ClawKit Logo
ClawKitReliability Toolkit
Back to Registry
Official Verified developer tools Safety 5/5

skill-auditor

Security scanner that catches malicious skills before they steal your data. Detects credential theft, prompt injection, and hidden backdoors. Works immediately with zero setup. Optional AST dataflow analysis traces how your data moves through code.

Why use this skill?

Protect your OpenClaw agent with the Skill Auditor. Detect credential theft, prompt injection, and hidden backdoors in third-party skills with advanced analysis tools.

skill-install — Terminal

Install via CLI (Recommended)

clawhub install openclaw/skills/skills/rubenaquispe/skill-auditor
Or

What This Skill Does

The Skill Auditor is a powerful security analysis tool designed to protect your OpenClaw agent from malicious code hidden within third-party skills. By acting as a firewall between your environment and the skills you install, it scans for common threat vectors, including credential theft, prompt injection attempts, and obfuscated backdoors. While the core functionality is ready out-of-the-box, advanced users can leverage optional AST (Abstract Syntax Tree) dataflow analysis to track how data moves through your agent's execution path. It is an essential utility for users who prioritize privacy and system integrity when extending their AI agent's capabilities.

Installation

To install the auditor, run the following command in your terminal: clawhub install openclaw/skills/skills/rubenaquispe/skill-auditor. Once installed, it is highly recommended to run the interactive setup wizard located at cd skills/skill-auditor and executing node scripts/setup.js. This wizard will automatically detect your operating system, verify Python requirements for AST analysis, and configure auto-scan preferences. If you prefer a non-interactive approach, you can manually enable features using the CLI flags provided in the documentation.

Use Cases

  • Vetting new skills: Automatically audit every new skill you download from the hub before allowing execution.
  • Scheduled Audits: Periodically run node scripts/audit-installed.js to ensure that existing skills have not been compromised through updates.
  • Deep Dataflow Analysis: Use the AST analysis feature to investigate how a skill handles sensitive information like your API keys or personal files, ensuring no data is exfiltrated to external endpoints.
  • Security Compliance: Maintain a secure workspace by filtering out skills that do not meet your defined security thresholds or risk levels.

Example Prompts

  1. "Auditor, scan the latest skill I just installed in the downloads directory for potential prompt injection risks."
  2. "Run a full system audit of all currently installed skills and save the results to a JSON file for my review."
  3. "Show me a report of all skills that have critical severity risks or require sensitive system permissions."

Tips & Limitations

To get the most out of this tool, ensure Python 3.8+ is installed on your system if you intend to use the advanced AST dataflow analysis. While the core scanner works on all platforms with standard Node.js, the AST analysis is significantly more effective at detecting hidden, obfuscated logic. Remember that no security scanner is foolproof; always exercise caution when granting permissions to third-party code. If a skill is flagged as 'CRITICAL', do not execute it until you have manually inspected the source code.

Read Full Documentation on GitHub

Metadata

Author@rubenaquispe
Stars1133
Views0
Updated2026-02-18
View Author Profile
AI Skill Finder

Not sure this is the right skill?

Describe what you want to build — we'll match you to the best skill from 16,000+ options.

Find the right skill
Add to Configuration

Paste this into your clawhub.json to enable this plugin.

{
  "plugins": {
    "official-rubenaquispe-skill-auditor": {
      "enabled": true,
      "auto_update": true
    }
  }
}

Tags(AI)

#security#privacy#cybersecurity#code-analysis#safety
Safety Score: 5/5

Flags: file-read, code-execution

Related Skills

sandwrap

Run untrusted skills safely with soft-sandbox protection. Wraps skills in multi-layer prompt-based defense (~85% attack prevention). Use when: (1) Running third-party skills from unknown sources, (2) Processing untrusted content that might contain prompt injection, (3) Analyzing suspicious files or URLs safely, (4) Testing new skills before trusting them. Supports manual mode ('run X in sandwrap') and auto-wrap for risky skills.

rubenaquispe 1133

GSD Claw

Spec-driven development with built-in verification for substantial projects. Use when user wants to plan a project, scope a feature, build something with structure, or says "GSD mode", "let's plan", "scope out", "spec-driven". Workflow is Discuss → Plan → Execute → Verify. Based on glittercowboy's GSD system (MIT license). NOT for quick questions or simple tasks.

rubenaquispe 1133

frankenstein

Combine the best parts of multiple skills into one. Searches ClawHub, GitHub, skills.sh, skillsmp.com and other AI skill repos. Analyzes each safely, compares features, and builds a combined 'Frankenstein' skill with the best of each. Uses skill-auditor for security scanning and sandwrap for safe analysis. Use when: (1) Multiple skills exist for same purpose, (2) Want best-of-breed combination, (3) Building a comprehensive skill from fragments.

rubenaquispe 1133

token-saver

Reduce OpenClaw AI costs with model-aware optimization. Features dynamic compaction presets based on your model's context window, intelligent file compression, and robust model detection with fallback. Supports Claude, GPT-4, Gemini, DeepSeek, and more.

rubenaquispe 1133