skill-vetter

Security vetting for AI agent skills. Use before installing any skill from ClawHub, GitHub, or other sources.

Safety Notice

This listing is imported from skills.sh public index metadata. Review upstream SKILL.md and repository scripts before running.

Copy this and send it to your AI assistant to learn

Install skill "skill-vetter" with this command: npx skills add maxmilneaus/installer-pack/maxmilneaus-installer-pack-skill-vetter

Skill Vetter 🔒

Never install a skill without vetting it first.

When to Use

  • Before installing any skill from ClawHub, GitHub, or external sources
  • When evaluating skills shared by other agents

Step 1: Source Check

  • Where did it come from?
  • Author known/reputable?
  • Downloads/stars?
  • Last updated?

Step 2: Code Review (MANDATORY)

Read ALL files. Reject immediately if you see:

🚨 REJECT:
• curl/wget to unknown URLs
• Sends data to external servers
• Requests credentials/tokens/API keys
• Reads ~/.ssh, ~/.aws, ~/.config without reason
• Accesses MEMORY.md, USER.md, SOUL.md, IDENTITY.md
• base64 decode
• eval()/exec() with external input
• Modifies system files outside workspace
• Installs unlisted packages
• Network calls to IPs instead of domains
• Obfuscated/minified code
• Requests sudo
• Accesses browser cookies/sessions
• Touches credential files

Step 3: Permission Scope

  • Files read/written?
  • Commands run?
  • Network access? To where?
  • Scope minimal for stated purpose?

Step 4: Risk Classification

LevelExamplesAction
🟢 LOWNotes, weather, formattingBasic review, install OK
🟡 MEDIUMFile ops, browser, APIsFull code review
🔴 HIGHCredentials, trading, systemHuman approval required
⛔ EXTREMESecurity configs, rootDo NOT install

Output

SKILL VETTING REPORT
═══════════════════════
Skill: [name] | Source: [origin] | Author: [name] | Version: [ver]
Metrics: [downloads/stars] | Updated: [date] | Files: [count]
Red Flags: [None / list]
Permissions: Files: [list] | Network: [list] | Commands: [list]
Risk: [🟢/🟡/🔴/⛔]
Verdict: [✅ SAFE / ⚠️ CAUTION / ❌ DO NOT INSTALL]
Notes: [observations]
═══════════════════════

Quick Vet (GitHub)

curl -s "https://api.github.com/repos/OWNER/REPO" | jq '{stars: .stargazers_count, forks: .forks_count, updated: .updated_at}'
curl -s "https://api.github.com/repos/OWNER/REPO/contents/skills/SKILL_NAME" | jq '.[].name'

Trust Hierarchy

  1. Official OpenClaw → lower scrutiny (still review)
  2. High-star repos (1000+) → moderate
  3. Known authors → moderate
  4. Unknown sources → maximum
  5. Requesting credentials → human approval always

Completion Checklist

  • Source checked
  • All files read, red flags checked
  • Permission scope assessed
  • Risk level assigned
  • Verdict delivered

Unchecked = not done.

Paranoia is a feature. 🔒🦀

Credits

Originally by adamb0mbNZClawHub.

Source Transparency

This detail page is rendered from real SKILL.md content. Trust labels are metadata-based hints, not a safety guarantee.

Open in GitHubOpen in ClawHub

Related Skills

Related by shared tags or category signals.

Security

installer-auditor

No summary provided by upstream source.

Repository SourceNeeds Review
6-maxmilneaus
General

installer-tester

No summary provided by upstream source.

Repository SourceNeeds Review
6-maxmilneaus
Security

skill-vetter

No summary provided by upstream source.

Repository SourceNeeds Review
6.3K-useai-pro
General

skill-vetter

No summary provided by upstream source.

Repository SourceNeeds Review
278-app-incubator-xyz