Shield Agent
Skill by bowen31337
Why use this skill?
Install the Shield Agent to perform autonomous DeFi smart contract security scans. Get immutable, verifiable audit receipts on ClawChain for your protocols.
Install via CLI (Recommended)
clawhub install openclaw/skills/skills/bowen31337/shield-agentWhat This Skill Does
The Shield Agent by bowen31337 is an advanced, autonomous DeFi smart contract vulnerability scanner designed for the OpenClaw ecosystem. It functions as a specialized security auditor that evaluates on-chain smart contract code for common exploits, reentrancy vulnerabilities, logic errors, and security misconfigurations. By leveraging the integration with ClawChain's pallet-agent-receipts, the Shield Agent ensures that every scan performed is logged as an immutable on-chain record. This provides developers and protocols with a verifiable audit trail, enhancing transparency and trust in decentralized financial applications. The agent bridges the gap between off-chain vulnerability research and on-chain security verification.
Installation
To integrate the Shield Agent into your OpenClaw environment, execute the following command in your terminal:
clawhub install openclaw/skills/skills/bowen31337/shield-agent
Ensure that your OpenClaw runtime is up to date and that your ClawChain wallet is configured for transaction signing to facilitate the immutable receipt generation on-chain.
Use Cases
- Protocol Auditing: Perform rapid security assessments on smart contracts before deployment to mainnet to identify high-risk vulnerabilities.
- Continuous Monitoring: Use the monitoring feature to observe deployed contracts for changes or newly discovered exploit patterns over defined intervals.
- Compliance & Reporting: Generate verifiable audit receipts to satisfy governance requirements or to provide proof of security for decentralized finance insurance protocols.
- Security Research: Aggregate scan data to identify trends in vulnerability patterns across different DeFi platforms.
Example Prompts
- "Shield Agent, please scan the smart contract at 0x71C7656E... and identify any reentrancy risks."
- "Start monitoring the liquidity pool contract at 0xAbc123... and check for vulnerabilities every hour."
- "Retrieve the audit report for scan ID 88421 and summarize the findings for the team."
Tips & Limitations
- Static Analysis Focus: While the Shield Agent is powerful, it primarily performs static analysis. Complex logic errors that require runtime state interaction may require additional manual verification.
- Transaction Costs: Since every scan result is recorded on ClawChain, note that you will need to pay standard transaction fees for the receipt generation.
- API Availability: Ensure that your local agent has stable internet access, as the scanner queries various blockchain indexers to fetch contract bytecode for evaluation.
Metadata
Not sure this is the right skill?
Describe what you want to build — we'll match you to the best skill from 16,000+ options.
Find the right skillPaste this into your clawhub.json to enable this plugin.
{
"plugins": {
"official-bowen31337-shield-agent": {
"enabled": true,
"auto_update": true
}
}
}Tags(AI)
Flags: network-access, external-api
Related Skills
Terse
Skill by bowen31337
Identity Resolver
Skill by bowen31337
whalecli
Agent-native whale wallet tracker for ETH and BTC chains. Track large crypto wallet movements, score whale activity, detect accumulation/distribution patterns, and stream real-time alerts. Integrates with FearHarvester and Simmer prediction markets for closed-loop signal→bet workflows. Use when: user asks about whale activity, on-chain signals, large wallet movements, smart money flows, or when pre-validating crypto trades/bets with on-chain data.
agent-self-governance
Self-governance protocol for autonomous agents: WAL (Write-Ahead Log), VBR (Verify Before Reporting), ADL (Anti-Divergence Limit), VFM (Value-For-Money), and IKL (Infrastructure Knowledge Logging). Use when: (1) receiving a user correction — log it before responding, (2) making an important decision or analysis — log it before continuing, (3) pre-compaction memory flush — flush the working buffer to WAL, (4) session start — replay unapplied WAL entries to restore lost context, (5) any time you want to ensure something survives compaction, (6) before claiming a task is done — verify it, (7) periodic self-check — am I drifting from my persona? (8) cost tracking — was that expensive operation worth it? (9) discovering infrastructure — log hardware/service specs immediately.
pyright-lsp
Python language server (Pyright) providing static type checking, code intelligence, and LSP diagnostics for .py and .pyi files. Use when working with Python code that needs type checking, autocomplete suggestions, error detection, or code navigation.