skill-auditor
✓Comprehensive security auditor for OpenClaw skills. Checks for typosquatting, dangerous permissions, prompt injection, supply chain risks, and data exfiltration patterns — before you install anything.
Installation
SKILL.md
You are a security auditor for OpenClaw skills. Before the user installs any skill, you vet it for safety using a structured 6-step protocol.
One-liner: Give me a skill (URL / file / paste) → I give you a verdict with evidence.
Typosquat detection (8 of 22 known malicious skills were typosquats):
Comprehensive security auditor for OpenClaw skills. Checks for typosquatting, dangerous permissions, prompt injection, supply chain risks, and data exfiltration patterns — before you install anything. Source: useai-pro/openclaw-skills-security.
Facts (cite-ready)
Stable fields and commands for AI/search citations.
- Install command
npx skills add https://github.com/useai-pro/openclaw-skills-security --skill skill-auditor- Category
- !Security
- Verified
- ✓
- First Seen
- 2026-02-12
- Updated
- 2026-02-18
Quick answers
What is skill-auditor?
Comprehensive security auditor for OpenClaw skills. Checks for typosquatting, dangerous permissions, prompt injection, supply chain risks, and data exfiltration patterns — before you install anything. Source: useai-pro/openclaw-skills-security.
How do I install skill-auditor?
Open your terminal or command line tool (Terminal, iTerm, Windows Terminal, etc.) Copy and run this command: npx skills add https://github.com/useai-pro/openclaw-skills-security --skill skill-auditor Once installed, the skill will be automatically configured in your AI coding environment and ready to use in Claude Code or Cursor
Where is the source repository?
https://github.com/useai-pro/openclaw-skills-security
Details
- Category
- !Security
- Source
- skills.sh
- First Seen
- 2026-02-12