permission-creep-scanner
Helps detect permission creep in AI agent skills — flags when a skill's actual code accesses resources far.
Best use case
permission-creep-scanner is best used when you need a repeatable AI agent workflow instead of a one-off prompt.
Helps detect permission creep in AI agent skills — flags when a skill's actual code accesses resources far.
Teams using permission-creep-scanner should expect a more consistent output, faster repeated execution, less prompt rewriting.
When to use this skill
- You want a reusable workflow that can be run more than once with consistent structure.
When not to use this skill
- You only need a quick one-off answer and do not need a reusable workflow.
- You cannot install or maintain the underlying files, dependencies, or repository context.
Installation
Claude Code / Cursor / Codex
Manual Installation
- Download SKILL.md from GitHub
- Place it in
.claude/skills/permission-creep-scanner/SKILL.mdinside your project - Restart your AI agent — it will auto-discover the skill
How permission-creep-scanner Compares
| Feature / Agent | permission-creep-scanner | Standard Approach |
|---|---|---|
| Platform Support | Not specified | Limited / Varies |
| Context Awareness | High | Baseline |
| Installation Complexity | Unknown | N/A |
Frequently Asked Questions
What does this skill do?
Helps detect permission creep in AI agent skills — flags when a skill's actual code accesses resources far.
Where can I find the source code?
You can find the source code on GitHub using the link provided at the top of the page.
SKILL.md Source
# permission-creep-scanner Helps detect permission creep in AI agent skills — flags when a skill's actual code accesses resources far. ## Install ``` npx clawhub@latest install permission-creep-scanner ```
Related Skills
xmtp-cli-permissions
Manage group permissions from the XMTP CLI. Use when listing, inspecting, or updating group permissions.
skill-scanner
Scan OpenBot/Clawdbot skills for security vulnerabilities, malicious code, and suspicious patterns before installing them. Use when a user wants to audit a skill, check if a ClawHub skill is safe, scan for credential exfiltration, detect prompt injection, or review skill security. Triggers on security audit, skill safety check, malware scan, or trust verification.
Heimdall - Security Scanner for AI Agent Skills
Scan OpenClaw skills for malicious patterns before installation. Context-aware scanning with AI-powered narrative analysis.
ultimate-fork-and-skill-scanner
Scan GitHub forks and ClawHub skills for valuable changes, innovations, and enhancements.
fork-and-skill-scanner-ultimate
Scan 1,000 GitHub forks per run.
network-scanner
Scan networks to discover devices, gather MAC addresses, vendors, and hostnames. Includes safety checks to prevent accidental scanning of public networks.
security-scanner
Automated security scanning and vulnerability detection for web applications, APIs, and infrastructure.
security-skill-scanner
Security scanner for ClawdHub skills - detects suspicious patterns, manages whitelists, and monitors Moltbook for security threats.
heartbeat-scanner
Validate your agent nature through SHACL-based heartbeat analysis.
Stoic Scope Creep
A practical guide for maintaining composure and effectiveness when project boundaries expand unexpectedly. Apply Stoic philosophy to one of the most common sources of workplace frustration.
change-pdf-permissions
Change a PDF’s permission flags (edit, print, copy, forms, annotations, etc.) by uploading it to the Solutions API.
vulnerability-scanner
Advanced vulnerability analysis for OWASP 2025, supply chain security, attack surface mapping, and risk prioritization.