Clawhub Skill Scanner
PassAudited by VirusTotal on May 12, 2026.
Overview
Type: OpenClaw Skill Name: clawhub-skill-scanner Version: 0.1.0 This skill bundle is a security scanner designed to detect malicious patterns in other OpenClaw skills. All files, including SKILL.md (agent instructions), scripts/scan_skill.py (core logic), and documentation, consistently describe and implement this benign functionality. The SKILL.md provides instructions on how to use the scanner to prevent malicious installations, without containing any prompt injection attempts or instructions for the agent to perform harmful actions. The Python script itself safely reads files and applies regex patterns to identify threats, without executing any detected patterns or performing unauthorized network/file system operations. There is no evidence of intentional harmful behavior or risky capabilities beyond its stated purpose as a security analysis tool.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Skill installations may be delayed or blocked based on the scanner's result.
The skill instructs the agent to interpose this scanner on future install requests. This is expected for a security gatekeeper, but it can redirect the normal install flow.
Security gatekeeper for skill installations. MANDATORY before installing any skill... Always run this BEFORE installation.
Use the scanner as a pre-install check, but keep explicit user approval for installing or blocking skills.
A false negative could lead a user or wrapper script to install a risky skill because the scan labeled it safe.
The documentation encourages auto-approval based on the scanner's heuristic score. The scanner's limits are partly disclosed, but 'safe' should not be treated as a guarantee.
| 0-20 | 🟢 SAFE | Auto-approve |
Treat a clean scan as one signal, not a guarantee; manually review unfamiliar or high-privilege skills before installation.
It is harder to independently verify or reproduce the scanner before trusting it as a security gate.
The registry metadata does not provide a source/homepage or declare Python as a runtime requirement, even though the docs instruct users to run a Python script.
Source: unknown; Homepage: none; Required binaries (all must exist): none; No install spec — this is an instruction-only skill.
Verify the complete package contents and source repository before relying on this scanner for automated install decisions.