AURA Security Scanner
Scan AI agent skills for malware, credential theft, prompt injection, and dangerous permissions before installing them
Install via CLI (Recommended)
clawhub install openclaw/skills/skills/aurasecurity-creator/aura-security-scannerWhat This Skill Does
The AURA Security Scanner is an essential defensive layer for any AI agent workflow. It functions as a specialized security audit tool designed to evaluate AI agent skills (including OpenClaw, Claude MCP, and LangChain formats) before they are granted execution privileges. By analyzing code for hidden malicious patterns, the scanner protects your system from credential theft, unauthorized data exfiltration, and dangerous system manipulations. The scanner utilizes the AURA Security API to cross-reference code against a database of known threat vectors, including obfuscated execution (such as dynamic eval calls), unauthorized network connections, and illicit filesystem access attempts. It returns a standardized risk score and a human-readable summary, helping you maintain a secure agent environment.
Installation
To integrate this security layer into your OpenClaw environment, execute the following command in your terminal:
clawhub install openclaw/skills/skills/aurasecurity-creator/aura-security-scanner
Once installed, the AURA scanner will be accessible as an available tool, ready to audit external skill URLs before you authorize their installation.
Use Cases
- Vetting Third-Party Plugins: Before adding a community-made skill to your agent, verify that it does not contain backdoors or crypto-miners.
- Enterprise Policy Enforcement: Ensure that only 'SAFE' rated tools are utilized within production environments.
- Security Auditing: Periodically audit existing, older skills that may have been updated to include suspicious dependencies or obfuscated code.
- Preventing Prompt Injection: Identify tools that specifically target system instructions designed to hijack agent behavior.
Example Prompts
- "Scan this skill for security issues: https://github.com/user/cool-skill"
- "Is this skill safe to install, and does it have any weird network permissions? https://clawhub.xyz/skill/weather-api"
- "Check for potential prompt injection or credential theft in this repository: https://github.com/example/mcp-tool"
Tips & Limitations
- Verdict Interpretation: Always treat 'WARNING' verdicts with caution. If a skill requires network access it doesn't explicitly need, consider it a potential security risk regardless of the score.
- False Positives: Sophisticated obfuscation or complex, legitimate code patterns may occasionally trigger higher risk scores. Always manually review the findings if a useful tool is flagged.
- API Availability: The scanner requires internet access to communicate with the AURA Security API for real-time threat intelligence updates.
Metadata
Not sure this is the right skill?
Describe what you want to build — we'll match you to the best skill from 16,000+ options.
Find the right skillPaste this into your clawhub.json to enable this plugin.
{
"plugins": {
"official-aurasecurity-creator-aura-security-scanner": {
"enabled": true,
"auto_update": true
}
}
}Tags
Flags: network-access, external-api
Related Skills
security-scanner
Scans OpenClaw skills for security vulnerabilities and suspicious patterns before installation
arc-shield
Output sanitization for agent responses - prevents accidental secret leaks
tripwire
Tripwire host-based IDS reference. Cryptographic key setup, database initialization, integrity checks, policy rules with severity levels, twcfg.txt configuration, and report analysis with twprint.
auditd
Linux Audit Framework reference. auditctl rules for file watches and syscall auditing, auditd.conf configuration, ausearch log queries, aureport summaries, audit.log format, CIS/PCI-DSS compliance rules, and audit tools.
edgeone-clawscan
The first security skill to install after setting up OpenClaw — powered by Tencent Zhuque Lab. Works like an antivirus for your AI environment: audits installed skills, scans skills before installation, and performs a full OpenClaw security health check to prevent data leaks and privacy risks. Backed by Tencent Zhuque Lab A.I.G (AI-Infra-Guard). Use when the user asks to start a security health check or security scan for the current OpenClaw environment, such as `开始安全体检`, `做一次安全体检`, `开始安全扫描`, `全面安全检查`, or `检查 OpenClaw 安全`; also use when the user asks to audit a specific skill before installation, review installed skills for supply chain risk, or investigate whether a skill is safe. Do not trigger for general OpenClaw usage, project debugging, environment setup, or normal development requests. Optional cloud mode: set AIG_CLOUD_LOOKUP=off for zero outbound HTTPS; when enabled, only skill_name, source label, and OpenClaw version are sent to A.I.G (never skill bodies, chats, or workspace files).