← Back to Skills Marketplace

Skill Analyzer

Name: Skill Analyzer
Author: codeblackhole1024

by codeblackhole · GitHub ↗ · v0.2.0

cross-platform ⚠ suspicious

341

Downloads

Stars

Active Installs

Versions

Install in OpenClaw

/install skill-analyzer

Description

Analyzes OpenClaw skills for functionality, security, usability, documentation, maintainability, and best practices to provide quality scores and improvement...

Usage Guidance

This skill is internally coherent (a Python tool that analyzes skills) but exercise caution before running it on important data. Key points: - The analyzer is pure-Python and requests no secrets or installs, which reduces risk of exfiltration, but you should still inspect scripts/analyzer.py before executing. - The analyzer contains logic bugs: scoring math is inconsistent with the documented 0-10 scale (the code scales to 0-100), and the risk-assessment function is truncated (an unfinished 'ret' token) which will likely crash or misreport risk. Expect unreliable/misleading results until those are fixed. - The security checks are heuristic: secret detection and eval/exec detection are simplistic and can miss issues or generate false positives. Do not rely solely on its output for security-critical decisions. - Recommended actions: (1) manually review scripts/analyzer.py for the truncated function and other logic issues, (2) run it first in an isolated/sandbox environment and against non-sensitive test skills, (3) if you plan to use its reports for decisions, validate a few results manually and consider improving its heuristics before trusting its risk scores. If you want, I can list the specific buggy code locations and suggest precise fixes to make the analyzer safer and more accurate.

Capability Analysis

Type: OpenClaw Skill Name: skill-analyzer Version: 0.2.0 The 'skill-analyzer' is a static analysis utility designed to evaluate the quality and security of other OpenClaw skills. The core logic in 'scripts/analyzer.py' performs local file system checks for hardcoded secrets, unsafe coding patterns (like dangerous use of eval/exec), and documentation completeness without executing the target code or making network requests. No evidence of data exfiltration, persistence, or malicious intent was found.

Capability Assessment

✓ Purpose & Capability

Name/description match the delivered artifacts: a Python-based skill quality analyzer. No unexpected env vars, binaries, or install steps are requested. Including scripts/analyzer.py is reasonable for this purpose.

⚠ Instruction Scope

SKILL.md instructs running the included Python analyzer and claims it's 'safe to run on any skill' and 'does not modify analyzed skills'. The code reads SKILL.md and script files under the target path (expected), but contains several problematic/naive behaviors: manual frontmatter parsing that can be brittle, simplistic heuristics for CLI detection and secret detection (likely false negatives/positives), and a truncated _assess_risk implementation (unfinished 'ret' token) that will cause runtime errors or incorrect risk reporting. These mean the tool can crash or produce misleading scores.

✓ Install Mechanism

No install specification (instruction-only with bundled script). That is low-risk from an installation standpoint — nothing is automatically downloaded or written to disk by an installer.

✓ Credentials

No environment variables, credentials, or config paths are requested. The analyzer only reads files under the supplied skill path; it does not declare access to unrelated secrets or services.

✓ Persistence & Privilege

The skill is not forced-always, does not request system-wide persistence, and the code does not appear to modify global agent configuration. It reads files but does not declare any persistent privileges.

How to Use

Make sure OpenClaw is installed (local or Docker)
Run the install command in chat: /install skill-analyzer
After installation, invoke the skill by name or use /skill-analyzer
Provide required inputs per the skill's parameter spec and get structured output

Version History

v0.2.0

Optimized description for better discoverability

v1.0.1

Fixed: security check false positives, main function detection. Updated: SKILL.md to accurately reflect 5 dimensions and pure Python requirement.

v1.0.0

- Initial release of skill-analyzer. - Provides comprehensive analysis of OpenClaw skills across six key dimensions: functionality, security, usability, maintainability, documentation quality, and best practices. - Scores each dimension on a 0–10 scale and generates an overall weighted score. - Outputs strengths, suggestions for improvement, and risk assessment for the analyzed skill. - Supports command-line analysis, JSON reporting, and skill comparison.

Metadata

Slug skill-analyzer

Version 0.2.0

License —

All-time Installs 1

Active Installs 1

Total Versions 3

Frequently Asked Questions

What is Skill Analyzer?

Analyzes OpenClaw skills for functionality, security, usability, documentation, maintainability, and best practices to provide quality scores and improvement... It is an AI Agent Skill for Claude Code / OpenClaw, with 341 downloads so far.

How do I install Skill Analyzer?

Run "/install skill-analyzer" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Skill Analyzer free?

Yes, Skill Analyzer is completely free (open-source). You can download, install and use it at no cost.

Which platforms does Skill Analyzer support?

Skill Analyzer is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Skill Analyzer?

It is built and maintained by codeblackhole (@codeblackhole1024); the current version is v0.2.0.

More Skills