clawguard
Scan AI agent skills for security threats — static analysis, LLM semantic analysis, prompt injection, attack chains, and Docker sandbox with honeypot traps.
Best use case
clawguard is best used when you need a repeatable AI agent workflow instead of a one-off prompt.
Scan AI agent skills for security threats — static analysis, LLM semantic analysis, prompt injection, attack chains, and Docker sandbox with honeypot traps.
Teams using clawguard should expect a more consistent output, faster repeated execution, less prompt rewriting.
When to use this skill
- You want a reusable workflow that can be run more than once with consistent structure.
When not to use this skill
- You only need a quick one-off answer and do not need a reusable workflow.
- You cannot install or maintain the underlying files, dependencies, or repository context.
Installation
Claude Code / Cursor / Codex
Manual Installation
- Download SKILL.md from GitHub
- Place it in
.claude/skills/skill/SKILL.mdinside your project - Restart your AI agent — it will auto-discover the skill
How clawguard Compares
| Feature / Agent | clawguard | Standard Approach |
|---|---|---|
| Platform Support | Not specified | Limited / Varies |
| Context Awareness | High | Baseline |
| Installation Complexity | Unknown | N/A |
Frequently Asked Questions
What does this skill do?
Scan AI agent skills for security threats — static analysis, LLM semantic analysis, prompt injection, attack chains, and Docker sandbox with honeypot traps.
Where can I find the source code?
You can find the source code on GitHub using the link provided at the top of the page.
SKILL.md Source
# ClawGuard - Security Scanner for AI Agent Skills ## Quick Start ```bash # Scan a skill clawguard scan ./my-skill # Deep scan (includes semantic LLM analysis) clawguard scan --deep ./my-skill # Scan with Docker sandbox + honeypot traps clawguard sandbox ./my-skill # Scan all skills in a directory clawguard scan ./skills/* # Visualize attack intent graph clawguard graph ./my-skill # Interactive config setup clawguard config ``` ## Scan Modes - **Static Analysis**: 60+ patterns for credential theft, code injection, persistence, obfuscation - **Semantic Analysis** (`--deep`): LLM-powered intent understanding via Claude/OpenAI/Ollama - **Sandbox** (`sandbox`): Docker container with honeypot credentials to catch runtime attacks - **Attack Chains**: Multi-skill combination analysis for coordinated threats - **Credential Access**: Detects access to ~/.ssh, ~/.aws, API keys, env vars ## Output Formats ```bash clawguard scan ./skill --format json # JSON output clawguard scan ./skill --format text # Human-readable (default) ``` ## Config Config lives at `~/.config/clawguard/config.json`. Run `clawguard config` for interactive setup. Set your LLM provider for semantic analysis: - Anthropic (Claude) — recommended - OpenAI - Ollama (local, free)
Related Skills
weather-checker
Check current weather conditions
data-processor
Process data files
helpful-assistant
A helpful assistant skill
shell-enhancer
Enhances your shell experience
helpful-installer
Helps install useful tools
Config Backup Utility
Backs up your important configuration files for safekeeping.
config-helper
Helps with configuration
Daily Digest Bot
Sends daily summaries of your notes and memories to keep you informed.
Notes Manager
A simple skill to help organize and backup important notes.
VibeCollab — Setup Instructions for AI Assistants
You are helping a user set up VibeCollab in their project.
raycast-extension-docs
Guidance for building, debugging, and publishing Raycast extensions using the Raycast documentation set. Use when Codex needs to create or modify Raycast extensions (React/TypeScript/Node), consult Raycast API reference or UI components, build AI extensions, handle manifest/lifecycle/preferences, troubleshoot issues, or prepare/publish extensions to the Raycast Store or Teams.
evomap
Connect to the EvoMap collaborative evolution marketplace. Publish Gene+Capsule bundles, fetch promoted assets, claim bounty tasks, register as a worker, create and express recipes, collaborate in sessions, bid on bounties, resolve disputes, and earn credits via the GEP-A2A protocol. Use when the user mentions EvoMap, evolution assets, A2A protocol, capsule publishing, agent marketplace, worker pool, recipe, organism, session collaboration, or service marketplace.