guard-scanner
Security scanner for AI agent skills. Use BEFORE installing or running any new skill from ClawHub or external sources. Detects prompt injection, credential theft, exfiltration, identity hijacking, sandbox violations, code complexity, config impact, and 17 more threat categories. Includes a Runtime Guard hook (26 patterns, 5 layers, 0.016ms/scan) that blocks dangerous tool calls in real-time.
Install via CLI (Recommended)
clawhub install openclaw/skills/skills/koatora20/guard-scannerguard-scanner π‘οΈ
Static + runtime security scanner for AI agent skills. 135 static patterns + 26 runtime patterns (5 layers) across 22 categories β zero dependencies. 0.016ms/scan.
When To Use This Skill
- Before installing a new skill from ClawHub or any external source
- After updating skills to check for newly introduced threats
- Periodically to audit your installed skills
- In CI/CD to gate skill deployments
Quick Start
1. Static Scan (Immediate)
Scan all installed skills:
node skills/guard-scanner/src/cli.js ~/.openclaw/workspace/skills/ --verbose --self-exclude
Scan a specific skill:
node skills/guard-scanner/src/cli.js /path/to/new-skill/ --strict --verbose
2. Runtime Guard (OpenClaw Plugin Hook)
Blocks dangerous tool calls in real-time via before_tool_call hook. 26 patterns, 5 layers, 3 enforcement modes.
openclaw hooks install skills/guard-scanner/hooks/guard-scanner
openclaw hooks enable guard-scanner
openclaw hooks list
3. Recommended order
# Pre-install / pre-update gate first
node skills/guard-scanner/src/cli.js ~/.openclaw/workspace/skills/ --verbose --self-exclude --html
# Then keep runtime monitoring enabled
openclaw hooks install skills/guard-scanner/hooks/guard-scanner
openclaw hooks enable guard-scanner
Runtime Guard Modes
Set in openclaw.json β hooks.internal.entries.guard-scanner.mode:
| Mode | Intended Behavior | Current Status |
|---|---|---|
monitor | Log all, never block | β Fully working |
enforce (default) | Block CRITICAL threats | β Fully working |
strict | Block HIGH + CRITICAL | β Fully working |
Threat Categories
| # | Category | What It Detects |
|---|---|---|
| 1 | Prompt Injection | Hidden instructions, invisible Unicode, homoglyphs |
| 2 | Malicious Code | eval(), child_process, reverse shells |
| 3 | Suspicious Downloads | curl|bash, executable downloads |
| 4 | Credential Handling | .env reads, SSH key access |
| 5 | Secret Detection | Hardcoded API keys and tokens |
| 6 | Exfiltration | webhook.site, DNS tunneling |
| 7 | Unverifiable Deps | Remote dynamic imports |
| 8 | Financial Access | Crypto wallets, payment APIs |
| 9 | Obfuscation | Base64βeval, String.fromCharCode |
| 10 | Prerequisites Fraud | Fake download instructions |
| 11 | Leaky Skills | Secret leaks through LLM context |
| 12 | Memory Poisoning* | Agent memory modification |
| 13 | Prompt Worm | Self-replicating instructions |
| 14 | Persistence | Cron jobs, startup execution |
| 15 | CVE Patterns | Known agent vulnerabilities |
| 16 | MCP Security | Tool/schema poisoning, SSRF |
| 17 | Identity Hijacking* | SOUL.md/IDENTITY.md tampering |
| 18 | Sandbox Validation | Dangerous binaries, broad file scope, sensitive env |
| 19 | Code Complexity | Excessive file length, deep nesting, eval density |
| 20 | Config Impact | openclaw.json writes, exec appr... |
Metadata
Not sure this is the right skill?
Describe what you want to build β we'll match you to the best skill from 16,000+ options.
Find the right skillPaste this into your clawhub.json to enable this plugin.
{
"plugins": {
"official-koatora20-guard-scanner": {
"enabled": true,
"auto_update": true
}
}
}Related Skills
Guava Memory
Skill by koatora20
guava-guard
Runtime security guard for OpenClaw agents. Warns on dangerous tool call patterns. For full static scanning, use guard-scanner.
guava-suite
Premium security suite for AI agents. Adds $GUAVA token-gated strict mode protection on top of guard-scanner. Features: 2-layer defense (static + runtime), Soul Lock, Memory Guard, on-chain identity verification via SoulRegistry V2. Requires $GUAVA token on Polygon Mainnet.
Memory Mastery
Skill by koatora20
mv-pipeline
End-to-end automated Music Video pipeline. Covers songwriting (lyrics/composition), Suno music generation (browser automation), lyrics alignment (stable-ts), video generation (Veo 3.1 via Vertex AI or Google Flow via browser), Remotion-based editing (subtitles, effects, telops), and YouTube upload. Use when creating a full MV from scratch, or running any individual stage of the pipeline.