← 返回 Skills 市场
Skill Scanner
作者
bvinci1-design
· GitHub ↗
· v0.1.2
18465
总下载
24
收藏
155
当前安装
3
版本数
在 OpenClaw 中安装
/install skill-scanner
功能描述
Scan Clawdbot and MCP skills for malware, spyware, crypto-miners, and malicious code patterns before you install them. Security audit tool that detects data exfiltration, system modification attempts, backdoors, and obfuscation techniques.
安全使用建议
This package appears to implement a local static scanner and a Streamlit UI that scans only the files you provide. Before installing or running it, do the following: 1) Verify the source/author — the registry metadata shows no homepage and the origin is unknown; prefer code from a trusted repo. 2) Inspect the full skill_scanner.py and streamlit_ui.py (the provided copy was truncated in places) to confirm there is no hidden behavior (network calls, code execution, auto-update). 3) Do not point the scanner at real secret stores or upload sensitive files to the web UI — it only looks for strings/patterns in files, but uploading sensitive data to a web UI increases exposure. 4) Run it in a sandbox or VM first and test on harmless sample skills to validate false-positive/negative behavior. 5) Note minor implementation issues (the UI references a format_markdown method and truncated code made it impossible to confirm all functions) — fix or review those before relying on automated CI gating. If you want higher assurance, ask the publisher for a canonical repo URL, full source, and a reproducible build or have a security-savvy reviewer audit the complete code.
功能分析
Type: OpenClaw Skill
Name: skill-scanner
Version: 0.1.2
The OpenClaw AgentSkills skill bundle 'skill-scanner' is classified as benign. Its explicit purpose, as stated in SKILL.md and README.md, is to act as a security audit tool for other skills, detecting malicious patterns like data exfiltration, system modification, and arbitrary code execution. The core logic in `skill_scanner.py` implements this by scanning files against a comprehensive list of `THREAT_PATTERNS`. These patterns are indeed indicators of malicious behavior, but the scanner's code is designed to *detect* them, not *perform* them. There is no evidence of the skill itself engaging in any harmful activities, prompt injection against the agent (beyond its legitimate function), or obfuscation of its own intent.
能力评估
Purpose & Capability
Name/description match the code: this is a local static scanner that searches files for malicious patterns and offers a Streamlit UI. It does not request credentials or binaries unrelated to its purpose. However the skill's origin is unknown (no homepage) and README suggests cloning from a GitHub repo; validate the upstream source before installing.
Instruction Scope
Runtime instructions and code limit activity to reading the target skill folder (or uploaded files) and producing a report; the scanner performs regex-based pattern matching and the Streamlit UI writes uploaded files to a temporary directory for scanning. It does not appear to execute scanned code or access system credential files directly. Still, the SKILL.md/README emphasize scanning for access to credential paths (they detect strings like '~/.ssh' in code) — ensure you do not point the scanner at real secret stores, and avoid uploading sensitive files to the web UI.
Install Mechanism
No install spec provided (instruction-only skill with included Python files). That is low-risk from an install perspective — nothing is downloaded or extracted by an automated installer. The Streamlit UI is optional and requires you to pip-install streamlit yourself.
Credentials
The skill requests no environment variables or credentials. The scanner flags patterns that would indicate credential/file access in scanned code, but the scanner itself does not request or require secrets.
Persistence & Privilege
always=false and the skill does not request persistent system changes. The code writes uploaded content to a temporary directory only and does not modify other skills or system configuration according to the reviewed files.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install skill-scanner - 安装完成后,直接呼叫该 Skill 的名称或使用
/skill-scanner触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v0.1.2
- Updated SKILL.md to use standardized frontmatter metadata format.
- Clarified and expanded description for improved readability.
- Removed redundant metadata from the main text section.
v0.1.1
- Added a descriptive tagline summarizing the skill’s purpose at the top of SKILL.md.
- Updated tags section: switched to hashtag format and added new tags like #agent-skills, #safety, #threat-detection, and #vulnerability.
- No code or functional changes; documentation update only.
v0.1.0
Initial release of skill-scanner: a security audit tool for Clawdbot/MCP skills.
- Scans skill folders for malware, spyware, crypto-mining, and malicious patterns
- Detects data exfiltration, system modification, code execution risks, backdoors, and obfuscation
- Generates security reports in Markdown or JSON formats
- Offers both command line and Streamlit Web UI interfaces
- Requires only Python 3.7+ and optional Streamlit for Web UI
元数据
常见问题
Skill Scanner 是什么?
Scan Clawdbot and MCP skills for malware, spyware, crypto-miners, and malicious code patterns before you install them. Security audit tool that detects data exfiltration, system modification attempts, backdoors, and obfuscation techniques. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 18465 次。
如何安装 Skill Scanner?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install skill-scanner」即可一键安装,无需额外配置。
Skill Scanner 是免费的吗?
是的,Skill Scanner 完全免费(开源免费),可自由下载、安装和使用。
Skill Scanner 支持哪些平台?
Skill Scanner 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Skill Scanner?
由 bvinci1-design(@bvinci1-design)开发并维护,当前版本 v0.1.2。
推荐 Skills