← Back to Skills Marketplace
Moltcops
by
Adamthompson33
· GitHub ↗
· v1.1.0
1256
Downloads
2
Stars
0
Active Installs
4
Versions
Install in OpenClaw
/install moltcops
Description
Pre-install security scanner for AI agent skills. Detects malicious patterns before you trust code. Local-first — code never leaves your machine.
Usage Guidance
Moltcops appears to be what it claims: a small, local file-pattern scanner. Before running it: 1) review rules.json if you want to see what patterns will be flagged (and to tune noisy rules); 2) test the scanner on a non-sensitive folder first so you understand its output format; 3) avoid pointing it at directories containing unencrypted private keys or credentials you don't want printed to stdout (it will show matched line snippets locally); 4) treat the advertised web links as external resources — the script doesn't call them, but verify those sites yourself before visiting; and 5) if you need stronger privacy, run the script inside a sandbox or container and redirect output to a secure location. Overall the skill is coherent and low-risk for its intended purpose.
Capability Analysis
Type: OpenClaw Skill
Name: moltcops
Version: 1.1.0
The OpenClaw skill 'moltcops' is a security scanner designed to detect malicious patterns in other AI agent skills. The `SKILL.md` documentation clearly outlines its purpose, local-first operation, and the types of threats it identifies, with no evidence of prompt injection against the agent. The `scripts/scan.py` code implements the scanner as described, performing static analysis by reading files and applying regex rules from `rules.json` without making network calls, modifying files, or executing untrusted code. The `rules.json` file contains legitimate patterns for detecting various security threats like data exfiltration, code injection, and persistence mechanisms in *other* skills. All components align with the stated purpose of a security tool and exhibit no malicious intent or risky behavior themselves.
Capability Assessment
Purpose & Capability
Name/description (pre-install security scanner) match the provided artifacts: SKILL.md describes a local scanner and the included scripts (scripts/scan.py + rules.json) implement a file-based pattern scanner. There are no unrelated env vars, binaries, or install steps requested.
Instruction Scope
Runtime instructions tell the agent/user to run python3 scripts/scan.py <path>. The scanner walks and reads files under the provided path (expected for this purpose). Note: the scanner prints matched line snippets (up to 120 chars) so scanning folders that contain private keys, credentials, or other secrets will surface parts of those secrets to local stdout — this is normal for a scanner but is a privacy consideration. SKILL.md also advertises external web pages (moltcops.com, moltbook, and a 'Web Scanner' URL) even though the code is local-only; those links are not invoked by the code but warrant normal caution.
Install Mechanism
No install spec; instruction-only with a small Python script relying only on the Python standard library. No downloads, no archived extracts, no external package installs. This is low-risk and proportionate for the stated function.
Credentials
The skill declares no required environment variables, no primary credential, and no config paths. The scanner purposely looks for patterns that indicate access to env vars and credential files in the target code, but the scanner itself does not access the environment beyond ordinary os operations. The requested privileges are minimal and appropriate.
Persistence & Privilege
No always:true flag, no install hooks, and the skill does not modify agent configuration or request persistent system presence. Autonomous invocation is allowed by default (disable-model-invocation=false) which is normal for skills; this combined with the scanner's narrow scope does not raise additional concerns.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install moltcops - After installation, invoke the skill by name or use
/moltcops - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.1.0
MC-021: Hallucinated Package Reference (CRITICAL) - flags npx/bunx/dlx executing unverified packages. MC-025: HTML Comment Injection (CRITICAL) - detects executable commands hidden in HTML comments. MC-026: Unsafe Package Install (HIGH) - flags npm/yarn/pnpm install without --ignore-scripts. MC-027: Insecure Bind Address (HIGH) - catches 0.0.0.0 binding that exposes agents to public internet. All backed by real-world incidents from BitsecAI and SecurityScorecard STRIKE reports.
v1.0.2
- Added _meta.json metadata file for improved skill definition and compatibility.
- No changes to code or documentation content.
v1.0.1
Fix: rules.json path resolution when installed from ClawHub (flattened directory structure)
v1.0.0
Initial release: 20 detection rules, local-first skill scanning, no dependencies
Metadata
Frequently Asked Questions
What is Moltcops?
Pre-install security scanner for AI agent skills. Detects malicious patterns before you trust code. Local-first — code never leaves your machine. It is an AI Agent Skill for Claude Code / OpenClaw, with 1256 downloads so far.
How do I install Moltcops?
Run "/install moltcops" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Moltcops free?
Yes, Moltcops is completely free (open-source). You can download, install and use it at no cost.
Which platforms does Moltcops support?
Moltcops is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Moltcops?
It is built and maintained by Adamthompson33 (@adamthompson33); the current version is v1.1.0.
More Skills