Installation

clawhub install trypto1019/arc-skill-scanner

Summary

Scans OpenClaw skill packages for security vulnerabilities before installation. Detects credential stealers, obfuscated code, data exfiltration, prompt injection in SKILL.md files, and binary tampering. Roughly 22-26% of ClawHub skills have been flagged as containing vulnerabilities.

SKILL.md

Quick overview

Scans OpenClaw skill packages for security vulnerabilities before installation. Detects credential stealers, obfuscated code, data exfiltration, prompt injection in SKILL.md files, and binary tampering. Roughly 22-26% of ClawHub skills have been flagged as containing vulnerabilities.

Manual code review of every third-party skill is impractical; this automates detection of known attack patterns across SKILL.md content, scripts, metadata, and binaries in one pass.

Common tasks

  • Scanning a ClawHub skill before installing it
  • Auditing all currently installed skills at once
  • Verifying binary checksums after a skill updates
  • Detecting typosquatted skill names mimicking popular ones
  • Generating checksum manifests for trusted skill versions

Install paths

Primary command


openclaw install trypto1019/arc-skill-scanner

ClawHub installer


npx clawhub@latest install trypto1019/arc-skill-scanner

OpenClaw CLI


openclaw skills install trypto1019/arc-skill-scanner

Direct OpenClaw install


openclaw install trypto1019/arc-skill-scanner

Skill metadata

  • Category: Coding Agents & IDEs
  • Language: Markdown
  • Version: 1.4.0
  • Security status: Benign

Review upstream source

The full public SKILL.md body is not directly fetchable for this entry right now, so this page is using the best available catalog metadata. Review the upstream source page for the latest files, version history, and security scan details: https://clawhub.ai/trypto1019/arc-skill-scanner

Recommended skills

Browse all →

Related guides

Hand-picked reading to help you choose, install, and use agent skills.