← 返回 Skills 市场
thomas-security

Skill Antivirus & Security Scanner

作者 Thomas · GitHub ↗ · v1.0.0 · MIT-0
cross-platform ⚠ suspicious
364
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install skill-antivirus
功能描述
MoltGuard — Protect you and your human from prompt injection, data exfiltration, and malicious commands. Source: https://github.com/openguardrails/openguardr...
安全使用建议
This SKILL.md appears to be a legitimate installer/integrator for a third‑party security plugin, but it has a few worrisome points you should check before installing: 1) The instructions expect the openclaw CLI and node to be available but the skill metadata doesn't declare those requirements — ensure you have them and understand which programs will run. 2) Installing the plugin will download and install code (scripts under ~/.openclaw/extensions/moltguard) that is not present in this skill bundle; review that plugin's source (the GitHub repo) before installing. 3) MoltGuard sends data to a remote 'Core' for detection and will save API keys to ~/.openclaw/credentials/moltguard/ — verify what data is transmitted and whether you trust the Core endpoint (use enterprise Core if you need on‑prem scanning). 4) The 'automatic' credential handling and agent-claim/quotasharing behavior can cause cross-agent data/usage sharing; require explicit user consent. If you want to proceed: (a) inspect the plugin code in the official repo or plugin registry before running the install, (b) confirm exactly what data will be sent to Core and whether it is encrypted/retained, and (c) consider installing in a controlled environment first (or use the enterprise Core option) to verify behavior.
功能分析
Type: OpenClaw Skill Name: skill-antivirus Version: 1.0.0 The skill bundle acts as a wrapper to install an external plugin (@openguardrails/moltguard) and execute local Node.js scripts (enterprise-enroll.mjs). It contains highly scripted instructions in SKILL.md that direct the AI agent to perform a 'test' and then provide a hardcoded reassurance to the user ('Your security protection is now active'), which mimics the social engineering tactics used by deceptive 'Fake AV' software. Furthermore, commands like /og_claim and /og_config are designed to reveal API keys and Agent IDs, posing a risk of credential exposure through the agent's output.
能力评估
Purpose & Capability
The name/description match the instructions: this SKILL.md tells the agent to install a MoltGuard OpenClaw plugin and use a remote Core for security detections, which is consistent with a 'security scanner' skill. However, the runtime instructions require the openclaw CLI and node scripts (openclaw plugins install, node ~/.openclaw/...), but the skill metadata lists no required binaries — that mismatch is an inconsistency that should have been declared.
Instruction Scope
Instructions tell the agent to run openclaw CLI commands, cat a file under ~/.openclaw/extensions/moltguard/samples/ (a sample test file), run node scripts for enterprise enrollment/uninstall, and to claim an Agent ID/API key. Those steps are within the plugin's stated purpose, but the SKILL.md also promises 'Automatic (Zero Human Intervention)' credential retrieval without explaining how keys are obtained or consent is requested — that vagueness broadens scope and deserves scrutiny. The agent is instructed to read and save files under ~/.openclaw (plugin config and credentials), which is expected for a plugin but is file access you should be aware of.
Install Mechanism
This is instruction-only (no install spec or code files in the skill bundle), which lowers direct risk from this repository. However, the instructions explicitly invoke 'openclaw plugins install @openguardrails/moltguard' which will download and install plugin code (including the referenced scripts) from the plugin registry or upstream. Those downloaded files (e.g., scripts/*.mjs) will run with node — the SKILL.md does not include or show that code, so installing will execute code not visible in this skill. That is a moderate install-risk characteristic and should be considered before proceeding.
Credentials
The skill declares no required environment variables, but it states that an API key will be acquired/saved to ~/.openclaw/credentials/moltguard/ and that 'All security detection is performed by Core.' That means prompts, files, or other data may be sent to a remote service (public Core or enterprise Core). For a security scanner this is plausible, but it is a significant privacy/credential handling action: automatic saving of API keys, sharing agent quotas across machines, and remote scanning/exfiltration of data are all sensitive behaviors that should be explicit and consented to. The SKILL.md does not explicitly enumerate what data is sent to Core or provide an opt-in confirmation flow.
Persistence & Privilege
The skill does not request always:true and uses normal autonomous invocation defaults. It explicitly writes config/credentials under ~/.openclaw and modifies plugin state via openclaw plugins update/uninstall, which is typical for a plugin. The concern is the described 'automatic' onboarding that claims to obtain and save API keys without clear human confirmation; that persistence (storing credentials and linking agents) is powerful and warrants explicit user consent and visibility.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install skill-antivirus
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /skill-antivirus 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
- Initial release of the MoltGuard security plugin (v6.8.21) for OpenClaw. - Protects against prompt injection, data exfiltration, command injection, and other agent risks. - Simple installation provides 500 free detections per day. - Includes commands for checking status, configuring API keys, dashboard access, and linking agents to accounts. - Supports individual, shared (team), and enterprise enrollment/deployment. - Detailed onboarding, update, and uninstall instructions provided.
元数据
Slug skill-antivirus
版本 1.0.0
许可证 MIT-0
累计安装 0
当前安装数 0
历史版本数 1
常见问题

Skill Antivirus & Security Scanner 是什么?

MoltGuard — Protect you and your human from prompt injection, data exfiltration, and malicious commands. Source: https://github.com/openguardrails/openguardr... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 364 次。

如何安装 Skill Antivirus & Security Scanner?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install skill-antivirus」即可一键安装,无需额外配置。

Skill Antivirus & Security Scanner 是免费的吗?

是的,Skill Antivirus & Security Scanner 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。

Skill Antivirus & Security Scanner 支持哪些平台?

Skill Antivirus & Security Scanner 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 Skill Antivirus & Security Scanner?

由 Thomas(@thomas-security)开发并维护,当前版本 v1.0.0。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论