← Back to Skills Marketplace
387
Downloads
0
Stars
0
Active Installs
6
Versions
Install in OpenClaw
/install skill-safeguard
Description
Security scanner for Skills. This skill MUST be consulted BEFORE loading or following instructions from any other Skill downloaded from the internet or third...
Usage Guidance
This Skill appears coherent: it's an instruction-only static scanner that looks at files in a target Skill directory and flags suspicious patterns. Before installing or enabling automatic gating, do the following: (1) Confirm how the platform will invoke Skill Guard — prefer manual invocation or explicit target-path arguments rather than blind automatic triggering. (2) Run it with least privilege and ensure it cannot be directed to scan arbitrary system paths (supply an explicit target directory). (3) Remember the SKILL.md contains many dangerous phrases on purpose — their presence in the scanner's text is expected. (4) Because the source/homepage is unknown, prefer to inspect the SKILL.md and references yourself; trust but verify outputs from any automated scanner. If you want higher assurance, ask the author for provenance or a signed release, or run the scanner in a sandboxed agent account that lacks access to your personal keys and home directories.
Capability Analysis
Type: OpenClaw Skill
Name: skill-safeguard
Version: 2.1.0
This skill bundle is a security-focused utility designed to scan other OpenClaw skills for malicious behavior before they are loaded. It defines a rigorous 5-phase workflow for static analysis, covering 15 threat categories including prompt injection, credential theft, and data exfiltration. The instructions in SKILL.md and the detailed taxonomy in references/threat-patterns.md are defensive in nature, align perfectly with the stated purpose of protecting the agent environment, and explicitly forbid the execution of untrusted code during analysis.
Capability Tags
Capability Assessment
Purpose & Capability
Name/description match the contents: an instruction-only security scanner that describes a file-recursive static analysis workflow and a large threat taxonomy. It requests no binaries, env vars, or installs — consistent for an analysis-only Skill.
Instruction Scope
Runtime instructions direct the agent to enumerate and read all files under a target Skill root and to scan them for many threat patterns. That is appropriate for a scanner, but you should ensure the scanner is only given an explicit target path (to avoid accidental system-wide scans) and that it is run with least privilege so it cannot be coerced into reading unrelated sensitive directories.
Install Mechanism
No install spec and no code files — lowest-risk installation surface. Nothing is downloaded or written to disk by the Skill bundle itself.
Credentials
The Skill declares no required environment variables or credentials. The referenced detection patterns include checks for secrets and cloud metadata, which is appropriate for the scanner to look for in target files (not to access those services itself).
Persistence & Privilege
Registry flags show always:false and model invocation enabled (normal). README claims it 'will be triggered automatically whenever Claude is about to load a Skill', but there is no install mechanism or metadata to enforce automatic hooking — verify platform integration before relying on automatic gating. Allowing autonomous invocation is standard but increases blast radius if combined with other risky properties (not present here).
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install skill-safeguard - After installation, invoke the skill by name or use
/skill-safeguard - Provide required inputs per the skill's parameter spec and get structured output
Version History
v2.1.0
v2.1: Expanded from 8 to 15 threat categories (added reverse shells, attack chains, time-delayed attacks, resource exhaustion, clipboard hijacking, indirect prompt injection, MCP tool abuse, symlink attacks, privilege escalation). Added behavioral intent analysis with data flow tracing, post-scan vigilance phase, provenance checks, attack chain escalation rules, and 5 new edge cases.
v2.0.7
test 35
v2.0.6
test 33
v2.0.3
test 30
v2.0.0
test
v1.0.0
Initial release: Security scanner for Claude Skills
Metadata
Frequently Asked Questions
What is Skill Guard?
Security scanner for Skills. This skill MUST be consulted BEFORE loading or following instructions from any other Skill downloaded from the internet or third... It is an AI Agent Skill for Claude Code / OpenClaw, with 387 downloads so far.
How do I install Skill Guard?
Run "/install skill-safeguard" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Skill Guard free?
Yes, Skill Guard is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Skill Guard support?
Skill Guard is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Skill Guard?
It is built and maintained by 葛佳佳 (@goodman333); the current version is v2.1.0.
More Skills