← Back to Skills Marketplace
297
Downloads
0
Stars
1
Active Installs
1
Versions
Install in OpenClaw
/install openclaw-shield-1-0-3
Description
Enterprise AI security scanner combining static code analysis, runtime guards, ClamAV integration, and tamper-proof audit logging to detect threats and enfor...
Usage Guidance
This skill appears to be a legitimate security scanner, but it asks you (or the agent) to fetch and run code from an external GitHub repository and references integrations (ClamAV, Telegram, cron) without declaring required binaries or credentials. Before installing or running it: 1) review the referenced GitHub repo source (src/scanner.py and deployment scripts) and a pinned commit or tag; 2) confirm what environment variables and host binaries (ClamAV, Telegram bot token) it will actually need; 3) verify there are checksums or signed releases for any code you fetch; 4) run the scanner in an isolated sandbox or non-production account first; 5) audit any cron install scripts and allowlist enforcement code to ensure it won't alter unrelated system settings; and 6) note the metadata mismatch (owner IDs/published version/status claims) and ask the publisher for clarification if you plan to trust it in a production environment.
Capability Analysis
Type: OpenClaw Skill
Name: openclaw-shield-1-0-3
Version: 1.0.0
The skill bundle lacks the actual source code (src/scanner.py) it claims to provide, instead instructing the AI agent to download and execute code from an external GitHub repository (github.com/pfaria32/OpenClaw-Shield-Security), which is a significant supply chain risk. The inclusion of a highly defensive SECURITY.md file, which preemptively justifies why the tool might be flagged as malicious, is a common social engineering tactic used to bypass security scrutiny. Furthermore, SKILL.md contains instructions that claim the tool is already 'Deployed' on a specific instance (clawdbot-toronto), which may be an attempt to manipulate the agent's trust or environment state.
Capability Assessment
Purpose & Capability
The name and description (security scanner + runtime guard + ClamAV + audit logging) align with the SKILL.md content. However the skill claims ClamAV integration, Telegram alerting, and 'deployed on this instance' status while the registry metadata lists no required binaries, env vars, or config paths. That mismatch (external integrations declared but not requested) is unexpected.
Instruction Scope
SKILL.md explicitly instructs cloning a GitHub repository into the agent workspace and running python3 projects/OpenClaw-Shield/src/scanner.py against arbitrary paths. The scanner is documented to check sensitive locations (e.g., ~/.ssh, ~/.aws) and to enforce allowlists and cron-based automated scans. Running downloaded scanner code with access to host files (and potentially modifying cron/allowlists) goes beyond a purely informational skill and requires careful review and least-privilege controls.
Install Mechanism
The skill is instruction-only (no bundled code) but tells the operator/agent to git clone a third-party GitHub repository at runtime. There are no checksums, release tags, or pinned commit references; fetching and executing remote code without integrity verification is a supply-chain risk. Although no install spec is provided in the registry, the runtime actions effectively perform an install from an external source.
Credentials
Registry metadata declares no required environment variables or binaries, but the documentation references ClamAV, Telegram alerting, and host-level scanning. Telegram integration implies a bot token/endpoint; ClamAV requires a host binary or daemon. The scanner also inspects sensitive paths. Required credentials and binaries are not declared, which is disproportionate and obscures what secrets/privileges the tool will need.
Persistence & Privilege
The skill is not marked always:true and allows model invocation (default). SKILL.md suggests setting up daily cron scans and enabling runtime guards via repo config files; if followed, these actions would create persistent scheduled jobs and potentially change local allowlists. That behavior is powerful but not automatically enabled by the registry — still verify cron/installation steps before applying.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install openclaw-shield-1-0-3 - After installation, invoke the skill by name or use
/openclaw-shield-1-0-3 - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
OpenClaw Shield 1.0.0 initial release:
- Enterprise-grade security scanner for AI agents.
- Provides static code analysis to detect credential theft, data exfiltration, and malicious operations.
- Includes runtime guard for real-time protection with allowlists, output sanitization, and policy enforcement.
- Integrates ClamAV for signature-based malware detection and Telegram for alerting.
- Features hash-chained, tamper-evident audit logging and detailed reporting.
- Ready for daily automated scans and manual audit workflows.
Metadata
Frequently Asked Questions
What is Openclaw Shield 1.0.3?
Enterprise AI security scanner combining static code analysis, runtime guards, ClamAV integration, and tamper-proof audit logging to detect threats and enfor... It is an AI Agent Skill for Claude Code / OpenClaw, with 297 downloads so far.
How do I install Openclaw Shield 1.0.3?
Run "/install openclaw-shield-1-0-3" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Openclaw Shield 1.0.3 free?
Yes, Openclaw Shield 1.0.3 is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Openclaw Shield 1.0.3 support?
Openclaw Shield 1.0.3 is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Openclaw Shield 1.0.3?
It is built and maintained by kenswj (@kenswj); the current version is v1.0.0.
More Skills