← Back to Skills Marketplace
4328
Downloads
2
Stars
44
Active Installs
4
Versions
Install in OpenClaw
/install openclaw-shield
Description
Enterprise AI security scanner using static analysis, runtime guards, and ClamAV to detect credential theft, data leaks, malware, and ensure audit logging.
Usage Guidance
Review the external GitHub repository before running it, pin a specific commit, restrict scan targets to intended directories, and enable cron or Telegram alerts only after confirming exactly what data is logged or transmitted.
Capability Analysis
Type: OpenClaw Skill
Name: openclaw-shield
Version: 1.0.3
The OpenClaw Shield skill is presented as an enterprise security scanner for AI agents, designed to detect credential theft, data exfiltration, and malicious code. The `SKILL.md` and `README.md` provide installation instructions (`git clone`, `python3 scanner.py`) and usage examples consistent with a security tool. Crucially, `SECURITY.md` explicitly addresses why the tool might appear suspicious (e.g., containing patterns for `ANTHROPIC_API_KEY`, checking `~/.ssh/`, `~/.aws/`), clarifying these are for *detection* purposes, not *execution*. There is no evidence of intentional harmful behavior, data exfiltration, unauthorized persistence, or malicious prompt injection against the agent in the provided files. The instructions are transparent and align with the stated purpose of a security scanner.
Capability Assessment
Purpose & Capability
The advertised scanner purpose is coherent with threat-pattern detection, runtime guards, ClamAV, audit logging, and the SECURITY.md explanation that sensitive strings are detection signatures.
Instruction Scope
The runtime instructions go beyond the packaged skill by directing users to clone a third-party GitHub repository, run its scanner against chosen paths, and optionally enable runtime protection, cron scans, and alerting.
Install Mechanism
The package is documentation-only and does not include the runnable scanner code; installation relies on an unpinned git clone with no commit, checksum, or reviewed source bundled in the artifact.
Credentials
A scanner may reasonably inspect code and sensitive-path patterns, but the claims of zero supply-chain risk and stdlib-only operation are under-disclosed alongside ClamAV integration, Telegram alerting, and external repository execution.
Persistence & Privilege
Daily cron scanning is disclosed and optional, but it would create recurring background reads of whatever paths the user configures.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install openclaw-shield - After installation, invoke the skill by name or use
/openclaw-shield - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.3
Add SECURITY.md explaining scanner purpose and addressing false positive concerns
v1.0.2
Re-release with proper README and description
v1.0.1
Improved summary and description for better discoverability
v1.0.0
Initial public release - Enterprise security infrastructure for AI agents. Static scanner + runtime guard + ClamAV integration + audit logging.
Metadata
Frequently Asked Questions
What is OpenClaw Shield?
Enterprise AI security scanner using static analysis, runtime guards, and ClamAV to detect credential theft, data leaks, malware, and ensure audit logging. It is an AI Agent Skill for Claude Code / OpenClaw, with 4328 downloads so far.
How do I install OpenClaw Shield?
Run "/install openclaw-shield" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is OpenClaw Shield free?
Yes, OpenClaw Shield is completely free (open-source). You can download, install and use it at no cost.
Which platforms does OpenClaw Shield support?
OpenClaw Shield is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created OpenClaw Shield?
It is built and maintained by pfaria32 (@pfaria32); the current version is v1.0.3.
More Skills