mayguard
A security auditor for agent skills. Scans skill directories for malicious patterns (credential theft, suspicious network calls, destructive commands) and provides a safety score. Use before installing unknown skills.
Install via CLI (Recommended)
clawhub install openclaw/skills/skills/balkanblbn/mayguardWhat This Skill Does
MayGuard acts as a specialized security gatekeeper for your OpenClaw agent ecosystem. It serves as a rigorous static analysis engine designed to inspect third-party skills before they are granted execution privileges. By scanning source code for malicious patterns, hardcoded secrets, and unauthorized network calls, it provides a crucial layer of defense against supply chain attacks within the agent community. MayGuard operates by parsing codebases against a continuously updated registry of known threats, ensuring that any logic involving dangerous system commands or data exfiltration attempts is neutralized prior to activation.
Installation
You can install the MayGuard skill directly into your OpenClaw environment by running the following command in your terminal:
clawhub install openclaw/skills/skills/balkanblbn/mayguard
Once installed, ensure you have the necessary environment dependencies active to support its scanning engine. It is recommended to keep this skill updated to benefit from the latest threat pattern databases provided by the community.
Use Cases
- Pre-Installation Verification: Before enabling a new, unknown skill from an untrusted source, use MayGuard to generate a risk report.
- Security Auditing: Periodically scan your
skills/directory to ensure that previously trusted skills haven't had their logic altered in ways that pose a security risk. - Developer Compliance: Use MayGuard in a CI/CD-like workflow for agent developers to ensure their code meets community safety standards before publishing to the hub.
- Incident Response: If your agent exhibits erratic behavior, run a full sweep using MayGuard to identify potential malicious modifications or suspicious webhooks.
Example Prompts
- "MayGuard, please audit the skill located in /skills/experimental-plugin and give me a detailed security report before I enable it."
- "Run a comprehensive security scan on all installed skills and provide a JSON summary of any files tagged as DANGEROUS or SUSPICIOUS."
- "I found a new automation script, scan it for potential credential theft or unauthorized outbound network connections using the --json flag."
Tips & Limitations
MayGuard is a powerful static analysis tool, but it is not a silver bullet. It excels at finding known patterns, but may not catch highly sophisticated, novel zero-day obfuscation techniques. Always combine MayGuard scans with manual code review for critical skills. Ensure that references/threat_patterns.json is updated frequently to capture the most recent threat vectors reported by the OpenClaw community. If a skill is flagged, prioritize reviewing the specific file paths identified in the findings report rather than blindly trusting the aggregate score.
Metadata
Not sure this is the right skill?
Describe what you want to build — we'll match you to the best skill from 16,000+ options.
Find the right skillPaste this into your clawhub.json to enable this plugin.
{
"plugins": {
"official-balkanblbn-mayguard": {
"enabled": true,
"auto_update": true
}
}
}Tags(AI)
Flags: file-read, code-execution
Related Skills
market-sentiment-pulse
Aggregates and analyzes market sentiment for specific crypto or stock tickers by scanning news and social signals. Useful for quick vibe checks before trading.
sub-agent-factory
Rapidly spawn and configure specialized sub-agents. Includes templates for Research, Coding, and Analysis agents. Automates workspace setup and instruction delivery.
sop-architect
Automatically generates detailed Standard Operating Procedures (SOPs) for recurring digital tasks. Ideal for scaling agency operations or documenting internal AI workflows.
Monk Eye Engine
Skill by balkanblbn
code-quality-guard
Professional pre-deployment code review and quality enforcement. Ensures imports are valid, tags are closed, and logic follows best practices before announcing a build is live.