security-skill-scanner

What This Skill Does

The security-skill-scanner is a foundational defensive tool designed for the OpenClaw ecosystem. It acts as a gatekeeper, auditing ClawdHub skills for malicious behavior before and after installation. By utilizing complex regex pattern detection, it monitors for credential theft, unauthorized network exfiltration, command injection, and suspicious download commands like wget or curl. Beyond passive scanning, it offers an integrated whitelist manager and a proactive Moltbook monitoring system that tracks security discussions to alert users of emerging scams or compromised third-party plugins. The skill is essential for maintaining a secure environment when installing a wide variety of community-driven tools.

Installation

To integrate this security suite into your environment, navigate to your ClawdHub installation path and run the setup script. Use the following command to install the checker:

clawhub install openclaw/skills/skills/digitaladaption/openclaw-skills-security-checker

Ensure that you have appropriate system permissions to modify your crontab if you wish to enable the automated daily scans and the recurring Moltbook monitoring intervals. After installation, you can initialize the whitelist using the provided manager script to prevent false positives from known legitimate tools like nano-banana-pro or Notion.

Use Cases

This skill is perfect for developers and power users who frequently pull new, unvetted skills from the ClawdHub repository. It is particularly useful for security-conscious teams who need to generate formal permission manifests (Isnad chains) to track exactly what resources a skill is accessing. It also serves as an automated auditing tool that generates JSON and markdown reports, making it an excellent component for compliance-heavy environments where every piece of installed software must be periodically audited for unauthorized code changes or sensitive data leaks.

Example Prompts

1. "OpenClaw, perform a full security audit of all currently installed skills and save the results to a JSON report."
2. "Check if the new skill 'experimental-data-fetcher' contains any patterns related to network exfiltration or credential theft."
3. "Add 'my-trusted-utility' to the security whitelist and provide a brief summary of current Moltbook security alerts."

Tips & Limitations

To maximize effectiveness, always run the scanner in conjunction with the provided pre-install hook script. The scanner is a static analysis tool; while it is highly effective at catching obfuscated scripts and common malware patterns, it does not execute the code in a sandbox during the scan. Always exercise caution with skills tagged as suspicious, and review the permission manifests generated by the tool before granting network access to new or unverified community modules.