← 返回 Skills 市场
Moltcops
作者
Adamthompson33
· GitHub ↗
· v1.1.0
1256
总下载
2
收藏
0
当前安装
4
版本数
在 OpenClaw 中安装
/install moltcops
功能描述
Pre-install security scanner for AI agent skills. Detects malicious patterns before you trust code. Local-first — code never leaves your machine.
安全使用建议
Moltcops appears to be what it claims: a small, local file-pattern scanner. Before running it: 1) review rules.json if you want to see what patterns will be flagged (and to tune noisy rules); 2) test the scanner on a non-sensitive folder first so you understand its output format; 3) avoid pointing it at directories containing unencrypted private keys or credentials you don't want printed to stdout (it will show matched line snippets locally); 4) treat the advertised web links as external resources — the script doesn't call them, but verify those sites yourself before visiting; and 5) if you need stronger privacy, run the script inside a sandbox or container and redirect output to a secure location. Overall the skill is coherent and low-risk for its intended purpose.
功能分析
Type: OpenClaw Skill
Name: moltcops
Version: 1.1.0
The OpenClaw skill 'moltcops' is a security scanner designed to detect malicious patterns in other AI agent skills. The `SKILL.md` documentation clearly outlines its purpose, local-first operation, and the types of threats it identifies, with no evidence of prompt injection against the agent. The `scripts/scan.py` code implements the scanner as described, performing static analysis by reading files and applying regex rules from `rules.json` without making network calls, modifying files, or executing untrusted code. The `rules.json` file contains legitimate patterns for detecting various security threats like data exfiltration, code injection, and persistence mechanisms in *other* skills. All components align with the stated purpose of a security tool and exhibit no malicious intent or risky behavior themselves.
能力评估
Purpose & Capability
Name/description (pre-install security scanner) match the provided artifacts: SKILL.md describes a local scanner and the included scripts (scripts/scan.py + rules.json) implement a file-based pattern scanner. There are no unrelated env vars, binaries, or install steps requested.
Instruction Scope
Runtime instructions tell the agent/user to run python3 scripts/scan.py <path>. The scanner walks and reads files under the provided path (expected for this purpose). Note: the scanner prints matched line snippets (up to 120 chars) so scanning folders that contain private keys, credentials, or other secrets will surface parts of those secrets to local stdout — this is normal for a scanner but is a privacy consideration. SKILL.md also advertises external web pages (moltcops.com, moltbook, and a 'Web Scanner' URL) even though the code is local-only; those links are not invoked by the code but warrant normal caution.
Install Mechanism
No install spec; instruction-only with a small Python script relying only on the Python standard library. No downloads, no archived extracts, no external package installs. This is low-risk and proportionate for the stated function.
Credentials
The skill declares no required environment variables, no primary credential, and no config paths. The scanner purposely looks for patterns that indicate access to env vars and credential files in the target code, but the scanner itself does not access the environment beyond ordinary os operations. The requested privileges are minimal and appropriate.
Persistence & Privilege
No always:true flag, no install hooks, and the skill does not modify agent configuration or request persistent system presence. Autonomous invocation is allowed by default (disable-model-invocation=false) which is normal for skills; this combined with the scanner's narrow scope does not raise additional concerns.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install moltcops - 安装完成后,直接呼叫该 Skill 的名称或使用
/moltcops触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.1.0
MC-021: Hallucinated Package Reference (CRITICAL) - flags npx/bunx/dlx executing unverified packages. MC-025: HTML Comment Injection (CRITICAL) - detects executable commands hidden in HTML comments. MC-026: Unsafe Package Install (HIGH) - flags npm/yarn/pnpm install without --ignore-scripts. MC-027: Insecure Bind Address (HIGH) - catches 0.0.0.0 binding that exposes agents to public internet. All backed by real-world incidents from BitsecAI and SecurityScorecard STRIKE reports.
v1.0.2
- Added _meta.json metadata file for improved skill definition and compatibility.
- No changes to code or documentation content.
v1.0.1
Fix: rules.json path resolution when installed from ClawHub (flattened directory structure)
v1.0.0
Initial release: 20 detection rules, local-first skill scanning, no dependencies
元数据
常见问题
Moltcops 是什么?
Pre-install security scanner for AI agent skills. Detects malicious patterns before you trust code. Local-first — code never leaves your machine. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 1256 次。
如何安装 Moltcops?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install moltcops」即可一键安装,无需额外配置。
Moltcops 是免费的吗?
是的,Moltcops 完全免费(开源免费),可自由下载、安装和使用。
Moltcops 支持哪些平台?
Moltcops 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Moltcops?
由 Adamthompson33(@adamthompson33)开发并维护,当前版本 v1.1.0。
推荐 Skills