Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
暂无可比对内容
需要至少一个上一版本,才能生成差异对比。
Security Scan
状态
clean
OpenClaw
gpt-5-mini
OpenClaw 分析
The skill is an instruction-only vetting checklist that is internally consistent with its purpose and requests no credentials, installs, or unusual privileges.
置信度: high
VirusTotal
Type: OpenClaw Skill Name: skill-vetter Version: 1.0.0 This skill, 'skill-vetter', is designed to help AI agents identify security risks in other skills. The `SKILL.md` file outlines a vetting protocol, including a comprehensive list of 'RED FLAGS' for agents to look for in untrusted code. The 'Quick Vet Commands' section uses `curl` to fetch metadata and file contents from GitHub (api.github.com, raw.githubusercontent.com) for *other* skills, which is directly aligned with its stated purpose of vetting. There is no evidence of malicious intent, data exfiltration, or harmful prompt injection against the agent itself; rather, it instructs the agent on how to detect such behaviors in external skills.