风险评分

94/100 (Very Low)

OpenClaw: benign
VirusTotal: benign
StaticScan: unknown

Clawhub Skill Scanner

作者: amir-ag
Slug:clawhub-skill-scanner
版本:0.1.0
更新时间:2026-02-26 11:47:27
风险信息

OpenClaw: benign

查看 OpenClaw 分析摘要(前 200 字预览) 
This skill is internally coherent: it implements a local, pattern-based security scanner that matches its description and does not request extra credentials or install remote code, but review the rule...

[内容已截断]

VirusTotal: benign VT 报告

静态扫描: unknown

README

README 未提供

文件列表

无文件信息

下载
下载官方 ZIP
原始 JSON 数据
{
    "latestVersion": {
        "_creationTime": 1770363972059,
        "_id": "k979r2ht93jb6rwt1rfbwxadys80n84m",
        "changelog": "Initial release of clawhub-skill-scanner\n\n- Introduces a mandatory security audit tool for skill installations from ClawHub, GitHub, and external sources.\n- Deep code analysis detects critical risks including reverse shells, credential access, data exfiltration, command injection, and common malware patterns.\n- Outputs clear risk scoring (SAFE\/CAUTION\/DANGER\/BLOCKED) and actionable summaries.\n- Designed to minimize false alarms by ignoring common benign patterns.\n- Includes CLI examples and integration guide for automated pre-install scanning.\n- Created in response to ClawHavoc supply chain compromise.",
        "changelogSource": "auto",
        "createdAt": 1770363972059,
        "version": "0.1.0"
    },
    "owner": {
        "_creationTime": 0,
        "_id": "publishers:missing",
        "displayName": "amir-ag",
        "handle": "amir-ag",
        "image": "https:\/\/avatars.githubusercontent.com\/u\/40580705?v=4",
        "kind": "user",
        "linkedUserId": "kn73pdcysg2h65erhp32zmjadn80nvys"
    },
    "ownerHandle": "amir-ag",
    "skill": {
        "_creationTime": 1770363972059,
        "_id": "kd77ekwn32df8yryz1y18rh0dh80mmr7",
        "badges": [],
        "createdAt": 1770363972059,
        "displayName": "Clawhub Skill Scanner",
        "latestVersionId": "k979r2ht93jb6rwt1rfbwxadys80n84m",
        "ownerUserId": "kn73pdcysg2h65erhp32zmjadn80nvys",
        "slug": "clawhub-skill-scanner",
        "stats": {
            "comments": 0,
            "downloads": 1419,
            "installsAllTime": 5,
            "installsCurrent": 5,
            "stars": 1,
            "versions": 1
        },
        "summary": "Security gatekeeper for skill installations. MANDATORY before installing any skill from ClawHub, GitHub, or external sources. Performs deep code analysis to detect malicious patterns, credential access, data exfiltration, command injection, and other security risks. Triggers: \"install skill\", \"clawhub install\", \"new skill\", \"add skill\", \"skill from\". Always run this BEFORE installation.",
        "tags": {
            "latest": "k979r2ht93jb6rwt1rfbwxadys80n84m"
        },
        "updatedAt": 1772077647066
    }
}