I built a 6-pass security scanner for OpenClaw skills after 824 malicious ones were found on ClawHub

In February 2026, security researchers discovered that roughly 20% of skills on ClawHub — the marketplace for OpenClaw AI agent plugins — were malicious. The "ClawHavoc" campaign had been silently distributing infostealers disguised as productivity tools. Skills that claimed to manage your calendar were actually exfiltrating your API keys, SSH credentials, and browser data to C2 servers. I built clawvet to solve this. It's a CLI tool that runs 6 independent analysis passes on any OpenClaw SKILL.md file before you install it. What it catches Most existing scanners run a single pass of regex matching. clawvet runs six: Pass What it does Skill Parser Extracts YAML frontmatter, code blocks, URLs, IPs, domains Static Analysis 54 regex patterns across 12 categories (RCE, credential theft, reverse shells, DNS exfil, obfuscation, prompt injection) Metadata Validator Flags undeclared binaries, env vars, missing descriptions, bad semver Dependency Checker Detects npx -y auto-install, global npm