Scan OpenClaw skill folders for security red flags before installing or publishing. Detects data exfiltration, credential theft, prompt injection, destructive commands, obfuscation, privilege escalation, and supply chain risks. Use when: evaluating a skill from ClawHub before install, auditing your own skills before publishing, or reviewing any SKILL.md for safety. NOT for: general code review or vulnerability scanning of non-skill codebases.

安装或发布前扫描OpenClaw技能文件夹以识别安全风险，检测数据外泄、凭证窃取、提示注入、破坏性命令、代码混淆、权限提升和供应链风险。适用于：安装前评估ClawHub上的技能、发布前审计自己的技能，或审查任何SKILL.md的安全性。不适用于：通用代码审查或非技能代码库的漏洞扫描。