ClawSentinel
Pure local 2026 ClawHub/OpenClaw skill scanner. Detects ClawHavoc malware, MCP backdoors, obfuscated payloads, and supply-chain attacks. 100% read-only analysis.
Install via CLI (Recommended)
clawhub install openclaw/skills/skills/chuddyrudd/clawsentinelWhat This Skill Does
ClawSentinel v2.3 is the premier security auditing tool for the OpenClaw ecosystem. Designed as a pure local scanner, it performs static analysis on potential skills before they are integrated into your environment. In the current ClawHavoc landscape, where malicious packages are increasingly common, ClawSentinel acts as an essential firewall for your AI agent. It is specifically engineered to identify MCP (Model Context Protocol) backdoors, obfuscated JavaScript/Python payloads, and sophisticated supply-chain attacks hidden within malicious markdown or GitHub repository structures. By leveraging the comprehensive DataClaw dataset, this skill maps dangerous code patterns to known threat signatures without ever executing the underlying code.
Installation
To secure your environment, install the skill directly via the ClawHub CLI using the following command:
clawhub install openclaw/skills/skills/chuddyrudd/clawsentinel
Once installed, the tool integrates directly into your agent's capability list, allowing you to trigger a deep scan at any time through standard natural language prompts.
Use Cases
ClawSentinel is designed for developers, security researchers, and everyday OpenClaw users who value system integrity. Its primary use case is the pre-installation verification of third-party skills. If you discover a promising skill on GitHub or a public repository, use ClawSentinel to perform a deep-dive analysis of the codebase. It is also an excellent tool for auditing your existing library, helping you ensure that past installations haven't been compromised by upstream dependency tampering.
Example Prompts
- "audit this skill: [paste code here] - tell me if there are any suspicious system calls or hidden network requests."
- "audit github https://github.com/malicious-actor/unknown-utility and list all identified security vulnerabilities."
- "scan the last three skills I installed and verify if they contain known MCP backdoor patterns from the DataClaw dataset."
Tips & Limitations
- Tip: Always run ClawSentinel in a 'trusted' environment. Since it is 100% read-only, it cannot accidentally trigger the malware it detects.
- Tip: Update your local DataClaw dataset frequently to ensure you are protected against the latest 2026 exploit trends.
- Limitation: ClawSentinel is a static analysis tool. While highly effective, it cannot predict the behavior of highly polymorphic or encrypted code that requires runtime de-obfuscation. It remains the strongest first line of defense available for OpenClaw users today.
Metadata
Not sure this is the right skill?
Describe what you want to build — we'll match you to the best skill from 16,000+ options.
Find the right skillPaste this into your clawhub.json to enable this plugin.
{
"plugins": {
"official-chuddyrudd-clawsentinel": {
"enabled": true,
"auto_update": true
}
}
}Tags
Flags: network-access
Related Skills
doctorbot-ci-validator
Stop failing in production. Validate your GitHub Actions, GitLab CI & Keep workflows offline with surgical precision. Born from Keep bounty research, perfected for agents.
arc-shield
Output sanitization for agent responses - prevents accidental secret leaks
AURA Security Scanner
Scan AI agent skills for malware, credential theft, prompt injection, and dangerous permissions before installing them
sbom-explainer
把依赖清单或 SBOM 翻译成非技术可读的风险说明,按影响面排序。;use for sbom, dependencies, risk workflows;do not use for 伪造 CVE 状态, 替代专业漏洞扫描.
china-renewable-energy-sourcing
Comprehensive renewable energy industry sourcing guide for international buyers – provides detailed information about China's solar PV, wind power, energy storage, and hydrogen manufacturing clusters, supply chain structure, regional specializations, and industry trends (2026 updated).