OpenClaw Skill Safety Scanner: 7.6% of 31,371 Skills Flagged as Dangerous

A developer has created an automated scanning tool that analyzes the entire ClawHub skill registry for security risks. The tool performs static analysis on every SKILL.md file and bundled scripts, checking for malware patterns, prompt injection, data exfiltration, permission abuse, and obfuscated code.
Key Findings
The scan of 31,371 skills revealed:
- 2,371 skills flagged as dangerous (approximately 7.6%)
- Average trust score across the registry: 93.2 out of 100
- Dangerous patterns found include wallet drainers, credential theft, environment variable exfiltration, curl piped to bash, and prompt injection
How It Works
The scanner uses pattern matching against known attack signatures from ClawHavoc and Cisco reports. It rescans the entire registry every 6 hours. The developer notes there are false positives, particularly with legitimate wallet skills that interact with wallets, but the tool catches obvious threats that might be missed during manual review.
How to Use It
Check a specific skill via API:
curl -s checksafe.dev/api/v1/skills/SKILL-NAME-HERE/badge.jsonFor automatic checking before every install, use the OpenClaw skill:
clawhub install agora-sentinelAccess the full database at checksafe.dev/dashboard/ and view the most dangerous skills sorted by severity at checksafe.dev/dashboard/dangerous.
Important Notes
The tool is static analysis only and won't catch everything. False positives exist, particularly with legitimate wallet tools. The developer is not affiliated with OpenClaw or ClawHub - this is a side project, not a company. The API is public with no authentication required, and badges are embeddable.
📖 Read the full source: r/openclaw
👀 See Also

Open-source playground for red-teaming AI agents with published exploits
Fabraix has open-sourced a live environment to stress-test AI agent defenses through adversarial challenges. Each challenge deploys a live agent with real tools and published system prompts, with winning conversation transcripts and guardrail logs documented publicly.

AWS reports AI-augmented attack compromised 600+ FortiGate firewalls
Cybercriminals used off-the-shelf generative AI tools to compromise over 600 internet-exposed FortiGate firewalls across 55 countries in a month-long campaign, according to AWS. The attackers scanned for exposed management interfaces, tried weak credentials, and used AI to generate attack playbooks and scripts.

OpenObscure: Open-Source On-Device Privacy Firewall for AI Agents
OpenObscure is an open-source, on-device privacy firewall that sits between AI agents and LLM providers. It uses FF1 Format-Preserving Encryption with AES-256 to encrypt PII values before requests leave your device, maintaining data structure while protecting privacy.
Static Analysis of 48 AI-Generated Apps: 90% Had Security Vulnerabilities
A developer scanned 48 public GitHub repos built with Lovable, Bolt, and Replit. 90% had at least one vulnerability. Common issues: auth gaps (44%), SECURITY DEFINER Postgres functions (33%), BOLA/IDOR (25%), and committed secrets (25%).