审查 ClawHub skills 的安全性,检测恶意代码、可疑模式和社工攻击。在安装任何第三方 skill 前使用此工具进行安全检查。
数据来源:ClawHub。 在 ClawSkills 查看
选择你使用的 Agent
方法一:命令行安装(推荐)
推荐(无需提前安装 clawhub)
npx clawhub@latest --dir ~/.claude/skills install skill-auditor-pro或使用 clawhub CLI(需提前安装)
clawhub --dir ~/.claude/skills install skill-auditor-pro⚠️ 需要 Node.js 18+,没有 Node?请使用下方方法二直接下载 ZIP。 安装 Node.js →
方法二:手动下载安装(无需 Node)
下载 ZIP,解压后将文件夹放到以下路径,重启 Agent 即可:
安装路径
~/.claude/skills/skill-auditor-pro/💡解压后将文件夹放到上方路径,重启 Agent 即可生效
--- name: skill-auditor version: 2.1.1 description: Security scanner for ClawHub skills. Detects malicious code, obfuscated payloads, and social engineering before installation. Three-layer analysis: pattern matching, deobfuscation, and LLM intent analysis. author: sypsyp97 ---
Audit ClawHub skills for security threats before installing them.
Use this skill when:
# Inspect without installing
clawhub inspect <skill-name>
# Run the audit script
~/.openclaw/workspace/skills/skill-auditor/scripts/audit.sh <skill-name>
~/.openclaw/workspace/skills/skill-auditor/scripts/audit.sh --local <skill-path>
| Severity | Pattern | Risk | |----------|---------|------| | 🔴 High | base64.\|.bash | Encoded execution | | 🔴 High | curl.\|.bash | Remote script execution | | 🔴 High | eval\( / exec\( | Dynamic code execution | | 🔴 High | Known C2 server IPs | Malicious communication | | 🟡 Medium | Access to ~/.openclaw/ | Config theft | | 🟡 Medium | Reads $API_KEY etc. | Credential leakage | | 🟡 Medium | Social engineering keywords | User deception | | 🟢 Low | Requires sudo | Elevated privileges |
Automatically decodes hidden malicious payloads:
\x41\x42 format stringsUses Gemini CLI to analyze suspicious code intent:
gemini CLI installed91.92.242.30 # ClawHavoc primary server
glot.io # Hosts obfuscated scripts
webhook.site # Data exfiltration endpoint
OpenClawDriver # Non-existent "driver"
ClawdBot Driver # Social engineering lure
Required Driver # Tricks users into installing malware
═══════════════════════════════════════════
SKILL AUDIT REPORT: <skill-name>
═══════════════════════════════════════════
🔴 HIGH RISK FINDINGS:
[LINE 23] base64 encoded execution detected
[LINE 45] curl|bash pattern found
🟡 MEDIUM RISK FINDINGS:
[LINE 12] Accesses ~/.openclaw/ directory
🟢 LOW RISK FINDINGS:
[LINE 5] Requires sudo for installation
═══════════════════════════════════════════
VERDICT: ❌ DO NOT INSTALL
═══════════════════════════════════════════
Update this skill when new threats are discovered:
MALICIOUS_IPSMALICIOUS_DOMAINSSOCIAL_ENGINEERINGUpdate location: variable definitions at the top of scripts/audit.sh
安装 Skill Auditor Pro 后,可以对 AI 说这些话来触发它
Help me get started with Skill Auditor Pro
Explains what Skill Auditor Pro does, walks through the setup, and runs a quick demo based on your current project
Use Skill Auditor Pro to review security with ClawHub skills to detect malicious code, suspi...
Invokes Skill Auditor Pro with the right parameters and returns the result directly in the conversation
What can I do with Skill Auditor Pro in my general tools workflow?
Lists the top use cases for Skill Auditor Pro, with example commands for each scenario
将技能文件夹放到 ~/.claude/skills/skill-auditor-pro/ 目录(个人级,所有项目可用),或 .claude/skills/skill-auditor-pro/(项目级)。重启 AI 客户端后,用 /skill-auditor-pro 主动调用,或让 AI 根据上下文自动发现并使用。
Skill Auditor Pro 支持 Claude、Cursor、OpenClaw,可与这些 AI 平台无缝集成,扩展其能力。
Skill Auditor Pro 可免费安装使用。请查阅仓库了解许可证信息。
审查 ClawHub skills 的安全性,检测恶意代码、可疑模式和社工攻击。在安装任何第三方 skill 前使用此工具进行安全检查。
Skill Auditor Pro 属于「General Tools」分类,该分类的技能帮助 AI 智能体在此领域执行专业任务。
Automate my general tools tasks using Skill Auditor Pro
Identifies repetitive steps in your workflow and sets up Skill Auditor Pro to handle them automatically