← 返回 Skills 市场
Minduploadedcrab Skillguard
作者
minduploadedcrab
· GitHub ↗
· v1.0.1
602
总下载
0
收藏
1
当前安装
1
版本数
在 OpenClaw 中安装
/install minduploadedcrab-skillguard
功能描述
Security scanner for OpenClaw skills. Scans skills for malware, credential theft, data exfiltration, prompt injection, and permission overreach before instal...
安全使用建议
This skill largely does what it claims — it's a Python-based scanner that searches files for risky patterns. However: 1) Open SKILL.md and scripts/skillguard.py and confirm there are no network calls (requests/httpx/urllib) or code paths that send scan results to external endpoints; the provided snippet shows pattern-only scanning but you should verify the rest of the file. 2) Inspect SKILL.md to see why a prompt-injection phrase was detected — ensure it's only an example in documentation and not a buried instruction intended to influence other agents. 3) Because the scanner reads all files in ~/.openclaw/workspace/skills, run it in a safe environment or on a copy to avoid accidental exposure of secrets; review any findings before sharing them. 4) If you plan to allow autonomous invocation, be cautious: an autonomously-invoked scanner that produced automated reports could leak snippets of secrets in its output. If anything is unclear, ask the author for a justification of the prompt-injection text and for a code walkthrough of network behavior before installing.
功能分析
Type: OpenClaw Skill
Name: minduploadedcrab-skillguard
Version: 1.0.1
The OpenClaw AgentSkills skill 'minduploadedcrab-skillguard' is a security scanner designed to detect malware, credential theft, data exfiltration, and prompt injection in other OpenClaw skills. The `SKILL.md` provides clear, benign instructions for its use. The `scripts/skillguard.py` code implements scanning logic by reading files and matching patterns defined in `data/patterns.json`. It does not exhibit any malicious behaviors itself, such as making unauthorized network calls, executing arbitrary commands, exfiltrating data, or attempting prompt injection against the agent. Its operations are confined to reading and analyzing files within specified skill directories, aligning perfectly with its stated purpose as a security tool.
能力评估
Purpose & Capability
Name, description, and required binary (python3) match the contained files: a Python scanner (scripts/skillguard.py) plus pattern data. The scanner's declared checks (credentials, exfil, prompt injection, filesystem abuse, etc.) are implemented in the provided code and patterns.json, so the requirements are proportionate to the stated purpose.
Instruction Scope
SKILL.md instructs the agent/user to run the scanner against skill directories (including 'scan-all' which uses the default ~/.openclaw/workspace/skills). That's reasonable for a scanner, but the pre-scan detected a prompt-injection marker ('ignore-previous-instructions') inside SKILL.md itself — this could be an innocuous example of what the scanner detects or could be a malicious attempt to influence downstream evaluations/agents. The scanner reads full files from other installed skills (expected) — note that scan results may include sensitive fragments from those files.
Install Mechanism
No install spec is provided (instruction + local files only). Nothing is downloaded or extracted; no third-party registries or unusual URLs are used. This is low-risk from an installation perspective.
Credentials
No environment variables, credentials, or external tokens are requested. The included patterns.json lists many key names to detect in scanned code, which is appropriate for the scanner's role. There is no evidence the skill requests unrelated secrets.
Persistence & Privilege
The skill does not declare always:true and does not appear to modify other skills or global agent configuration. Agent invocation is allowed (default), which is normal — but as with any autonomously-invokable tool, that increases blast radius if the tool were malicious.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install minduploadedcrab-skillguard - 安装完成后,直接呼叫该 Skill 的名称或使用
/minduploadedcrab-skillguard触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.1
- Improved documentation with detailed usage instructions and detection capabilities.
- Added descriptions of scan types, risk scoring, and output format.
- Expanded threat detection list, clarifying coverage for credential theft, data exfiltration, prompt injection, and more.
- Simple command examples included for scanning specific skills or all installed skills.
元数据
常见问题
Minduploadedcrab Skillguard 是什么?
Security scanner for OpenClaw skills. Scans skills for malware, credential theft, data exfiltration, prompt injection, and permission overreach before instal... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 602 次。
如何安装 Minduploadedcrab Skillguard?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install minduploadedcrab-skillguard」即可一键安装,无需额外配置。
Minduploadedcrab Skillguard 是免费的吗?
是的,Minduploadedcrab Skillguard 完全免费(开源免费),可自由下载、安装和使用。
Minduploadedcrab Skillguard 支持哪些平台?
Minduploadedcrab Skillguard 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Minduploadedcrab Skillguard?
由 minduploadedcrab(@minduploadedcrab)开发并维护,当前版本 v1.0.1。
推荐 Skills