ClawHub
Code Pluginsource linked

100% Skill Vetterv2.0.1

Skill-vetter preflight reports and install-path enforcement for OpenClaw skills/plugins.

100-percent-skill-vetter·runtime 100-percent-skill-vetter·by @tonyfenwick1982
Community code plugin. Review compatibility and verification before install.
openclaw plugins install clawhub:100-percent-skill-vetter
Latest release: v2.0.1Download zip

Capabilities

Tags
executes-codeartifact:npm-packnpm-mirror:available
configSchema
Yes
Executes code
Yes
HTTP routes
0
Runtime ID
100-percent-skill-vetter

Compatibility

Built With Open Claw Version
2026.5.26
Min Gateway Version
>=2026.5.20
Plugin Api Range
>=2026.5.20
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The runtime code is aligned with the stated skill-vetting purpose: it scans install-source files for predefined risky patterns, incorporates OpenClaw built-in scan findings, writes a Markdown report, and blocks installs only when critical findings are present.
Instruction Scope
The plugin registers disclosed startup hooks for before_install and before_tool_call, and its blocking behavior is limited to skill/plugin install paths or scanner findings. The README also discloses the coverage gap for direct terminal installs when OpenClaw does not preload plugins.
Install Mechanism
It is a community npm-pack OpenClaw plugin with no package lifecycle scripts or materialized dependencies, and scanner metadata reports clean static, SkillSpector, and VirusTotal results. The release is source-linked but lacks provenance, which is a supply-chain note rather than artifact evidence of unsafe behavior.
Credentials
Local filesystem access is proportionate to the purpose: it reads the provided install source path, skips common large/binary directories and files, and writes reports under ~/.openclaw/skill-vetter-reports. It does not make network calls or execute shell commands.
Persistence & Privilege
The plugin runs on startup and can block OpenClaw-mediated skill/plugin installs, which is high-impact behavior, but it is clearly disclosed and central to the plugin's purpose. Persistence is limited to report files in the OpenClaw user directory.
Scan Findings in Context
[SkillSpector:clean] expected: SkillSpector reported no issues; local artifact review did not find evidence contradicting that result.
[StaticScan:clean] expected: The supplied static scan reported no suspicious patterns. The sensitive strings in the code are scanner signatures, not evidence that the plugin accesses credentials or exfiltrates data.
[VirusTotal:clean] expected: VirusTotal telemetry showed no malicious or suspicious detections across the supplied engines; this supports but does not determine the benign verdict.
Assessment
Before installing, understand that this plugin will run at OpenClaw startup, inspect skill/plugin install sources, write local vetting reports, and block installs it classifies as critical. Its own documentation says it cannot cover direct terminal install commands unless the OpenClaw host loads plugins on those paths, so treat it as a useful guard rather than a complete security boundary.

Verification

Tier
source linked
Scope
artifact only
Summary
Validated package structure and linked the release to source metadata.
Source
github.com/tonyfenwick8814121/100-percent-skill-vetter
Commit
35b1511fef00
Tag
main
Provenance
No
Scan status
clean

Tags

latest
2.0.1

100% Skill Vetter

OpenClaw install preflight guard for skills and plugins. It writes a skill-vetter style report before activation/use, blocks critical findings, and blocks agent tool calls that try to install skills/plugins without going through the vetting path.

What It Covers

  • before_install: scans extracted/local skill and plugin install sources before OpenClaw activates or uses them.
  • before_tool_call: blocks agent tool calls that invoke openclaw plugins install, openclaw skills install, or obvious internal install tools.
  • Reports: writes Markdown reports to ~/.openclaw/skill-vetter-reports/.
  • Critical findings: blocks install before activation/use.
  • Warning findings: allows install but returns warnings and points to the report.

Important Limit

This plugin alone cannot intercept a human running openclaw plugins install ... in a terminal if that OpenClaw command path does not preload plugins. On OpenClaw 2026.5.20, this is the remaining gap I verified locally.

To make the name literally true, pair this plugin with an OpenClaw core policy change that preloads plugins for:

  • openclaw plugins install
  • openclaw plugins update
  • openclaw skills install
  • openclaw skills update

See docs/COVERAGE.md.

Install

ClawHub:

clawhub package download 100-percent-skill-vetter

Local checkout:

openclaw plugins install /path/to/100-percent-skill-vetter
openclaw plugins enable 100-percent-skill-vetter

After installing, restart the OpenClaw gateway so runtime hooks load.

中文说明

100% Skill Vetter 是一个 OpenClaw 技能/插件安装前审查插件。它会在 skill/plugin 真正激活或使用前生成审查报告;发现 critical 风险时直接阻断安装;同时通过 before_tool_call 拦截 agent 试图调用安装命令或内部安装工具的行为。

可在 ClawHub 搜索:

100-percent-skill-vetter

报告位置:

~/.openclaw/skill-vetter-reports/

重要限制

仅靠插件本身,无法拦截用户在终端直接运行的 openclaw plugins install ...,前提是当前 OpenClaw 版本没有在该 CLI 路径预加载插件。我在 OpenClaw 2026.5.20 上验证过,这是当前真实缺口。

如果要做到字面意义上的“100% 全路径覆盖”,需要同时改 OpenClaw 核心命令策略,让安装/更新命令加载插件 hook。详见 docs/COVERAGE.md

License

MIT