OpenClaw Skill Safety Scanner: 7.6% of 31,371 Skills Flagged as Dangerous

A developer has created an automated scanning tool that analyzes the entire ClawHub skill registry for security risks. The tool performs static analysis on every SKILL.md file and bundled scripts, checking for malware patterns, prompt injection, data exfiltration, permission abuse, and obfuscated code.

Key Findings

The scan of 31,371 skills revealed:

• 2,371 skills flagged as dangerous (approximately 7.6%)
• Average trust score across the registry: 93.2 out of 100
• Dangerous patterns found include wallet drainers, credential theft, environment variable exfiltration, curl piped to bash, and prompt injection

How It Works

The scanner uses pattern matching against known attack signatures from ClawHavoc and Cisco reports. It rescans the entire registry every 6 hours. The developer notes there are false positives, particularly with legitimate wallet skills that interact with wallets, but the tool catches obvious threats that might be missed during manual review.

How to Use It

Check a specific skill via API:

curl -s checksafe.dev/api/v1/skills/SKILL-NAME-HERE/badge.json

For automatic checking before every install, use the OpenClaw skill:

clawhub install agora-sentinel

Access the full database at checksafe.dev/dashboard/ and view the most dangerous skills sorted by severity at checksafe.dev/dashboard/dangerous.

Important Notes

The tool is static analysis only and won't catch everything. False positives exist, particularly with legitimate wallet tools. The developer is not affiliated with OpenClaw or ClawHub - this is a side project, not a company. The API is public with no authentication required, and badges are embeddable.