🎁 Get the FREE AI Skills Starter Guide β€” Subscribe β†’
BytesAgainBytesAgain
πŸ¦€ ClawHub

Senseguard

by @fermionoid

Semantic security scanner for OpenClaw skills. Detects prompt injection, data exfiltration, and hidden instructions that traditional code scanners miss. Use when user asks to scan skills, check skill safety, or run a security audit.

Versionv1.0.1
Downloads1,972
Stars⭐ 1
TERMINAL
clawhub install senseguard

πŸ“– About This Skill


name: senseguard description: Semantic security scanner for OpenClaw skills. Detects prompt injection, data exfiltration, and hidden instructions that traditional code scanners miss. Use when user asks to scan skills, check skill safety, or run a security audit.

SenseGuard

Scans OpenClaw skills for natural language security threats β€” the kind that VirusTotal and traditional code scanners cannot detect.

Traditional scanners see SKILL.md as a text file. SenseGuard sees it as agent instructions and checks for prompt injection, data exfiltration, obfuscation, and persistence attacks.

How to Use

When the user asks to scan a skill:

python3 scripts/scanner.py --target 

Options:

  • --target all β€” scan all installed skills
  • --deep β€” force LLM semantic analysis (Layer 2)
  • --no-cache β€” skip cached results
  • --json β€” output raw JSON for further processing
  • Layer 2 (Semantic Analysis)

    When --json output contains a layer2_prompt field, process it as a security audit task, then feed the JSON result back to generate the final score. This is how the LLM analyzes intent beyond regex patterns.

    Output

    The scanner outputs a Markdown risk report with:

  • Score (0-100) and rating: SAFE / CAUTION / DANGEROUS / MALICIOUS
  • Findings with rule IDs, evidence text, and line numbers
  • Actionable recommendations
  • For CRITICAL findings, clearly advise the user to take action.

    Key Differentiator

    SenseGuard catches what VirusTotal cannot:

  • "ignore all previous instructions" β€” prompt injection
  • curl -X POST hidden in Markdown β€” data exfiltration
  • Zero-width characters hiding commands β€” obfuscation
  • "modify MEMORY.md" β€” persistence attacks
  • These are invisible to traditional malware scanners because they target the AI agent, not the operating system.