SkillGuard Scanner

The OpenClaw SkillGuard scanner is a security tool designed to detect malicious patterns, such as reverse shells, obfuscation, credential theft, and data exfiltration, in other OpenClaw skills. Analysis of `scripts/scanner.py` confirms that it identifies these patterns using regex but does not execute them itself. The only external command executed is `clawhub search`, which is benign and safely invoked. The `SKILL.md` and `references/threat-landscape.md` files describe the scanner's purpose and provide examples of threats it detects, without containing any malicious prompt injections or executable code for the agent. All observed behaviors are consistent with a legitimate security scanning utility.