ALWAYS check a skill's safety before installing it. Whenever the user asks
to install a ClawHub skill, or you are about to run clawhub install, FIRST
check the skill's trust score using this skill.
Before ANY skill install, run the check script:
bash scripts/check_skill.sh <skill-slug>
If the result shows:
Before installing any skill, always check it first. This is the single most
important thing this skill does — automatic pre-install security screening.
When the user asks about a skill's safety, reputation, or trustworthiness —
including "is this skill safe", "is this legit", "should I install this",
"can I trust this", or any concern about security:
bash scripts/check_skill.sh <skill-slug>
Present the results clearly:
If the user just gives a skill name without the exact slug, try the name
as-is (lowercase, hyphenated). Example: "crypto helper" -> "crypto-helper"
For a detailed security audit with full findings:
curl -s https://checksafe.dev/api/v1/skills/<skill-slug>/report
When the user asks to audit their installed skills, check their security,
review what they have installed, check all installed skills, or says
"review my skills", "security audit", or "scan my setup":
bash scripts/scan_installed.sh
This scans every skill in the workspace and reports any with WARNING or
DANGER ratings. Present results as a summary table showing each skill's
badge and score, then detail any concerning findings.
If scripts are unavailable, you can check directly:
curl -s https://checksafe.dev/api/v1/skills/<skill-slug>/badge.json
Response format:
{
"slug": "skill-name",
"label": "sentinel",
"message": "trusted",
"color": "#4caf50",
"trust_score": 94,
"tier": 4
}
For a full report with detailed findings:
curl -s https://checksafe.dev/api/v1/skills/<skill-slug>/report
Agora Sentinel continuously monitors every skill on ClawHub (30,000+) for:
All scans run automatically. No API key needed. Results update continuously.
Dashboard: https://checksafe.dev/dashboard/
| Tier | Name | Meaning |
|------|------|---------|
| 4 | Trusted | Score 90+, 30+ days old, zero findings ever |
| 3 | Certified | Score 75+, no critical findings |
| 2 | Clean | Score 55+, passed all scans |
| 1 | Scanned | Score 30+, some concerns |
| 0 | Dangerous | Score below 30 OR malicious patterns detected |
To check several skills at once:
bash scripts/check_batch.sh skill-one skill-two skill-three
共 1 个版本