# Send skill-guard to your agent
Hand the extracted package to your coding agent with a concrete install brief instead of figuring it out manually.
## Fast path
- Download the package from Yavira.
- Extract it into a folder your agent can access.
- Paste one of the prompts below and point your agent at the extracted folder.
## Suggested prompts
### New install

```text
I downloaded a skill package from Yavira. Read SKILL.md from the extracted folder and install it by following the included instructions. Tell me what you changed and call out any manual steps you could not complete.
```
### Upgrade existing

```text
I downloaded an updated skill package from Yavira. Read SKILL.md from the extracted folder, compare it with my current installation, and upgrade it while preserving any custom configuration unless the package docs explicitly say otherwise. Summarize what changed and any follow-up checks I should run.
```
## Machine-readable fields
```json
{
  "schemaVersion": "1.0",
  "item": {
    "slug": "skill-guard",
    "name": "skill-guard",
    "source": "tencent",
    "type": "skill",
    "category": "开发工具",
    "sourceUrl": "https://clawhub.ai/jamesOuttake/skill-guard",
    "canonicalUrl": "https://clawhub.ai/jamesOuttake/skill-guard",
    "targetPlatform": "OpenClaw"
  },
  "install": {
    "downloadUrl": "/downloads/skill-guard",
    "sourceDownloadUrl": "https://wry-manatee-359.convex.site/api/v1/download?slug=skill-guard",
    "sourcePlatform": "tencent",
    "targetPlatform": "OpenClaw",
    "packageFormat": "ZIP package",
    "primaryDoc": "SKILL.md",
    "includedAssets": [
      "SKILL.md",
      "scripts/safe-install.sh"
    ],
    "downloadMode": "redirect",
    "sourceHealth": {
      "source": "tencent",
      "slug": "skill-guard",
      "status": "healthy",
      "reason": "direct_download_ok",
      "recommendedAction": "download",
      "checkedAt": "2026-05-12T16:47:47.230Z",
      "expiresAt": "2026-05-19T16:47:47.230Z",
      "httpStatus": 200,
      "finalUrl": "https://wry-manatee-359.convex.site/api/v1/download?slug=skill-guard",
      "contentType": "application/zip",
      "probeMethod": "head",
      "details": {
        "probeUrl": "https://wry-manatee-359.convex.site/api/v1/download?slug=skill-guard",
        "contentDisposition": "attachment; filename=\"skill-guard-1.0.2.zip\"",
        "redirectLocation": null,
        "bodySnippet": null,
        "slug": "skill-guard"
      },
      "scope": "item",
      "summary": "Item download looks usable.",
      "detail": "Yavira can redirect you to the upstream package for this item.",
      "primaryActionLabel": "Download for OpenClaw",
      "primaryActionHref": "/downloads/skill-guard"
    },
    "validation": {
      "installChecklist": [
        "Use the Yavira download entry.",
        "Review SKILL.md after the package is downloaded.",
        "Confirm the extracted package contains the expected setup assets."
      ],
      "postInstallChecks": [
        "Confirm the extracted package includes the expected docs or setup files.",
        "Validate the skill or prompts are available in your target agent workspace.",
        "Capture any manual follow-up steps the agent could not complete."
      ]
    }
  },
  "links": {
    "detailUrl": "https://openagent3.xyz/skills/skill-guard",
    "downloadUrl": "https://openagent3.xyz/downloads/skill-guard",
    "agentUrl": "https://openagent3.xyz/skills/skill-guard/agent",
    "manifestUrl": "https://openagent3.xyz/skills/skill-guard/agent.json",
    "briefUrl": "https://openagent3.xyz/skills/skill-guard/agent.md"
  }
}
```
## Documentation

### skill-guard

The only pre-install security gate for ClawHub skills.

### Why skill-guard?

VirusTotal (ClawHub built-in)skillscanner (Gen Digital)skill-guardWhen it runsAfter publish (server-side)On-demand lookupBefore install (client-side)What it checksMalware signaturesTheir databaseActual skill contentPrompt injections❌❌✅Data exfiltration URLs❌❌✅Hidden instructions❌❌✅AI-specific threats❌❌✅Install blocking❌❌✅

VirusTotal catches known malware binaries — but won't flag <!-- IGNORE PREVIOUS INSTRUCTIONS -->.

skillscanner checks if Gen Digital has reviewed it — but can't scan new or updated skills.

skill-guard uses mcp-scan (Invariant Labs, acquired by Snyk) to analyze what's actually in the skill, catches AI-specific threats, and blocks install if issues are found.

### The Problem

Skills can contain:

🎭 Prompt injections — hidden "ignore previous instructions" attacks
💀 Malware payloads — dangerous commands disguised in natural language
🔑 Hardcoded secrets — API keys, tokens in plain text
📤 Data exfiltration — URLs that leak your conversations, memory, files
⛓️ Toxic flows — instructions that chain into harmful actions

One bad skill = compromised agent. Your agent trusts skills implicitly.

### The Solution

# Instead of: clawhub install some-skill
./scripts/safe-install.sh some-skill

skill-guard:

Downloads to staging (/tmp/) — never touches your real skills folder
Scans with mcp-scan — Invariant/Snyk's security scanner for AI agents
Blocks or installs — clean skills get installed, threats get quarantined

### What It Catches

Real example — skill-guard flagged this malicious skill:

● [E004]: Prompt injection detected (high risk)
● [E006]: Malicious code pattern detected  
● [W007]: Insecure credential handling
● [W008]: Machine state compromise attempt
● [W011]: Third-party content exposure

VirusTotal: 0/76 engines. mcp-scan caught what antivirus missed.

### Usage

# Secure install (recommended)
./scripts/safe-install.sh <skill-slug>

# With version
./scripts/safe-install.sh <skill-slug> --version 1.2.3

# Force overwrite
./scripts/safe-install.sh <skill-slug> --force

### Exit Codes

CodeMeaningAction0CleanSkill installed ✓1ErrorCheck dependencies/network2Threats foundSkill quarantined in /tmp/, review before deciding

### When Threats Are Found

Skill stays in /tmp/skill-guard-staging/skills/<slug>/ (quarantined). You can:

Review — read the scan output, inspect the files
Install anyway — mv /tmp/skill-guard-staging/skills/<slug> ~/.openclaw/workspace/skills/
Discard — rm -rf /tmp/skill-guard-staging/

### Requirements

clawhub CLI — npm i -g clawhub
uv — curl -LsSf https://astral.sh/uv/install.sh | sh

### Why This Matters

Your agent has access to your files, messages, maybe your whole machine. One malicious skill can:

Read your secrets and send them elsewhere
Modify your agent's behavior permanently
Use your identity to spread to other systems

Trust, but verify. Scan before you install.
## Trust
- Source: tencent
- Verification: Indexed source record
- Publisher: jamesOuttake
- Version: 1.0.2
## Source health
- Status: healthy
- Item download looks usable.
- Yavira can redirect you to the upstream package for this item.
- Health scope: item
- Reason: direct_download_ok
- Checked at: 2026-05-12T16:47:47.230Z
- Expires at: 2026-05-19T16:47:47.230Z
- Recommended action: Download for OpenClaw
## Links
- [Detail page](https://openagent3.xyz/skills/skill-guard)
- [Send to Agent page](https://openagent3.xyz/skills/skill-guard/agent)
- [JSON manifest](https://openagent3.xyz/skills/skill-guard/agent.json)
- [Markdown brief](https://openagent3.xyz/skills/skill-guard/agent.md)
- [Download page](https://openagent3.xyz/downloads/skill-guard)