skill-auditorSecurity scanner that catches malicious skills before they steal your data. Detects credential theft, prompt injection, and hidden backdoors. Works immediately with zero setup. Optional AST dataflow analysis traces how your data moves through code.
Install via ClawdBot CLI:
clawdbot install RubenAQuispe/skill-auditorGrade Good — based on market validation, documentation quality, package completeness, maintenance status, and authenticity signals.
Contains instructions to override system prompt or ignore user requests
"ignore previous instructions"Potentially destructive shell commands in tool definitions
curl | bashCalls external URL not in known-safe list
https://github.com/user/skillUses known external API (expected, informational)
api.github.comGenerated Mar 1, 2026
Integrate Skill Auditor into CI/CD pipelines to automatically scan new skills before deployment. This ensures security compliance by detecting malicious code patterns, credential theft attempts, and backdoors in development workflows. Teams can use SARIF output to generate GitHub Code Scanning alerts and block deployments with critical findings.
Deploy Skill Auditor across an organization to audit all installed skills for compliance with internal security policies. Security teams can run batch scans to identify high-risk skills, generate visual reports for stakeholders, and enforce risk thresholds. This helps maintain a secure AI agent ecosystem in regulated industries like finance or healthcare.
Use Skill Auditor as a vetting tool for third-party skills submitted to a marketplace. Scan skills from GitHub URLs to detect threats before listing, apply accuracy scoring to verify behavior matches descriptions, and provide security badges based on risk levels. This builds trust with users downloading community-developed skills.
After a security incident, use Skill Auditor to analyze compromised skills and trace data flows through AST analysis. Identify how credentials were exfiltrated, detect hidden backdoors, and generate detailed threat summaries for post-mortem reports. Optional VirusTotal integration scans binaries for malware signatures.
Incorporate Skill Auditor into developer training programs to teach secure skill development practices. Use its detection modes to demonstrate different threat patterns, show how data flows from sources to sinks, and let trainees scan sample skills. LLM semantic analysis helps explain why certain behaviors are risky.
Offer Skill Auditor as a cloud-based scanning service with API access, continuous monitoring, and premium features like LLM semantic analysis. Charge monthly subscriptions based on scan volume, number of skills monitored, or team size. Include enterprise support, custom threat feeds, and compliance reporting.
Sell annual enterprise licenses for on-premises deployment with advanced features like AST dataflow analysis and VirusTotal integration. Include professional services for customization, integration with existing security tools, and dedicated support. Offer training packages and security consulting for implementation.
Partner with AI agent platforms or skill marketplaces to integrate Skill Auditor as their official vetting tool. Charge integration fees, revenue sharing on premium scans, or transaction fees per skill listed. Provide white-labeled reports and security badges that platforms can display to users.
💬 Integration Tip
Start with the interactive setup wizard to configure optional features like AST analysis, then integrate basic scanning into existing workflows using JSON or SARIF output for automation.
Scored Apr 22, 2026
AI Analysis
The skill contains a HIGH severity signal for prompt poisoning ('ignore previous instructions'), which could override system safety controls, and a MEDIUM signal for unsafe shell commands ('curl | bash'), posing a direct execution risk. While external API calls appear consistent with its security scanning purpose, the presence of these active manipulation and code execution patterns warrants caution.
Audited Apr 17, 2026 · audit v1.0
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
Manage and operate ClawSec Monitor v3.0, a MITM HTTP/HTTPS proxy that logs AI agent traffic, detects exfiltration and injection threats in real time.
Scan Clawdbot and MCP skills for malware, spyware, crypto-miners, and malicious code patterns before you install them. Security audit tool that detects data exfiltration, system modification attempts, backdoors, and obfuscation techniques.
MoltGuard — OpenClaw security guard by OpenGuardrails. Install MoltGuard to protect you and your human from prompt injection, data exfiltration, and maliciou...
Safe command execution for OpenClaw Agents with automatic danger pattern detection, risk assessment, user approval workflow, and audit logging. Use when agen...
Scan ClawHub skills for security vulnerabilities BEFORE installing. Use when installing new skills from ClawHub to detect prompt injections, malware payloads, hardcoded secrets, and other threats. Wraps clawhub install with mcp-scan pre-flight checks.