Skill Scanner

The skill's code and instructions match its stated purpose (a local scanner) and it does not request unrelated credentials or elevated persistence.

This skill appears coherent and appropriate for scanning OpenClaw skills. Before running it: 1) only point the scanner at directories you control or intend to audit (it will read files under the given path), 2) treat results as heuristics—false positives and false negatives are possible (obfuscated or polymorphic malware can evade detection), 3) do not blindly execute any binaries the scanner flags; instead inspect or run them in a sandbox, and 4) if you rely on checksum verification, store and manage checksum manifests from trusted sources.