← Back to Skills Marketplace
edmonddantesj

AOI OpenClaw Security Toolkit (Core)

by edmonddantesj · GitHub ↗ · v0.1.6
cross-platform ⚠ suspicious
775
Downloads
2
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install aoi-openclaw-security-toolkit-core
Description
Run local-only fail-closed security checks to detect and report data leaks, secrets, egress risks, and prompt injections before publishing or committing code.
README (SKILL.md)

AOI OpenClaw Security Toolkit (Core)

Why: Prevent “one bad commit” incidents (accidental file leakage + secret exposure) with a fast, local-only, fail-closed check. When: Before committing/pushing, before publishing a skill, and when reviewing scripts/skills for unexpected egress behavior. How: Run a single command to get PASS/WARN/BLOCK and an optional redaction-safe report. Scope: Detection + reporting only (no auto-fix, no uploads, no auto-posting). Quickstart: openclaw-sec check --preset repo --diff staged

This is a public-safe toolkit skill.

  • Does: detect + report risks (PASS/WARN/BLOCK)
  • Does NOT: auto-fix, auto-upload, auto-post, or exfiltrate data

CLI

Binary: openclaw-sec

Common:

openclaw-sec check --lang en
openclaw-sec check --lang ko
openclaw-sec scan-secrets
openclaw-sec scan-egress
openclaw-sec scan-prompt --file inbound.txt

Exit codes:

  • 0 PASS
  • 1 WARN
  • 2 BLOCK

Default scan scope

If --paths is omitted, it scans existing paths among:

  • .
  • skills/
  • scripts/
  • context/

Rules

Rule files live in rules/:

  • secret_patterns.txt
  • egress_patterns.txt
  • prompt_injection_patterns.txt

Edit these to tune sensitivity.

Usage Guidance
This appears to be a coherent local-only scanner. Before installing, ensure you: (1) are comfortable that the tool will read files in your repository/workspace (including any files under '.'), (2) have git on PATH if you plan to use diff presets, and (3) review the bundled rules/regex files if you want to tune sensitivity. If you need stronger assurance, inspect the remainder of skill.js (integrity checks are provided) or run it in a sandboxed environment first.
Capability Analysis
Type: OpenClaw Skill Name: aoi-openclaw-security-toolkit-core Version: 0.1.6 The OpenClaw security toolkit is designed for local-only security checks, adhering to its stated policy of no data exfiltration or auto-remediation. It uses `spawnSync` only for fixed `git` commands, limiting shell injection risks. However, the `skill.js` file contains a vulnerability where regular expressions are compiled from user-controlled input (via `--exclude` arguments and `.aoi-allowlist` file content) in the `isExcluded` and `compileAllowlistMatchers` functions. This could lead to a Regular Expression Denial of Service (ReDoS) if a malicious or poorly crafted regex is provided, causing resource exhaustion for the skill. This is a vulnerability, not intentional malice, classifying the skill as suspicious.
Capability Assessment
Purpose & Capability
The name/description (local-only security scanner) match the code and bundled rule files. The only minor mismatch: the skill spawns the 'git' command to compute diffs, but the registry metadata lists no required binaries; git is reasonable for a repo preset but the metadata could explicitly declare it.
Instruction Scope
SKILL.md describes scanning repo/workspace paths, using included rules, and producing redaction-safe reports. The implementation reads local files, scans text and URLs, and may write an output report; it does not attempt to read unrelated system secrets, nor does it send data to external endpoints.
Install Mechanism
There is no install spec (instruction/CLI provided via bundled skill.js). package.json maps a local CLI binary but no external downloads or registry installs are required. No third-party packages are pulled in.
Credentials
The skill requests no environment variables or credentials. The code does not access secret environment variables or external service tokens; it only reads files in the working tree and may invoke git.
Persistence & Privilege
always is false and the skill does not modify other skills or system-wide settings. It may write an output file when --out is used, which is expected behavior for a CLI report generator.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install aoi-openclaw-security-toolkit-core
  3. After installation, invoke the skill by name or use /aoi-openclaw-security-toolkit-core
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v0.1.6
Release-check + integrity manifest (sha256) and staged-diff allowlist enforcement (fail-closed)
Metadata
Slug aoi-openclaw-security-toolkit-core
Version 0.1.6
License
All-time Installs 0
Active Installs 0
Total Versions 1
Frequently Asked Questions

What is AOI OpenClaw Security Toolkit (Core)?

Run local-only fail-closed security checks to detect and report data leaks, secrets, egress risks, and prompt injections before publishing or committing code. It is an AI Agent Skill for Claude Code / OpenClaw, with 775 downloads so far.

How do I install AOI OpenClaw Security Toolkit (Core)?

Run "/install aoi-openclaw-security-toolkit-core" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is AOI OpenClaw Security Toolkit (Core) free?

Yes, AOI OpenClaw Security Toolkit (Core) is completely free (open-source). You can download, install and use it at no cost.

Which platforms does AOI OpenClaw Security Toolkit (Core) support?

AOI OpenClaw Security Toolkit (Core) is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created AOI OpenClaw Security Toolkit (Core)?

It is built and maintained by edmonddantesj (@edmonddantesj); the current version is v0.1.6.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463556 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259610 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200551 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191226 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190235 · by oswalpalash

💬 Comments