vet-repo Skill | Remote OpenClaw

What it does

Scans a repository's agent configuration files for known malicious patterns before you trust or run its configurations. Checks Claude settings, skill files, MCP configs, and project instruction files. Outputs a severity-grouped report with recommendations.

Why it's useful

Catches agent-level attack vectors like hook auto-approval, hidden curl|bash chains, and instruction injection that standard code review tools don't check for.

Use cases

Auditing a cloned open-source repo before running its agent setup

Reviewing a contractor's codebase for injected agent instructions

Checking for malicious hooks after a pull request modifies .claude/

Security review before onboarding a new project with MCP integrations

Catching prompt injection attempts hidden in CLAUDE.md files

Community reviews

Comments from operators using this skill

0 comments

Log in to leave a review, rate the skill, and help the best community tools rise to the top.

Related skills

More in PDF & Documents

Browse all skills →

chrisling-dev

links-to-pdfs

Scrape documents from Notion, DocSend, PDFs.

glacier-luo

xapi-labs

Aggregated API platform for AI agents.

brianlu365ai

x-to-kindle

Send X/Twitter posts to Kindle for distraction-free reading.

glacier-luo

xapi123123

Aggregated API platform for AI agents.

crossservicesolutions

convert-to-pdf

Convert one or multiple documents to PDF by uploading them to Cross-Service-Solutions, polling until completion.

crossservicesolutions

change-pdf-permissions

Change a PDF’s permission flags (edit, print, copy, forms, annotations, etc.) by uploading it to the Solutions API.