Xpersona

Crawler Summary

pincer answer-first brief

Security-first wrapper for installing agent skills. Scans for malware, prompt injection, and suspicious patterns before installation. Use instead of `clawhub install` for safer skill management. --- name: pincer description: Security-first wrapper for installing agent skills. Scans for malware, prompt injection, and suspicious patterns before installation. Use instead of clawhub install for safer skill management. homepage: https://github.com/panzacoder/pincer metadata: openclaw: emoji: "๐Ÿฆž" requires: bins: ["pincer"] install: - id: symlink kind: script label: "Install pincer to PATH" script: | chmod +x "${S Capability contract not published. No trust telemetry is available yet. Last updated 4/15/2026.

Freshness

Last checked 4/15/2026

Best For

pincer is best for without, a, some workflows where MCP and OpenClaw compatibility matters.

Not Ideal For

Contract metadata is missing or unavailable for deterministic execution.

Evidence Sources Checked

editorial-content, GITHUB OPENCLEW, runtime-metrics, public facts pack

CardFactsSnapshotContractTrust
Claim this agent
Agent DossierGitHubSafety: 94/100

pincer

Security-first wrapper for installing agent skills. Scans for malware, prompt injection, and suspicious patterns before installation. Use instead of `clawhub install` for safer skill management. --- name: pincer description: Security-first wrapper for installing agent skills. Scans for malware, prompt injection, and suspicious patterns before installation. Use instead of clawhub install for safer skill management. homepage: https://github.com/panzacoder/pincer metadata: openclaw: emoji: "๐Ÿฆž" requires: bins: ["pincer"] install: - id: symlink kind: script label: "Install pincer to PATH" script: | chmod +x "${S

MCPself-declared
OpenClawself-declared

Public facts

4

Change events

1

Artifacts

0

Freshness

Apr 15, 2026

Verifiededitorial-contentNo verified compatibility signals

Capability contract not published. No trust telemetry is available yet. Last updated 4/15/2026.

Trust evidence available

Trust score

Unknown

Compatibility

MCP, OpenClaw

Freshness

Apr 15, 2026

Vendor

Panzacoder

Artifacts

0

Benchmarks

0

Last release

Unpublished

Executive Summary

Key links, install path, and a quick operational read before the deeper crawl record.

Verifiededitorial-content

Summary

Capability contract not published. No trust telemetry is available yet. Last updated 4/15/2026.

View Source

Setup snapshot

git clone https://github.com/panzacoder/pincer.git
  1. 1

    Setup complexity is LOW. This package is likely designed for quick installation with minimal external side-effects.

  2. 2

    Final validation: Expose the agent to a mock request payload inside a sandbox and trace the network egress before allowing access to real customer data.

Evidence Ledger

Everything public we have scraped or crawled about this agent, grouped by evidence type with provenance.

Verifiededitorial-content
Vendor (1)

Vendor

Panzacoder

profilemedium
Observed Apr 15, 2026Source linkProvenance
Compatibility (1)

Protocol compatibility

MCP, OpenClaw

contractmedium
Observed Apr 15, 2026Source linkProvenance
Security (1)

Handshake status

UNKNOWN

trustmedium
Observed unknownSource linkProvenance
Integration (1)

Crawlable docs

6 indexed pages on the official domain

search_documentmedium
Observed Apr 15, 2026Source linkProvenance

Release & Crawl Timeline

Merged public release, docs, artifact, benchmark, pricing, and trust refresh events.

Self-declaredagent-index

Docs Update

Docs refreshed: Sign in to GitHub ยท GitHub

search_documentmedium

Fresh crawlable documentation was indexed for the official domain.

Observed Apr 15, 2026

Artifacts Archive

Extracted files, examples, snippets, parameters, dependencies, permissions, and artifact metadata.

Self-declaredGITHUB OPENCLEW

Extracted files

0

Examples

6

Snippets

0

Languages

typescript

Parameters

Executable Examples

bash

# From ClawHub
clawhub install pincer

# Or manually
chmod +x ./scripts/pincer.sh
ln -sf "$(pwd)/scripts/pincer.sh" ~/.local/bin/pincer

bash

# Instead of: clawhub install some-skill
pincer install some-skill

# With specific version
pincer install some-skill@1.2.0

bash

# Scan a ClawHub skill
pincer scan some-skill

# Scan a local directory
pincer scan ./path/to/skill

# JSON output for automation
pincer scan some-skill --json

bash

# Quick-scan all installed skills
pincer audit

# JSON output
pincer audit --json

bash

# Add trusted publisher (auto-approve clean skills)
pincer trust add steipete

# Remove from trusted
pincer trust remove old-publisher

# Block a publisher or skill
pincer trust block suspicious-dev
pincer trust block malware-skill

# Unblock
pincer trust unblock redeemed-dev

# List all trust settings
pincer trust list

bash

# See what you've installed
pincer history

# JSON output
pincer history --json

Docs & README

Full documentation captured from public sources, including the complete README when available.

Self-declaredGITHUB OPENCLEW

Docs source

GITHUB OPENCLEW

Editorial quality

ready

Security-first wrapper for installing agent skills. Scans for malware, prompt injection, and suspicious patterns before installation. Use instead of `clawhub install` for safer skill management. --- name: pincer description: Security-first wrapper for installing agent skills. Scans for malware, prompt injection, and suspicious patterns before installation. Use instead of clawhub install for safer skill management. homepage: https://github.com/panzacoder/pincer metadata: openclaw: emoji: "๐Ÿฆž" requires: bins: ["pincer"] install: - id: symlink kind: script label: "Install pincer to PATH" script: | chmod +x "${S

Full README

name: pincer description: Security-first wrapper for installing agent skills. Scans for malware, prompt injection, and suspicious patterns before installation. Use instead of clawhub install for safer skill management. homepage: https://github.com/panzacoder/pincer metadata: openclaw: emoji: "๐Ÿฆž" requires: bins: ["pincer"] install: - id: symlink kind: script label: "Install pincer to PATH" script: | chmod +x "${SKILL_DIR}/scripts/pincer.sh" mkdir -p ~/.local/bin ln -sf "${SKILL_DIR}/scripts/pincer.sh" ~/.local/bin/pincer echo "" echo "โœ… pincer installed!" echo "" echo "Make sure ~/.local/bin is in your PATH:" echo ' export PATH="$HOME/.local/bin:$PATH"' echo "" echo "Usage:" echo " pincer install <skill> # Safe install with scanning" echo " pincer scan <skill> # Scan without installing" echo " pincer audit # Scan all installed skills" echo ""

pincer ๐Ÿ›ก๏ธ

Security-first wrapper for clawhub install. Scans skills for malware, prompt injection, and suspicious patterns before installation.

Why?

Agent skills are powerful โ€” they're basically executable documentation. The ClawHub ecosystem has already seen malware campaigns distributing infostealers via innocent-looking skills. pincer adds a security layer before you install anything.

Install

# From ClawHub
clawhub install pincer

# Or manually
chmod +x ./scripts/pincer.sh
ln -sf "$(pwd)/scripts/pincer.sh" ~/.local/bin/pincer

Dependencies:

  • clawhub โ€” for fetching skills
  • uvx โ€” for mcp-scan (brew install uv)
  • jq โ€” for JSON parsing

Usage

Safe Install

# Instead of: clawhub install some-skill
pincer install some-skill

# With specific version
pincer install some-skill@1.2.0

Scan Without Installing

# Scan a ClawHub skill
pincer scan some-skill

# Scan a local directory
pincer scan ./path/to/skill

# JSON output for automation
pincer scan some-skill --json

Audit Installed Skills

# Quick-scan all installed skills
pincer audit

# JSON output
pincer audit --json

Manage Trust

# Add trusted publisher (auto-approve clean skills)
pincer trust add steipete

# Remove from trusted
pincer trust remove old-publisher

# Block a publisher or skill
pincer trust block suspicious-dev
pincer trust block malware-skill

# Unblock
pincer trust unblock redeemed-dev

# List all trust settings
pincer trust list

View History

# See what you've installed
pincer history

# JSON output
pincer history --json

Configuration

# Show current config
pincer config show

# Edit in $EDITOR
pincer config edit

# Reset to defaults
pincer config reset

What It Checks

Via mcp-scan (Invariant Labs)

  • Prompt injection attacks
  • Malware payloads in natural language
  • Tool poisoning
  • Sensitive data exposure
  • Hard-coded secrets

Additional Pattern Detection

| Pattern | Risk | Description | |---------|------|-------------| | Base64 commands | ๐Ÿšจ High | Encoded shell commands | | Hex payloads | ๐Ÿšจ High | Obfuscated binary data | | xattr -d quarantine | ๐Ÿšจ High | macOS Gatekeeper bypass | | curl \| sh | ๐Ÿšจ High | Pipe to shell execution | | Password archives | ๐Ÿšจ High | Hidden malicious payloads | | Download + execute | โš ๏ธ Medium | chmod +x && ./ patterns | | eval $var | โš ๏ธ Medium | Dynamic code execution | | Hidden files | โš ๏ธ Medium | Dot-file creation | | Persistence | โš ๏ธ Medium | cron/launchd entries |

Publisher & Provenance

  • Publisher reputation (trusted list)
  • Download count threshold
  • Skill age threshold
  • Blocklist checking

Binary Detection

  • Scans for bundled executables
  • Flags Mach-O, ELF, PE32 binaries

Risk Levels

| Level | Meaning | Action | |-------|---------|--------| | โœ… CLEAN | No issues | Auto-approve if trusted publisher | | โš ๏ธ CAUTION | Warnings present | Prompt for approval | | ๐Ÿšจ DANGER | Suspicious patterns | Block (override with --force) | | โ˜ ๏ธ MALWARE | Known malicious | Block (cannot override) | | โ›” BLOCKED | On blocklist | Block (cannot override) |

Configuration

Config: ~/.config/pincer/config.json

{
  "trustedPublishers": ["openclaw", "steipete", "invariantlabs-ai"],
  "blockedPublishers": [],
  "blockedSkills": [],
  "autoApprove": "clean",
  "logInstalls": true,
  "minDownloads": 0,
  "minAgeDays": 0
}

| Key | Description | |-----|-------------| | trustedPublishers | Publishers whose clean skills auto-approve | | blockedPublishers | Always block these publishers | | blockedSkills | Always block these specific skills | | autoApprove | "clean" = auto-approve clean+trusted, "never" = always prompt | | logInstalls | Log installations to history file | | minDownloads | Warn if skill has fewer downloads | | minAgeDays | Warn if skill is newer than N days |

Examples

Clean Install

$ pincer install bird
๐Ÿ›ก๏ธ pincer v1.0.0

  โ†’ Fetching bird from ClawHub...
  Publisher: steipete (trusted)
  Stats: 7363 downloads ยท 27 โ˜… ยท created 1 month ago

๐Ÿ›ก๏ธ pincer Scanning bird...

  โ†’ Running mcp-scan...
  โœ… mcp-scan: passed
  โ†’ Checking for suspicious patterns...
  โœ… Pattern check: passed
  โ†’ Checking external URLs...
  โœ… URL check: passed
  โ†’ Checking for bundled binaries...
  โœ… Binary check: passed

Risk Assessment:
  โœ… CLEAN โ€” No issues detected

  โ†’ Auto-approved (clean + trusted config).
  โ†’ Installing bird...
  โœ… Installed successfully!

Dangerous Skill Blocked

$ pincer install sketchy-tool
๐Ÿ›ก๏ธ pincer v1.0.0

  โ†’ Fetching sketchy-tool from ClawHub...
  Publisher: newaccount (unknown)
  Stats: 12 downloads ยท 0 โ˜… ยท created 2 days ago

๐Ÿ›ก๏ธ pincer Scanning sketchy-tool...

  โ†’ Running mcp-scan...
  ๐Ÿšจ mcp-scan: high-risk warnings
  โ†’ Checking for suspicious patterns...
  ๐Ÿšจ Pattern check: suspicious patterns found
    โ€ข curl/wget piped to shell
    โ€ข macOS quarantine removal (xattr)
  โ†’ Checking external URLs...
  โš ๏ธ URL check: external URLs found
    โ€ข http://sketchy-domain.xyz/install
  โ†’ Checking for bundled binaries...
  โœ… Binary check: passed

Risk Assessment:
  ๐Ÿšจ DANGER โ€” Suspicious patterns detected
    โ€ข mcp-scan: high-risk patterns detected
    โ€ข curl/wget piped to shell
    โ€ข macOS quarantine removal (xattr)

  โ˜ ๏ธ Install blocked. Use --force to override (not recommended).

Credits

License

MIT

Stay safe out there. ๐Ÿ›ก๏ธ

Contract & API

Machine endpoints, protocol fit, contract coverage, invocation examples, and guardrails for agent-to-agent use.

MissingGITHUB OPENCLEW

Endpoints

Dossier APISnapshot APIContract APITrust API

Contract coverage

Status

missing

Auth

None

Streaming

No

Data region

Unspecified

Protocol support

MCP: self-declaredOpenClaw: self-declared

Requires: none

Forbidden: none

Guardrails

Operational confidence: low

No positive guardrails captured.
Invocation examples
curl -s "https://xpersona.co/api/v1/agents/panzacoder-pincer/snapshot"
curl -s "https://xpersona.co/api/v1/agents/panzacoder-pincer/contract"
curl -s "https://xpersona.co/api/v1/agents/panzacoder-pincer/trust"

Reliability & Benchmarks

Trust and runtime signals, benchmark suites, failure patterns, and practical risk constraints.

Missingruntime-metrics

Trust signals

Handshake

UNKNOWN

Confidence

unknown

Attempts 30d

unknown

Fallback rate

unknown

Runtime metrics

Observed P50

unknown

Observed P95

unknown

Rate limit

unknown

Estimated cost

unknown

Do not use if

Contract metadata is missing or unavailable for deterministic execution.
No benchmark suites or observed failure patterns are available.

Media & Demo

Every public screenshot, visual asset, demo link, and owner-provided destination tied to this agent.

Missingno-media
No screenshots, media assets, or demo links are available.

Related Agents

Neighboring agents from the same protocol and source ecosystem for comparison and shortlist building.

Self-declaredprotocol-neighbors
GITLAB_AI_CATALOGgitlab-mcp

Rank

83

A Model Context Protocol (MCP) server for GitLab

Traction

No public download signal

Freshness

Updated 2d ago

MCP
GITLAB_PUBLIC_PROJECTSgitlab-mcp

Rank

80

A Model Context Protocol (MCP) server for GitLab

Traction

No public download signal

Freshness

Updated 2d ago

MCP
GITLAB_AI_CATALOGrmcp-openapi

Rank

74

Expose OpenAPI definition endpoints as MCP tools using the official Rust SDK for the Model Context Protocol (https://github.com/modelcontextprotocol/rust-sdk)

Traction

No public download signal

Freshness

Updated 2d ago

MCP
GITLAB_AI_CATALOGrmcp-actix-web

Rank

72

An actix_web backend for the official Rust SDK for the Model Context Protocol (https://github.com/modelcontextprotocol/rust-sdk)

Traction

No public download signal

Freshness

Updated 2d ago

MCP
Agent hubMore from this sourceMCP agentsOpenClaw agents
Machine Appendix

Contract JSON

{
  "contractStatus": "missing",
  "authModes": [],
  "requires": [],
  "forbidden": [],
  "supportsMcp": false,
  "supportsA2a": false,
  "supportsStreaming": false,
  "inputSchemaRef": null,
  "outputSchemaRef": null,
  "dataRegion": null,
  "contractUpdatedAt": null,
  "sourceUpdatedAt": null,
  "freshnessSeconds": null
}

Invocation Guide

{
  "preferredApi": {
    "snapshotUrl": "https://xpersona.co/api/v1/agents/panzacoder-pincer/snapshot",
    "contractUrl": "https://xpersona.co/api/v1/agents/panzacoder-pincer/contract",
    "trustUrl": "https://xpersona.co/api/v1/agents/panzacoder-pincer/trust"
  },
  "curlExamples": [
    "curl -s \"https://xpersona.co/api/v1/agents/panzacoder-pincer/snapshot\"",
    "curl -s \"https://xpersona.co/api/v1/agents/panzacoder-pincer/contract\"",
    "curl -s \"https://xpersona.co/api/v1/agents/panzacoder-pincer/trust\""
  ],
  "jsonRequestTemplate": {
    "query": "summarize this repo",
    "constraints": {
      "maxLatencyMs": 2000,
      "protocolPreference": [
        "MCP",
        "OPENCLEW"
      ]
    }
  },
  "jsonResponseTemplate": {
    "ok": true,
    "result": {
      "summary": "...",
      "confidence": 0.9
    },
    "meta": {
      "source": "GITHUB_OPENCLEW",
      "generatedAt": "2026-04-16T23:29:59.353Z"
    }
  },
  "retryPolicy": {
    "maxAttempts": 3,
    "backoffMs": [
      500,
      1500,
      3500
    ],
    "retryableConditions": [
      "HTTP_429",
      "HTTP_503",
      "NETWORK_TIMEOUT"
    ]
  }
}

Trust JSON

{
  "status": "unavailable",
  "handshakeStatus": "UNKNOWN",
  "verificationFreshnessHours": null,
  "reputationScore": null,
  "p95LatencyMs": null,
  "successRate30d": null,
  "fallbackRate": null,
  "attempts30d": null,
  "trustUpdatedAt": null,
  "trustConfidence": "unknown",
  "sourceUpdatedAt": null,
  "freshnessSeconds": null
}

Capability Matrix

{
  "rows": [
    {
      "key": "MCP",
      "type": "protocol",
      "support": "unknown",
      "confidenceSource": "profile",
      "notes": "Listed on profile"
    },
    {
      "key": "OPENCLEW",
      "type": "protocol",
      "support": "unknown",
      "confidenceSource": "profile",
      "notes": "Listed on profile"
    },
    {
      "key": "without",
      "type": "capability",
      "support": "supported",
      "confidenceSource": "profile",
      "notes": "Declared in agent profile metadata"
    },
    {
      "key": "a",
      "type": "capability",
      "support": "supported",
      "confidenceSource": "profile",
      "notes": "Declared in agent profile metadata"
    },
    {
      "key": "some",
      "type": "capability",
      "support": "supported",
      "confidenceSource": "profile",
      "notes": "Declared in agent profile metadata"
    },
    {
      "key": "all",
      "type": "capability",
      "support": "supported",
      "confidenceSource": "profile",
      "notes": "Declared in agent profile metadata"
    }
  ],
  "flattenedTokens": "protocol:MCP|unknown|profile protocol:OPENCLEW|unknown|profile capability:without|supported|profile capability:a|supported|profile capability:some|supported|profile capability:all|supported|profile"
}

Facts JSON

[
  {
    "factKey": "docs_crawl",
    "category": "integration",
    "label": "Crawlable docs",
    "value": "6 indexed pages on the official domain",
    "href": "https://github.com/login?return_to=https%3A%2F%2Fgithub.com%2Fopenclaw%2Fskills%2Ftree%2Fmain%2Fskills%2Fasleep123%2Fcaldav-calendar",
    "sourceUrl": "https://github.com/login?return_to=https%3A%2F%2Fgithub.com%2Fopenclaw%2Fskills%2Ftree%2Fmain%2Fskills%2Fasleep123%2Fcaldav-calendar",
    "sourceType": "search_document",
    "confidence": "medium",
    "observedAt": "2026-04-15T05:03:46.393Z",
    "isPublic": true
  },
  {
    "factKey": "vendor",
    "category": "vendor",
    "label": "Vendor",
    "value": "Panzacoder",
    "href": "https://github.com/panzacoder/pincer",
    "sourceUrl": "https://github.com/panzacoder/pincer",
    "sourceType": "profile",
    "confidence": "medium",
    "observedAt": "2026-04-15T02:14:58.677Z",
    "isPublic": true
  },
  {
    "factKey": "protocols",
    "category": "compatibility",
    "label": "Protocol compatibility",
    "value": "MCP, OpenClaw",
    "href": "https://xpersona.co/api/v1/agents/panzacoder-pincer/contract",
    "sourceUrl": "https://xpersona.co/api/v1/agents/panzacoder-pincer/contract",
    "sourceType": "contract",
    "confidence": "medium",
    "observedAt": "2026-04-15T02:14:58.677Z",
    "isPublic": true
  },
  {
    "factKey": "handshake_status",
    "category": "security",
    "label": "Handshake status",
    "value": "UNKNOWN",
    "href": "https://xpersona.co/api/v1/agents/panzacoder-pincer/trust",
    "sourceUrl": "https://xpersona.co/api/v1/agents/panzacoder-pincer/trust",
    "sourceType": "trust",
    "confidence": "medium",
    "observedAt": null,
    "isPublic": true
  }
]

Change Events JSON

[
  {
    "eventType": "docs_update",
    "title": "Docs refreshed: Sign in to GitHub ยท GitHub",
    "description": "Fresh crawlable documentation was indexed for the official domain.",
    "href": "https://github.com/login?return_to=https%3A%2F%2Fgithub.com%2Fopenclaw%2Fskills%2Ftree%2Fmain%2Fskills%2Fasleep123%2Fcaldav-calendar",
    "sourceUrl": "https://github.com/login?return_to=https%3A%2F%2Fgithub.com%2Fopenclaw%2Fskills%2Ftree%2Fmain%2Fskills%2Fasleep123%2Fcaldav-calendar",
    "sourceType": "search_document",
    "confidence": "medium",
    "observedAt": "2026-04-15T05:03:46.393Z",
    "isPublic": true
  }
]

Sponsored

Ads related to pincer and adjacent AI workflows.