Requirements
- Target platform
- OpenClaw
- Install method
- Manual import
- Extraction
- Extract archive
- Prerequisites
- OpenClaw
- Primary doc
- SKILL.md
Tencent SkillHub · Security & Compliance
Pincer
Security-first wrapper for installing agent skills. Scans for malware, prompt injection, and suspicious patterns before installation. Use instead of `clawhub install` for safer skill management.
skill openclawclawhub Free
Security-first wrapper for installing agent skills. Scans for malware, prompt injection, and suspicious patterns before installation. Use instead of `clawhub install` for safer skill management.
⬇ 0 downloads ★ 0 stars Unverified but indexed
Install for OpenClaw
Quick setup
- Download the package from Yavira.
- Extract the archive and review SKILL.md first.
- Import or place the package into your OpenClaw setup.
Package facts
- Download mode
- Yavira redirect
- Package format
- ZIP package
- Source platform
- Tencent SkillHub
- What's included
- README.md, SKILL.md, _meta.json, scripts/pincer.sh
Validation
- Use the Yavira download entry.
- Review SKILL.md after the package is downloaded.
- Confirm the extracted package contains the expected setup assets.
Install with your agent
Agent handoff
Hand the extracted package to your coding agent with a concrete install brief instead of figuring it out manually.
- Download the package from Yavira.
- Extract it into a folder your agent can access.
- Paste one of the prompts below and point your agent at the extracted folder.
New install
I downloaded a skill package from Yavira. Read SKILL.md from the extracted folder and install it by following the included instructions. Then review README.md for any prerequisites, environment setup, or post-install checks. Tell me what you changed and call out any manual steps you could not complete.
Upgrade existing
I downloaded an updated skill package from Yavira. Read SKILL.md from the extracted folder, compare it with my current installation, and upgrade it while preserving any custom configuration unless the package docs explicitly say otherwise. Then review README.md for any prerequisites, environment setup, or post-install checks. Summarize what changed and any follow-up checks I should run.
Trust & source
Release facts
- Source
- Tencent SkillHub
- Verification
- Indexed source record
- Version
- 1.0.1
Provenance
- Publisher
- panzacoder
- Source page
- View original listing
- Canonical URL
- Open canonical page
Documentation
pincer 🛡️
Security-first wrapper for clawhub install. Scans skills for malware, prompt injection, and suspicious patterns before installation.
Why?
Agent skills are powerful — they're basically executable documentation. The ClawHub ecosystem has already seen malware campaigns distributing infostealers via innocent-looking skills. pincer adds a security layer before you install anything.
Install
# From ClawHub clawhub install pincer # Or manually chmod +x ./scripts/pincer.sh ln -sf "$(pwd)/scripts/pincer.sh" ~/.local/bin/pincer Dependencies: clawhub — for fetching skills uvx — for mcp-scan (brew install uv) jq — for JSON parsing
Safe Install
# Instead of: clawhub install some-skill pincer install some-skill # With specific version pincer install some-skill@1.2.0
Scan Without Installing
# Scan a ClawHub skill pincer scan some-skill # Scan a local directory pincer scan ./path/to/skill # JSON output for automation pincer scan some-skill --json
Audit Installed Skills
# Quick-scan all installed skills pincer audit # JSON output pincer audit --json
Manage Trust
# Add trusted publisher (auto-approve clean skills) pincer trust add steipete # Remove from trusted pincer trust remove old-publisher # Block a publisher or skill pincer trust block suspicious-dev pincer trust block malware-skill # Unblock pincer trust unblock redeemed-dev # List all trust settings pincer trust list
View History
# See what you've installed pincer history # JSON output pincer history --json
Configuration
# Show current config pincer config show # Edit in $EDITOR pincer config edit # Reset to defaults pincer config reset
Via mcp-scan (Invariant Labs)
Prompt injection attacks Malware payloads in natural language Tool poisoning Sensitive data exposure Hard-coded secrets
Additional Pattern Detection
PatternRiskDescriptionBase64 commands🚨 HighEncoded shell commandsHex payloads🚨 HighObfuscated binary dataxattr -d quarantine🚨 HighmacOS Gatekeeper bypasscurl | sh🚨 HighPipe to shell executionPassword archives🚨 HighHidden malicious payloadsDownload + execute⚠️ Mediumchmod +x && ./ patternseval $var⚠️ MediumDynamic code executionHidden files⚠️ MediumDot-file creationPersistence⚠️ Mediumcron/launchd entries
Publisher & Provenance
Publisher reputation (trusted list) Download count threshold Skill age threshold Blocklist checking
Binary Detection
Scans for bundled executables Flags Mach-O, ELF, PE32 binaries
Risk Levels
LevelMeaningAction✅ CLEANNo issuesAuto-approve if trusted publisher⚠️ CAUTIONWarnings presentPrompt for approval🚨 DANGERSuspicious patternsBlock (override with --force)☠️ MALWAREKnown maliciousBlock (cannot override)⛔ BLOCKEDOn blocklistBlock (cannot override)
Configuration
Config: ~/.config/pincer/config.json { "trustedPublishers": ["openclaw", "steipete", "invariantlabs-ai"], "blockedPublishers": [], "blockedSkills": [], "autoApprove": "clean", "logInstalls": true, "minDownloads": 0, "minAgeDays": 0 } KeyDescriptiontrustedPublishersPublishers whose clean skills auto-approveblockedPublishersAlways block these publishersblockedSkillsAlways block these specific skillsautoApprove"clean" = auto-approve clean+trusted, "never" = always promptlogInstallsLog installations to history fileminDownloadsWarn if skill has fewer downloadsminAgeDaysWarn if skill is newer than N days
Clean Install
$ pincer install bird 🛡️ pincer v1.0.0 → Fetching bird from ClawHub... Publisher: steipete (trusted) Stats: 7363 downloads · 27 ★ · created 1 month ago 🛡️ pincer Scanning bird... → Running mcp-scan... ✅ mcp-scan: passed → Checking for suspicious patterns... ✅ Pattern check: passed → Checking external URLs... ✅ URL check: passed → Checking for bundled binaries... ✅ Binary check: passed Risk Assessment: ✅ CLEAN — No issues detected → Auto-approved (clean + trusted config). → Installing bird... ✅ Installed successfully!
Dangerous Skill Blocked
$ pincer install sketchy-tool 🛡️ pincer v1.0.0 → Fetching sketchy-tool from ClawHub... Publisher: newaccount (unknown) Stats: 12 downloads · 0 ★ · created 2 days ago 🛡️ pincer Scanning sketchy-tool... → Running mcp-scan... 🚨 mcp-scan: high-risk warnings → Checking for suspicious patterns... 🚨 Pattern check: suspicious patterns found • curl/wget piped to shell • macOS quarantine removal (xattr) → Checking external URLs... ⚠️ URL check: external URLs found • http://sketchy-domain.xyz/install → Checking for bundled binaries... ✅ Binary check: passed Risk Assessment: 🚨 DANGER — Suspicious patterns detected • mcp-scan: high-risk patterns detected • curl/wget piped to shell • macOS quarantine removal (xattr) ☠️ Install blocked. Use --force to override (not recommended).
Credits
mcp-scan by Invariant Labs — core security scanning 1Password Security Research — threat analysis that inspired this tool Snyk ToxicSkills Report — ecosystem threat research
License
MIT Stay safe out there. 🛡️
Category context
Identity, auth, scanning, governance, audit, and operational guardrails.
Source: Tencent SkillHub
Largest current source with strong distribution and engagement signals.
Package contents
Included in package
2 Docs1 Scripts1 Config
- SKILL.md
- README.md
- scripts/pincer.sh
- _meta.json