← 返回 Skills 市场
devinfloyd1

Devin Floyd

作者 Devin Floyd · GitHub ↗ · v1.0.0
darwinlinuxwin32 ⚠ suspicious
543
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install clawguarddevin
功能描述
Security scanner for OpenClaw/Clawdbot skills - detect malicious patterns before installation
使用说明 (SKILL.md)

ClawGuard

Security Scanner for OpenClaw/Clawdbot Skills

Protect yourself from malicious skill installations. ClawGuard scans skills for dangerous patterns before you install them - including patterns from the ClawHavoc campaign (341 malicious skills discovered by Koi Security).

Quick Start

# Scan a skill by name
python scan.py --skill \x3Cskill-name>

# Scan a skill by path  
python scan.py --path /path/to/skill

# Scan all installed skills
python scan.py --all

What It Detects

Category Examples Severity
🔴 Reverse Shells socket.connect(), pty.spawn(), /dev/tcp Critical
🔴 Data Exfiltration requests.post() to suspicious TLDs Critical
🔴 Credential Harvest Reading ~/.ssh/id_rsa, AWS credentials Critical
🔴 Obfuscation base64.b64decode(exec), chr() chains Critical
🔴 ClawHavoc IOCs glot.io scripts, fake Apple URLs, known C2 IPs Critical
🟠 Code Execution exec(), eval(), subprocess High
🟡 Suspicious Network URL shorteners, weird ports Medium

Output Formats

# Console (default) - colored terminal output
python scan.py --skill github

# JSON - machine-readable for CI/CD
python scan.py --skill github --format json

# Markdown - for sharing reports
python scan.py --skill github --format markdown

Risk Scoring

Score Level Action
0-10 🟢 Safe Install freely
11-25 🟢 Low Quick review
26-50 🟡 Medium Review findings
51-75 🔴 High Review carefully
76-100 🔴 Critical Do not install

IOC Database

70+ indicators of compromise including:

  • Remote access (reverse shells, C2)
  • Data exfiltration
  • Credential harvesting
  • Code obfuscation
  • Real ClawHavoc campaign IOCs (from Koi Security research)
  • Known malicious IPs, hashes, and skill names

Requirements

  • Python 3.8+
  • No external dependencies (stdlib only)

Credits

IOCs enriched with research from Koi Security - ClawHavoc campaign analysis by Oren Yomtov and Alex.

Links

Built for the Clawdbot community 🐾

安全使用建议
This skill reads like documentation for a scanner but does not include the scanner code. Do not run commands like python scan.py unless you first verify the code's provenance. Before installing or running: 1) Inspect the referenced GitHub repository to confirm scan.py and the IOC database actually exist and review their source; 2) Require an explicit install or packaging method (or include scan.py in the skill bundle) so you don't have to fetch code manually; 3) If you must test untrusted scanner code, run it in a disposable sandbox/container and audit network calls and file access; 4) Ask the publisher for a reproducible install/test procedure and for provenance (commit history, trusted maintainer); 5) Prefer scanners distributed via well-known package sources or that include their code in the skill bundle. Providing the missing scan.py and an install spec (or a verified repo URL and commit hash) would materially increase confidence.
功能分析
Type: OpenClaw Skill Name: clawguarddevin Version: 1.0.0 The OpenClaw skill bundle 'clawguarddevin' is a security scanner designed to detect malicious patterns in other OpenClaw skills. The `SKILL.md` file clearly describes its purpose, detection capabilities (e.g., reverse shells, data exfiltration, credential harvesting, obfuscation), and usage instructions. There is no evidence of prompt injection against the agent, nor any malicious code or instructions within the `clawguard` skill itself. The other files are clearly labeled as `tests/fixtures/` and serve as examples of both benign and malicious skills that the `clawguard` scanner is intended to analyze, not as components of the `clawguard` skill's own malicious behavior.
能力评估
Purpose & Capability
The skill's name/description say it's a security scanner, which would reasonably require a scanner binary/script or an install step. The SKILL.md shows CLI usage (python scan.py ...) and describes an IOC database, but the package contains no scan.py, no executable, and no install mechanism — mismatch between claimed capability and what's actually provided.
Instruction Scope
Runtime instructions instruct the agent/user to run python scan.py against skills or paths and to produce JSON/markdown output, but there is no scan.py included and no guidance to obtain it. That gap could cause an agent or user to fetch and execute code from external sources without clear provenance.
Install Mechanism
There is no install spec (instruction-only). That lowers persistence risk, but for a scanner this is unusual — a legitimate scanner would typically include code or an install step. A GitHub repo link is present in the SKILL.md, but no automated install/clone instruction is provided.
Credentials
The skill requests no environment variables, credentials, or config paths. The declared requirements (Python 3.8+, stdlib only) are proportionate to a simple static scanner. The SKILL.md does not instruct reading unrelated secrets or system files.
Persistence & Privilege
No elevated persistence requested (always:false). The skill is user-invocable and allows normal autonomous invocation, which is expected. It does not request system-wide configuration changes.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install clawguarddevin
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /clawguarddevin 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release — ClawGuard skill security scanner for OpenClaw/Clawdbot. - Scans skills for malicious patterns, including reverse shells, data exfiltration, credential harvesting, obfuscation, code execution, and campaign-specific indicators. - Supports scanning by skill name, file path, or all installed skills. - Outputs results in console, JSON, or Markdown formats. - Detailed risk scoring system with guidance based on score. - IOC database includes 70+ compromise indicators, with ClawHavoc campaign coverage. - Python 3.8+ only, no external dependencies required. - Includes test fixture samples for clean and multiple types of malicious skills.
元数据
Slug clawguarddevin
版本 1.0.0
许可证
累计安装 0
当前安装数 0
历史版本数 1
常见问题

Devin Floyd 是什么?

Security scanner for OpenClaw/Clawdbot skills - detect malicious patterns before installation. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 543 次。

如何安装 Devin Floyd?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install clawguarddevin」即可一键安装,无需额外配置。

Devin Floyd 是免费的吗?

是的,Devin Floyd 完全免费(开源免费),可自由下载、安装和使用。

Devin Floyd 支持哪些平台?

Devin Floyd 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(darwin, linux, win32)。

谁开发了 Devin Floyd?

由 Devin Floyd(@devinfloyd1)开发并维护,当前版本 v1.0.0。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论