← 返回 Skills 市场
adainthelab

Skulk Skill Scanner

作者 Ada Vale · GitHub ↗ · v1.0.1
cross-platform ✓ 安全检测通过
805
总下载
0
收藏
5
当前安装
2
版本数
在 OpenClaw 中安装
/install skulk-skill-scanner
功能描述
Scan OpenClaw skill folders for security red flags before installing or publishing. Detects data exfiltration, credential theft, prompt injection, destructiv...
安全使用建议
This scanner appears to be what it claims: a static pattern-based skill scanner. Before trusting its results, run it in a sandbox or on a copy of the skill directory (not on system roots), and: (1) run it with --include-self to self-audit the scanner; (2) manually review any FAIL/WARN findings (static checks produce false positives and false negatives); (3) inspect and if needed customize SAFE_DOMAINS to match your environment; (4) remember it is static-only — it cannot detect runtime-generated exfiltration or sophisticated obfuscation, so follow up with manual review and, for high-risk skills, runtime monitoring in an isolated environment prior to granting sensitive credentials or deployment.
功能分析
Type: OpenClaw Skill Name: skulk-skill-scanner Version: 1.0.1 The 'skulk-skill-scanner' skill is a static analysis tool designed to identify security risks in other OpenClaw skills. Its core logic in `scripts/scanner.js` reads file contents and matches them against a comprehensive set of patterns for data exfiltration, credential access, prompt injection, destructive commands, and other malicious indicators. The scanner itself does not perform any high-risk actions like network requests, arbitrary file system writes, command execution, or attempts to manipulate the agent via prompt injection. Its behavior is entirely consistent with its stated purpose as a security auditing tool.
能力评估
Purpose & Capability
Name, description, SKILL.md usage, and the included scripts/scanner.js are consistent: the tool is a static analyzer for skill folders and does only file-reading and pattern-matching. It does not request unrelated credentials, binaries, or system privileges.
Instruction Scope
SKILL.md limits runtime actions to running node scripts/scanner.js against a skill folder and describes the scanner's detection categories. This stays within the stated purpose. One design note: the scanner defaults to ignoring its own scripts (shouldIgnore excludes scripts/scanner.js unless --include-self is used), which reduces self-noise but can hide issues in the scanner itself unless the user intentionally self-scans.
Install Mechanism
There is no install spec and no downloads; the skill is instruction-only with a bundled script. Nothing writes new binaries or pulls external code during install — lowest-risk install model.
Credentials
The skill requires no environment variables or external credentials. The scanner looks for environment-variable usage patterns in target skills (e.g., process.env) but does not itself read the host environment. The hardcoded SAFE_DOMAINS allowlist is a policy choice — it can cause false negatives for otherwise benign domains or false negatives for suspicious domains if the list is overly permissive; changing it requires editing the script.
Persistence & Privilege
The skill does not request persistent presence (always:false) and does not modify other skills or agent configuration. It runs when invoked by the user and has no autonomous background behavior.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install skulk-skill-scanner
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /skulk-skill-scanner 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.1
Fix self-scan false positives; tighten env/network matching; add --summary/--ignore/--include-self; align skill name with slug.
v1.0.0
Initial release — static analysis security scanner for OpenClaw skills. Detects exfiltration, credential theft, prompt injection, destructive commands, obfuscation, and supply chain risks. Smart domain allowlist to reduce false positives.
元数据
Slug skulk-skill-scanner
版本 1.0.1
许可证
累计安装 5
当前安装数 5
历史版本数 2
常见问题

Skulk Skill Scanner 是什么?

Scan OpenClaw skill folders for security red flags before installing or publishing. Detects data exfiltration, credential theft, prompt injection, destructiv... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 805 次。

如何安装 Skulk Skill Scanner?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install skulk-skill-scanner」即可一键安装,无需额外配置。

Skulk Skill Scanner 是免费的吗?

是的,Skulk Skill Scanner 完全免费(开源免费),可自由下载、安装和使用。

Skulk Skill Scanner 支持哪些平台?

Skulk Skill Scanner 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 Skulk Skill Scanner?

由 Ada Vale(@adainthelab)开发并维护,当前版本 v1.0.1。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论