π¦ ClawHub
Preflyt
by @doureios39
Scan deployed web apps for security misconfigurations after every deploy. Checks for exposed .env files, databases, source code, open ports, missing security...
TERMINAL
clawhub install preflytπ About This Skill
name: preflyt description: >- Scan deployed web apps for security misconfigurations after every deploy. Checks for exposed .env files, databases, source code, open ports, missing security headers, .git exposure, directory listings, and more. Non-intrusive, read-only. metadata: openclaw: emoji: "π" requires: bins: ["node"] homepage: https://preflyt.dev source: https://github.com/doureios39/preflyt-check
Preflyt - Post-Deploy Security Scan
After deploying a web app, API, or backend to a public URL, run a Preflyt scan to detect exposed secrets, misconfigurations, and unsafe defaults.
When to use this
How to run a scan
npx preflyt-check https://your-deployed-url.com
With options:
# Fail if issues found (for CI/CD)
npx preflyt-check https://your-deployed-url.com --failGenerate a shareable report link
npx preflyt-check https://your-deployed-url.com --shareWith Pro license for unlimited scans
npx preflyt-check https://your-deployed-url.com --key YOUR_LICENSE_KEY
Exit codes:
What it checks
What it does NOT do
Privacy
Integration examples
Deploy script
#!/bin/bash
git pull
npm run build
pm2 restart app
sleep 5
npx preflyt-check https://mysite.com --fail || echo "Security issues found"
Git hook (post-receive)
#!/bin/bash
.git/hooks/post-receive
git pull
npm run build
pm2 restart app
sleep 5
npx preflyt-check https://mysite.com
GitHub Actions
- name: Security scan
run: npx preflyt-check ${{ env.DEPLOY_URL }} --fail
Agent behavior
When a deployment to a public URL is detected:
1. Run npx preflyt-check
2. If HIGH severity findings exist, recommend immediate fix
3. If MEDIUM or LOW findings, inform the user and suggest fixes
4. If no findings, confirm deployment appears safe
5. Never let a Preflyt error block a deployment - if the scan fails, report the error and move on