installing. - Uses Invariant Labs/Snyk's mcp-scan for deep AI skill analysis. - Installs only if skill is clean; otherwise quarantines detected threats in a staging folder. - Provides clear CLI usage: secure install script, exit codes, and threat handling instructions. - Adds a strong comparison to existing solutions (VirusTotal, skillscanner) highlighting superior coverage for AI risks.
Metadata
Slug skill-guard-1-0-2
Version 1.0.0
License MIT-0
All-time Installs 0
Active Installs 0
Total Versions 1
Frequently Asked Questions

What is Skill Guard 1.0.2?

Scan ClawHub skills for security vulnerabilities BEFORE installing. Use when installing new skills from ClawHub to detect prompt injections, malware payloads... It is an AI Agent Skill for Claude Code / OpenClaw, with 299 downloads so far.

How do I install Skill Guard 1.0.2?

Run "/install skill-guard-1-0-2" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Skill Guard 1.0.2 free?

Yes, Skill Guard 1.0.2 is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does Skill Guard 1.0.2 support?

Skill Guard 1.0.2 is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Skill Guard 1.0.2?

It is built and maintained by kenswj (@kenswj); the current version is v1.0.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463556 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259610 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200551 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191226 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190235 · by oswalpalash

💬 Comments