Go back
More in category Open on GitHub

Jump to related tools in the same category or review the original source on GitHub.

Security & Passwords @mallen-lbx Updated 2/26/2026

Securityclaw OpenClaw Skill - ClawHub

Do you want your AI agent to automate Securityclaw workflows? This free skill from ClawHub helps with security & passwords tasks without building custom tools from scratch.

What this skill does

Security-first skill auditing and quarantine for OpenClaw skills. Use when installing new skills, reviewing skills from unknown sources, scanning skills for prompt injection/exfiltration/supply-chain risks, or when a bot suspects a skill is malicious. Guides static + optional sandbox checks, quarantines suspicious skills, and produces an owner-action checklist (Delete / Report / Allow / Scan all).

Install

npx clawhub@latest install securityclaw

Full SKILL.md

Open original
namedescription
securityclaw-skillSecurity-first skill auditing and quarantine for OpenClaw skills. Use when installing new skills, reviewing skills from unknown sources, scanning skills for prompt injection/exfiltration/supply-chain risks, or when a bot suspects a skill is malicious. Guides static + optional sandbox checks, quarantines suspicious skills, and produces an owner-action checklist (Delete / Report / Allow / Scan all).

SecurityClaw (Skill Scanner)

Use the scanner script

Run the scanner (read-only by default):

python3 scripts/securityclaw_scan.py --skills-dir ~/.openclaw/skills --out report.json

Quarantine anything suspicious (moves folders, no deletion):

python3 scripts/securityclaw_scan.py --skills-dir ~/.openclaw/skills --quarantine-dir ~/.openclaw/skills-quarantine --quarantine --out report.json

What to do when findings exist

If the report shows severity >= high for any skill:

  1. Do not execute the skill.
  2. Quarantine the skill folder.
  3. Notify the owner with:
    • skill name
    • top reasons + file/line locations
    • recommended action
  4. Await owner instruction:
    • Delete: remove quarantined skill
    • Report: prepare public report / IOCs (no secrets)
    • Allow: add allowlist entry and restore
    • Scan all: deep scan everything

Optional: sandbox/dynamic checks (advanced)

Dynamic checks are optional and should run only after owner approval.

  • Prefer running unknown code with:
    • no network egress
    • read-only filesystem except a temp workspace
    • no access to OpenClaw config/secrets

See references/sandboxing.md.

Files

  • scripts/securityclaw_scan.py — main scanner + quarantine
  • references/rules.md — rule catalog (what we flag and why)
  • references/sandboxing.md — safe sandbox strategy + what to avoid
Original URL: https://github.com/openclaw/skills/blob/main/skills/mallen-lbx/securityclaw

Related skills

If this matches your use case, these are close alternatives in the same category.

1password

Set up and use 1Password CLI (op).

amai-id

Soul-Bound Keys and Soulchain for persistent ag...

audit-badge-demo

Demo skill showcasing the audit badge workflow; still

auditing-appstore-readiness

Audit an iOS app repo

authensor-gateway

Fail-safe policy gate for OpenClaw marketplace skills.

bitwarden

Access and manage Bitwarden/Vaultwarden passwords securely