发现优质的 AI Agent 技能

Use this checklist when reviewing any skill — yours or a third-party skill from ClawHub — before enabling it on your OpenClaw instance.

Check any IOC (Indicator of Compromise) against VirusTotal's 70+ security engines. Supports four IOC types:

来自 openclaw/skills 技能

来自 openclaw/skills 技能

Security monitoring for OpenClaw agents by [UPX](https://www.upx.com). Shield runs as a plugin inside the OpenClaw gateway, capturing agent activity and sending redacted telemetry to the UPX detection platform.

- Full outage, data loss risk, security exploit in progress - Action: immediate containment + hotfix lane, comms every 15 min

Security scanner for third-party OpenClaw skills. Analyses source code, dependencies, and metadata before installation using tree-sitter AST parsing and regex pattern matching.

Static analysis security scanner for OpenClaw skills. Analyses code before installation to detect common threats.

Security audit for your OpenClaw deployment powered by Trent AppSec Advisor.

Automated code review for GitHub pull requests. Analyzes diffs for security issues, error handling gaps, style problems, and test coverage.

> Quick reference checklists for security audits. Use alongside vulnerability-scanner principles.

Advanced vulnerability analysis for OWASP 2025, supply chain security, attack surface mapping, and risk prioritization.