← Back to Skills Marketplace
74
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install talonforge-skill-guard
Description
Scan ClawHub skills for security vulnerabilities BEFORE installing. Use when installing new skills from ClawHub to detect prompt injections, malware payloads...
Usage Guidance
This script mostly behaves as a pre-install scanner and is coherent with its purpose, but before using it you should: (1) verify the package ownership and metadata — the included _meta.json and the top-level registry metadata disagree; (2) avoid running the recommended 'curl | sh' installer unless you trust that source — prefer installing uv/uvx and mcp-scan from vetted, pinned releases; (3) inspect staged files in /tmp/skill-guard-staging/ before you move them into your real skills folder; (4) be cautious about using or exposing the '--skip-scan' option or manually moving quarantined skills into your workspace; and (5) prefer to pin a known-safe mcp-scan release rather than running '@latest' to reduce supply-chain risk. If you need higher assurance, request checksums or a signed release for the scanner and confirm the owner's identity/version metadata.
Capability Analysis
Type: OpenClaw Skill
Name: talonforge-skill-guard
Version: 1.0.0
The skill-guard bundle is a security utility designed to provide pre-installation scanning for other OpenClaw skills. The core logic in `scripts/safe-install.sh` implements a safe staging workflow that downloads skills to a temporary directory and analyzes them using the legitimate `mcp-scan` tool (via `uvx`) before moving them to the production workspace. No evidence of data exfiltration, malicious execution, or prompt injection was found; the behavior is entirely consistent with its stated purpose of enhancing agent security.
Capability Assessment
Purpose & Capability
The script implements a pre-install scanner that stages a skill, runs mcp-scan, and installs only on success — this matches the declared purpose. However, the registry metadata in the submission claims no required binaries/env, while SKILL.md and the script clearly require 'clawhub' and 'uvx' (and optionally use CLAWHUB_WORKDIR). Additionally, top-level metadata (ownerId/slug/version) does not match the _meta.json contents. These inconsistencies between manifest and runtime expectations reduce trust.
Instruction Scope
The SKILL.md and safe-install.sh are narrowly scoped: they fetch a skill to /tmp, run a scanner against that staging folder, and move files to the skills directory only on success. That's appropriate for a pre-install scanner. Caveats: the script supports '--skip-scan' which can bypass the protection, it suggests moving staged files manually to install anyway (expected but dangerous if followed blindly), and it sources '$HOME/.local/bin/env' as a fallback for uvx which is an unusual path and broadens what the script touches.
Install Mechanism
The skill is instruction-only but recommends and relies on tools that pull and execute remote code: it suggests installing 'uv' via 'curl -LsSf https://astral.sh/uv/install.sh | sh' and runs 'uvx mcp-scan@latest', which will fetch code at runtime. Using a network installer (curl | sh) and executing latest-tag remote packages increases risk. These behaviors are coherent with the purpose (running a third-party scanner) but are a source of supply-chain risk and should be validated against trusted releases.
Credentials
The skill does not request credentials or sensitive environment variables. It reads CLAWHUB_WORKDIR (optional) and uses standard locations ($HOME, /tmp). It does not request unrelated secrets or broad system access. This is proportionate to its goal.
Persistence & Privilege
The skill is not always-enabled and is user-invocable. It does not request to persistently modify other skills or global agent settings. The script writes only to a staging directory and (on successful install) moves the staged skill into the normal skills directory — expected behavior for an installer.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install talonforge-skill-guard - After installation, invoke the skill by name or use
/talonforge-skill-guard - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release: pre-install security scanning for ClawHub skills, prompt injection detection, data exfiltration checks
Metadata
Frequently Asked Questions
What is Skill Guard — Pre-Install Security Scanner?
Scan ClawHub skills for security vulnerabilities BEFORE installing. Use when installing new skills from ClawHub to detect prompt injections, malware payloads... It is an AI Agent Skill for Claude Code / OpenClaw, with 74 downloads so far.
How do I install Skill Guard — Pre-Install Security Scanner?
Run "/install talonforge-skill-guard" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Skill Guard — Pre-Install Security Scanner free?
Yes, Skill Guard — Pre-Install Security Scanner is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Skill Guard — Pre-Install Security Scanner support?
Skill Guard — Pre-Install Security Scanner is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Skill Guard — Pre-Install Security Scanner?
It is built and maintained by zinou (@casperzinou); the current version is v1.0.0.
More Skills