Heimdall Security Scanner

The skill's purpose (a security scanner) is plausible, but there are several inconsistencies and risky instructions (undeclared API key usage, prompt-injection examples in the docs, guidance to store secrets in plaintext and add shell aliases, and execution of arbitrary scans/cloned repos) that warrant careful review before installing or running.

This skill looks like a legitimate security scanner, but there are a few red flags you should address before running or installing it: - Inspect the included Python script(s) (scripts/skill-scan.py and skill-scan.py) before executing. Search for any subprocess/os.system/exec calls, network requests (curl/wget/requests), or code that imports/executes files from scanned repos. - Do not blindly run scans against untrusted repositories on machines with secrets. Use an isolated environment (VM/container) for initial testing. - The SKILL.md asks you to provide an OpenRouter API key and suggests saving it plaintext to ~/clawd/secrets/openrouter.key; instead, prefer using an environment variable for the key and avoid storing it in an unprotected file. Confirm the manifest is updated to declare required env vars. - Review any recommended shell modifications (the alias appended to ~/.bashrc) before applying. That step is optional and creates persistence in your shell environment. - Confirm the LLM provider and privacy model (the docs reference both Claude and OpenRouter inconsistently) and whether any scanned data or telemetry is sent to third parties. - If you are unsure, request the skill author/repository link and verify the source (maintainer identity, GitHub repo contents, recent commits). If the author or origin is unknown, treat the skill as higher-risk. Given the documented inconsistencies and the presence of prompt-injection examples in the docs, proceed cautiously and audit the code and network behavior before trusting this skill with sensitive environments.