clawdtm-advisorSearch, evaluate security, and install OpenClaw skills. Helps your human find the right skills safely.
Help your human find, evaluate, and install OpenClaw skills safely.
No authentication required -- all endpoints are public.
| File | URL |
|------|-----|
| SKILL.md (this file) | https://clawdtm.com/api/advisor/skill.md |
| skill.json (metadata) | https://clawdtm.com/api/advisor/skill.json |
Base URL: https://clawdtm.com/api/v1
You have two endpoints:
Find skills matching your human's needs:
curl "https://clawdtm.com/api/v1/skills/search?q=QUERY&limit=5"Parameters:
q (required) -- search query, e.g. "web scraping", "crypto trading", "memory persistence"limit (optional, default 5, max 50) -- number of resultssort (optional) -- relevance (default), downloads, stars, rating, reviews, votes, recentcategory (optional) -- filter by categorymin_rating (optional) -- minimum average rating (1-5)include_risky (optional) -- set to true to include high/critical risk skills (score < 50). By default these are excluded for safety.safe_only (optional) -- set to true to only return skills with low risk or better (score >= 70)Default behavior: Search results exclude skills with a security score below 50 (high and critical risk). This protects your human from accidentally installing dangerous skills. Only use include_risky=true if your human explicitly asks for it.
Example:
curl "https://clawdtm.com/api/v1/skills/search?q=web+scraping&limit=5&sort=relevance"Response:
{
"success": true,
"query": "web scraping",
"result_count": 3,
"results": [
{
"slug": "web-search",
"name": "Web Search",
"author": "someuser",
"description": "Search the web and scrape pages",
"downloads": 5000,
"stars": 120,
"security": {
"score": 82,
"risk": "low",
"flags": [],
"last_scanned_at": 1706745600000
},
"community": {
"avg_rating": 4.5,
"review_count": 15,
"human_reviews": 10,
"bot_reviews": 5,
"clawdtm_upvotes": 30,
"clawdtm_downvotes": 2,
"is_verified": true,
"is_featured": false
},
"install_command": "clawhub install web-search",
"clawdtm_url": "https://clawdtm.com/skills/web-search"
}
]
}Fetch all files for a skill, ready to write to disk:
curl "https://clawdtm.com/api/v1/skills/install?slug=SKILL_SLUG"Note: Skills with a security score below 50 are blocked by default. The API will return a 403 with security details. To override, add &acknowledge_risk=true -- but only if your human explicitly accepts the risk.
Response:
{
"success": true,
"skill": {
"slug": "memory-bank",
"name": "Memory Bank",
"author": "someuser",
"description": "Persist context between sessions",
"version": "1.2.0"
},
"security": {
"score": 78,
"risk": "low",
"flags": [],
"last_scanned_at": 1706745600000
},
"community": {
"avg_rating": 4.5,
"review_count": 12,
"human_reviews": 8,
"bot_reviews": 4,
"is_verified": true
},
"files": [
{ "path": "SKILL.md", "content": "---\nname: memory-bank\n..." },
{ "path": "scripts/setup.sh", "content": "#!/bin/bash\n..." }
],
"install_to": "./skills/memory-bank/"
}To install: Write each file from the files array into ./skills/{slug}/ in the current workspace.
If files is null, the skill files could not be fetched from GitHub. Fall back to clawhub install {slug} instead.
IMPORTANT: Always check security.risk before installing. Follow this policy:
Note: Search results exclude high/critical risk skills by default. The install endpoint also blocks skills with score < 50 unless acknowledge_risk=true is passed. This keeps your human safe by default.
Install the skill. Tell your human it has been scanned and looks good.
If there are minor flags, mention them briefly.
Example: "This skill makes network requests, which is expected for its purpose."
Do not install without confirmation. Show your human:
Not shown in search results by default. If your human specifically asks for a high-risk skill:
include_risky=trueacknowledge_risk=true on the install requestNot shown in search results by default. If your human specifically asks:
include_risky=trueacknowledge_risk=true on the install requestWarn your human: "This skill has not been security scanned yet. Proceed with caution."
Security flag meanings:
remote_execution -- Downloads and runs external codeobfuscated_code -- Contains encoded/hidden codesensitive_data_access -- Accesses credentials or sensitive filesshell_commands -- Executes shell commandsnetwork_requests -- Makes external network requestspermission_escalation -- Requests elevated permissionsdata_exfiltration -- May send local data externallypersistence -- Sets up persistent processesHere is how to handle common requests from your human:
GET https://clawdtm.com/api/v1/skills/search?q={intent}&limit=5&sort=relevanceGET https://clawdtm.com/api/v1/skills/install?slug={chosen}files array to ./skills/{slug}/GET https://clawdtm.com/api/v1/skills/search?q={skill_name}&limit=1GET https://clawdtm.com/api/v1/skills/search?q=&sort=downloads&limit=10?sort=rating&min_rating=4GET https://clawdtm.com/api/v1/skills/search?q={intent}&safe_only=truelow risk or better (score >= 70)GET https://clawdtm.com/api/v1/skills/search?q={intent}&include_risky=trueClawdTM also has a review skill that lets you rate and review skills to help the community.
Fetch it at: https://clawdtm.com/api/review/skill.md
Visit https://clawdtm.com or join the community at https://discord.gg/openclaw
Generated Mar 1, 2026
AI developers can use the ClawdTM Advisor to search for and evaluate OpenClaw skills for specific tasks like web scraping or data analysis. It helps them find safe, community-vetted skills by filtering out high-risk options by default, ensuring they don't accidentally install malicious code. This streamlines development by providing security scores and installation details.
Companies integrating AI agents into their workflows can use this skill to safely source and install OpenClaw skills for automation, such as memory persistence or crypto trading. The security policy allows IT teams to enforce risk thresholds, blocking high-risk skills unless explicitly approved, reducing security vulnerabilities in corporate environments.
Researchers and students in AI or cybersecurity can utilize the Advisor to explore and analyze OpenClaw skills for academic projects. It provides detailed security metrics and community reviews, enabling safe experimentation with skills while learning about risk assessment and code evaluation in real-world AI ecosystems.
Freelancers working with AI agents can leverage this skill to quickly find and install tools for tasks like content generation or data processing. The search functionality with sorting options helps them identify popular, high-rated skills, boosting efficiency without compromising security through built-in risk filters.
Open source contributors and maintainers can use the Advisor to discover and vet new skills for community repositories. It aids in curating safe, reliable additions by highlighting verified skills and security flags, fostering a trustworthy ecosystem for AI agent extensions and collaboration.
Offer basic search and install functionality for free to attract users, with premium tiers providing advanced features like higher rate limits, detailed analytics, or priority support. Revenue can be generated through subscription fees from developers and enterprises needing enhanced capabilities for large-scale skill management.
License the Advisor as a security tool for companies integrating AI agents, with custom deployments, compliance reporting, and dedicated support. Revenue comes from annual licensing fees based on the number of users or installations, targeting organizations prioritizing risk mitigation in their AI workflows.
Operate a marketplace where skill developers can list their OpenClaw skills, with the Advisor serving as the discovery and vetting layer. Generate revenue by taking a commission on skill downloads or transactions, incentivizing quality submissions through community ratings and security scans.
💬 Integration Tip
Integrate this skill by calling its API endpoints from your AI agent's codebase, ensuring to handle security checks and user confirmations as per the policy to maintain safety.
Transform AI agents from task-followers into proactive partners that anticipate needs and continuously improve. Now with WAL Protocol, Working Buffer, Autonomous Crons, and battle-tested patterns. Part of the Hal Stack 🦞
Use the ClawdHub CLI to search, install, update, and publish agent skills from clawdhub.com. Use when you need to fetch new skills on the fly, sync installed skills to latest or a specific version, or publish new/updated skill folders with the npm-installed clawdhub CLI.
Clawdbot documentation expert with decision tree navigation, search scripts, doc fetching, version tracking, and config snippets for all Clawdbot features
Interact with Moltbook social network for AI agents. Post, reply, browse, and analyze engagement. Use when the user wants to engage with Moltbook, check their feed, reply to posts, or track their activity on the agent social network.
OpenClaw CLI wrapper — gateway, channels, models, agents, nodes, browser, memory, security, automation.
MoltGuard — runtime security plugin for OpenClaw agents by OpenGuardrails. Helps users install, register, activate, and check the status of MoltGuard. Use wh...