π¦ ClawHub
Openclaw Security Toolkit
by @hkall
Security guard for OpenClaw users. Audit configs, scan secrets, manage access, and generate security reports.
TERMINAL
clawhub install openclaw-security-toolkitπ About This Skill
name: "openclaw-security-guard" description: "Security guard for OpenClaw users. Audit configs, scan secrets, manage access, and generate security reports."
OpenClaw Security Guard
A comprehensive security tool for OpenClaw users to protect their AI assistant.
Features
Requirements
Commands
# Run security audit
python3 {baseDir}/scripts/main.py auditScan for secrets
python3 {baseDir}/scripts/main.py scanGenerate report
python3 {baseDir}/scripts/main.py report --format mdCheck token status
python3 {baseDir}/scripts/main.py token statusAccess control
python3 {baseDir}/scripts/main.py access listSecurity hardening
python3 {baseDir}/scripts/main.py harden --fixQuick status check
python3 {baseDir}/scripts/main.py status
Options
--format, -f Output format: json, md, table (default: table)
--lang, -l Language: en, zh (default: auto-detect)
--quiet, -q Quiet mode, only output results
--verbose, -v Verbose output
--output, -o Output file path
--deep Deep scan mode
--fix Auto-fix issues where possible
Security Checks
| Category | Checks | |----------|--------| | Config | Gateway bind, auth mode, token strength | | Secrets | API keys, tokens, passwords, private keys | | Access | Devices, users, channels, sessions | | Network | Public exposure, open ports |
Examples
# Full audit with auto-fix
python3 {baseDir}/scripts/main.py audit --deep --fixGenerate markdown report
python3 {baseDir}/scripts/main.py report --format md -o security.mdScan for specific pattern
python3 {baseDir}/scripts/main.py scan --pattern "sk-"List all paired devices
python3 {baseDir}/scripts/main.py access devicesGenerate JSON report
python3 {baseDir}/scripts/main.py report --format json
Output Formats
Table (default)
π OpenClaw Security Guard v1.0.0
ββββββββββββββββββββββββββββββββββββββββπ Security Score: 72/100 β οΈ
π΄ HIGH RISK
β’ API Key exposed in config file
Location: ~/.openclaw/openclaw.json:15
JSON
{
"score": 72,
"findings": [...]
}
Markdown
# Security Report
Score: 72/100
Languages
Auto-detected based on system locale.
License
MIT
Version
v1.0.0
π‘ Examples
# Full audit with auto-fix
python3 {baseDir}/scripts/main.py audit --deep --fixGenerate markdown report
python3 {baseDir}/scripts/main.py report --format md -o security.mdScan for specific pattern
python3 {baseDir}/scripts/main.py scan --pattern "sk-"List all paired devices
python3 {baseDir}/scripts/main.py access devicesGenerate JSON report
python3 {baseDir}/scripts/main.py report --format json
βοΈ Configuration
--format, -f Output format: json, md, table (default: table)
--lang, -l Language: en, zh (default: auto-detect)
--quiet, -q Quiet mode, only output results
--verbose, -v Verbose output
--output, -o Output file path
--deep Deep scan mode
--fix Auto-fix issues where possible