#601

Global Rank · of 601 Skills

slowmist-agent-security AI Agent Skill

View Source: slowmist/slowmist-agent-security

Medium

Installation

npx skills add slowmist/slowmist-agent-security --skill slowmist-agent-security

130

Installs

SlowMist Agent Security Skill πŸ›‘οΈ

A comprehensive security review framework for AI agents operating in adversarial environments.

Core principle: Every external input is untrusted until verified.

Overview

This skill provides a structured security review framework applicable to OpenClaw, Hermes Agent, and other LLM-based agent systems, covering:

  • Skill/MCP Installation β€” Detect malicious patterns before installation
  • GitHub Repository Review β€” Audit codebases for security issues
  • URL/Document Analysis β€” Scan for prompt injection and social engineering
  • On-Chain Address Review β€” AML risk assessment and transaction analysis
  • Product/Service Evaluation β€” Architecture and permission analysis
  • Social Share Review β€” Validate tools recommended in chats

Installation

The installation example below uses OpenClaw for demonstration. In practice, you can simply hand the repository URL to your agent and let it handle the installation β€” it's that easy.

Option 1: Direct Download

Download the latest release and extract to your OpenClaw workspace:

cd ~/.openclaw/workspace/skills
git clone https://github.com/slowmist/slowmist-agent-security.git

Option 2: ClawHub (when available)

clawhub install slowmist-agent-security

Quick Start

Once installed, the agent will automatically reference this framework when encountering:

  • Skill/MCP installation requests
  • Unknown GitHub repositories
  • External URLs or documents
  • Blockchain addresses
  • Product/service recommendations

Framework Structure

slowmist-agent-security/
β”œβ”€β”€ SKILL.md                    # Main framework documentation
β”œβ”€β”€ README.md                   # This file
β”œβ”€β”€ _meta.json                  # ClawHub metadata
β”œβ”€β”€ reviews/
β”‚   β”œβ”€β”€ skill-mcp.md           # Skill/MCP review guide
β”‚   β”œβ”€β”€ repository.md          # GitHub repo review guide
β”‚   β”œβ”€β”€ url-document.md        # URL/document review guide
β”‚   β”œβ”€β”€ onchain.md             # On-chain address review guide
β”‚   β”œβ”€β”€ product-service.md     # Product/service review guide
β”‚   └── message-share.md       # Social share review guide
β”œβ”€β”€ patterns/
β”‚   β”œβ”€β”€ red-flags.md           # Code-level dangerous patterns (11 categories)
β”‚   β”œβ”€β”€ social-engineering.md  # Social engineering patterns (8 categories)
β”‚   └── supply-chain.md        # Supply chain attack patterns (7 categories)
└── templates/
    β”œβ”€β”€ report-skill.md        # Skill assessment report template
    β”œβ”€β”€ report-repo.md         # Repository assessment report template
    β”œβ”€β”€ report-url.md          # URL/document assessment report template
    β”œβ”€β”€ report-onchain.md      # On-chain assessment report template
    └── report-product.md      # Product/service assessment report template

Risk Rating System

Level Meaning Agent Action
🟒 LOW Information-only, no execution, no data collection, trusted source Inform user, proceed if requested
🟑 MEDIUM Limited capability, clear scope, known source, some risk Full report with risk items, recommend caution
πŸ”΄ HIGH Involves credentials, funds, system modification, unknown source Detailed report, must have human approval
β›” REJECT Matches red-flag patterns, confirmed malicious, unacceptable design Refuse to proceed, explain why

Trust Hierarchy

Tier Source Type Scrutiny Level
1 Official project/exchange org Moderate
2 Known security teams/researchers Moderate
3 ClawHub high-download + multi-version Moderate-High
4 GitHub high-star + actively maintained High β€” verify code
5 Unknown source, new account Maximum scrutiny

Optional Integration

Usage Examples

Example 1: Skill Review

When a user asks to install a skill:

  1. Reference reviews/skill-mcp.md
  2. Scan files using patterns/red-flags.md
  3. Output report using templates/report-skill.md

Example 2: On-Chain Address Review

When a user provides a blockchain address:

  1. Validate address format
  2. Query AML risk data (via available tools)
  3. Output report using templates/report-onchain.md

Contributing

This framework is maintained by SlowMist. Contributions welcome:

  • New attack patterns
  • Improved detection rules
  • Additional review templates

Credits

License

MIT License β€” Free to use, modify, and distribute.

Security is not a feature β€” it's a prerequisite. πŸ›‘οΈ

SlowMist Β· https://slowmist.com

Installs

Installs 130
Global Rank #601 of 601

Security Audit

ath Safe
socket Safe
Alerts: 0 Score: 90
snyk Medium
zeroleaks Medium
Score: 69
EU EU-Hosted Inference API

Power your AI Agents with the best open-source models.

Drop-in OpenAI-compatible API. No data leaves Europe.

Explore Inference API

GLM

GLM 5

$1.00 / $3.20

per M tokens

Kimi

Kimi K2.5

$0.60 / $2.80

per M tokens

MiniMax

MiniMax M2.5

$0.30 / $1.20

per M tokens

Qwen

Qwen3.5 122B

$0.40 / $3.00

per M tokens

How to use this skill

1

Install slowmist-agent-security by running npx skills add slowmist/slowmist-agent-security --skill slowmist-agent-security in your project directory. Run the install command above in your project directory. The skill file will be downloaded from GitHub and placed in your project.

2

No configuration needed. Your AI agent (Claude Code, Cursor, Windsurf, etc.) automatically detects installed skills and uses them as context when generating code.

3

The skill enhances your agent's understanding of slowmist-agent-security, helping it follow established patterns, avoid common mistakes, and produce production-ready output.

What you get

Skills are plain-text instruction files β€” not executable code. They encode expert knowledge about frameworks, languages, or tools that your AI agent reads to improve its output. This means zero runtime overhead, no dependency conflicts, and full transparency: you can read and review every instruction before installing.

Compatibility

This skill works with any AI coding agent that supports the skills.sh format, including Claude Code (Anthropic), Cursor, Windsurf, Cline, Aider, and other tools that read project-level context files. Skills are framework-agnostic at the transport level β€” the content inside determines which language or framework it applies to.

Data sourced from the skills.sh registry and GitHub. Install counts and security audits are updated regularly.

EU Made in Europe

Chat with 100+ AI Models in one App.

Use Claude, ChatGPT, Gemini alongside with EU-Hosted Models like Deepseek, GLM-5, Kimi K2.5 and many more.

Start for free View pricing

Get the App:

Download on the App Store Get it on Google Play
Customer Support