Go back
More in category Open on GitHub

Jump to related tools in the same category or review the original source on GitHub.

Clawdbot Tools @patfire94 Updated 2/26/2026

Skill Flag OpenClaw Skill - ClawHub

Do you want your AI agent to automate Skill Flag workflows? This free skill from ClawHub helps with clawdbot tools tasks without building custom tools from scratch.

What this skill does

Scan Clawdbot/OpenClaw skills for malicious patterns, backdoors

Install

npx clawhub@latest install skill-flag

Full SKILL.md

Open original

Skill Flag Skill šŸ›”ļø

Scan Clawdbot/OpenClaw skills for malicious patterns, backdoors, and security risks.

Created by: DarkM00n (Bug Bounty Hunter & Security Researcher)

Commands

Scan All Installed Skills

scan skills
scan all skills
security scan

Scan Specific Skill

scan skill <skill-name>
check skill <skill-name>

Scan Before Installing (URL/Path)

scan skill url <clawdhub-url>
pre-scan <skill-name>

Quick Risk Report

skill risk report
security report

How To Use

Run the scanner:

python3 skills/skill-flag/scanner.py [--skill NAME] [--all] [--verbose]

Or ask the agent:

  • "Scan all my installed skills for security issues"
  • "Check if the crypto-tracker skill is safe"
  • "Give me a security report"

What It Detects

Category Risk Level Examples
šŸ”“ Data Exfiltration CRITICAL curl/wget to external domains, fetch(), requests.post()
šŸ”“ Backdoors CRITICAL Reverse shells, nc -e, bash -i, encoded payloads
šŸ”“ Credential Theft CRITICAL Access to ~/.ssh, ~/.aws, API keys, .env files
šŸŸ  Prompt Injection HIGH "ignore previous", "system override", "new instructions"
šŸŸ  Code Execution HIGH eval(), exec(), subprocess with shell=True
šŸŸ” Persistence MEDIUM Cron jobs, systemd units, startup scripts
šŸŸ” Obfuscation MEDIUM Base64 encoded commands, hex strings, rot13
šŸŸ¢ Suspicious LOW Uncommon imports, network activity

Risk Score

Each skill gets a score from 0-100:

  • 0-20: āœ… Clean - No issues found
  • 21-40: šŸŸ¢ Low Risk - Minor concerns
  • 41-60: šŸŸ” Medium Risk - Review recommended
  • 61-80: šŸŸ  High Risk - Careful inspection needed
  • 81-100: šŸ”“ Critical - Do not use without audit

Output

Reports saved to: skills/skill-flag/reports/

Example output:

šŸ›”ļø SECURITY SCAN REPORT
ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”
Scanned: 12 skills
Clean: 9
Warnings: 2
Critical: 1

āš ļø WARNINGS:
- crypto-tracker: External API calls (expected for price data)
- web-scraper: Uses requests library

šŸ”“ CRITICAL:
- shady-skill: 
  - Line 45: curl to unknown domain
  - Line 67: Base64 encoded payload
  - Line 89: Reads ~/.ssh/id_rsa
  RECOMMENDATION: Remove immediately

Directories Scanned

  1. ~/.clawdbot/skills/ - Global installed skills
  2. ./skills/ - Workspace skills
  3. ~/.npm-global/lib/node_modules/clawdbot/skills/ - Built-in skills

False Positives

Some legitimate skills need network access or file operations. The scanner flags them for review but doesn't auto-block. Use judgment:

  • Price trackers ā†’ API calls expected āœ“
  • Email skills ā†’ Network access expected āœ“
  • File managers ā†’ File operations expected āœ“

Pro Version (Coming Soon)

  • Continuous monitoring
  • ClawdHub pre-install scanning
  • Custom whitelist/blacklist
  • Scheduled reports
  • Webhook alerts
Original URL: https://github.com/openclaw/skills/blob/main/skills/patfire94/skill-flag

Related skills

If this matches your use case, these are close alternatives in the same category.

adhd-assistant

ADHD-friendly life management assistant for OpenClaw.

adhd-ssistant

ADHD-friendly life management assistant for OpenClaw.

agent-browser

Headless browser automation CLI optimized for AI agents

agent-builder

Build high-performing OpenClaw agents end-to-end.

agent-observability-dashboard

Unified observability

agents-manager

Manage Clawdbot agents: discover, profile, track