π¦ ClawHub
Security Guardian
by @1999azzar
Automated security auditing for OpenClaw projects. Scans for hardcoded secrets (API keys, tokens) and container vulnerabilities (CVEs) using Trivy. Provides...
TERMINAL
clawhub install security-guardianπ About This Skill
name: security-guardian description: Automated security auditing for OpenClaw projects. Scans for hardcoded secrets (API keys, tokens) and container vulnerabilities (CVEs) using Trivy. Provides structured reports to help maintain a clean and secure codebase. metadata: {"openclaw":{"requires":{"skills":["mema-vault"]}}}
Security Guardian
System for automated security auditing and credential protection.
Core Workflows
1. Secret Scanning
Scan specific project directories for hardcoded credentials.scripts/scan_secrets.pypython3 $WORKSPACE/skills/security-guardian/scripts/scan_secrets.py mema-vault skill).
- Redact: Replace the plaintext secret in the source code with an environment variable or a vault lookup call.2. Container Vulnerability Scan
Analyze Docker images for vulnerabilities prior to deployment.scripts/scan_container.shbash $WORKSPACE/skills/security-guardian/scripts/scan_container.sh HIGH and CRITICAL severities. Recommend base image updates or security patches.Security Guardrails
trivy to be installed on the host system.Integration
mema-vault.