Clawsec

<h1 align="center"> <img src="./img/prompt-icon.svg" alt="prompt-icon" width="40"> ClawSec: Security Skill Suite for AI Agents <img src="./img/prompt-icon.svg" alt="prompt-icon" width="40"> </h1> <div align="center"> ## Secure Your OpenClaw and NanoClaw Agents with a Complete Security Skill Suite <h4>Brought to you by <a href="https://prompt.security">Prompt Security</a>, the Platform for AI Security</h4> </div> <div align="center">  <img src="./public/img/mascot.png" alt="clawsec mascot" width="200" /> </div> <div align="center"> 🌐 **Live at: [https://clawsec.prompt.security](https://clawsec.prompt.security) [https://prompt.security/clawsec](https://prompt.security/clawsec)** [](https://github.com/prompt-security/clawsec/actions/workflows/ci.yml) [](https://github.com/prompt-security/clawsec/actions/workflows/deploy-pages.yml) [](https://github.com/prompt-security/clawsec/actions/workflows/poll-nvd-cves.yml) </div> --- ## 🦞 What is ClawSec? ClawSec is a **complete security skill suite for AI agent platforms**. It provides unified security monitoring, integrity verification, and threat intelligence-protecting your agent's cognitive architecture against prompt injection, drift, and malicious instructions. ### Supported Platforms - **OpenClaw** (MoltBot, Clawdbot, and clones) - Full suite with skill installer, file integrity protection, and security audits - **NanoClaw** - Containerized WhatsApp bot security with MCP tools for advisory monitoring, signature verification, and file integrity ### Core Capabilities - **📦 Suite Installer** - One-command installation of all security skills with integrity verification - **🛡️ File Integrity Protection** - Drift detection and auto-restore for critical agent files (SOUL.md, IDENTITY.md, etc.) - **📡 Live Security Advisories** - Automated NVD CVE polling and community threat intelligence - **🔍 Security Audits** - Self-check scripts to detect prompt injection markers and vulnerabilities - **🔐 Checksum Verification** - SHA256 checksums for all skill artifacts - **Health Checks** - Automated updates and integrity verification for all installed skills --- ## 🎬 Product Demos Animated previews below are GIFs (no audio). Click any preview to open the full MP4 with audio. ### Install Demo (`clawsec-suite`) [](public/video/install-demo.mp4) Direct link: [install-demo.mp4](public/video/install-demo.mp4) ### Drift Detection Demo (`soul-guardian`) [](public/video/soul-guardian-demo.mp4) Direct link: [soul-guardian-demo.mp4](public/video/soul-guardian-demo.mp4) --- ## 🚀 Quick Start ### For AI Agents ```bash # Install the ClawSec security suite npx clawhub@latest install clawsec-suite ``` After install, the suite can: 1. Discover installable protections from the published skills catalog 2. Verify release integrity using signed checksums 3. Set up advisory monitoring and hook-based protection flows 4. Add optional scheduled checks Manual/source-first option: > Read https://github.com/prompt-security/clawsec/releases/latest/download/SKILL.md and follow the installation instructions. ### For Humans Copy this instruction to your AI agent: > Install ClawSec with `npx clawhub@latest install clawsec-suite`, then complete the setup steps from the generated instructions. ### Shell and OS Notes ClawSec scripts are split between: - Cross-platform Node/Python tooling (`npm run build`, hook/setup `.mjs`, `utils/*.py`) - POSIX shell workflows (`*.sh`, most manual install snippets) For Linux/macOS (`bash`/`zsh`): - Use unquoted or double-quoted home vars: `export INSTALL_ROOT="$HOME/.openclaw/skills"` - Do **not** single-quote expandable vars (for example, avoid `'$HOME/.openclaw/skills'`) For Windows (PowerShell): - Prefer explicit path building: - `$env:INSTALL_ROOT = Join-Path $HOME ".openclaw\\skills"` - `node "$env:INSTALL_ROOT\\clawsec-suite\\scripts\\setup_advisory_hook.mjs"` - POSIX `.sh` scripts require WSL or Git Bash. Troubleshooting: if you see directories such as `~/.openclaw/workspace/$HOME/...`, a home variable was passed literally. Re-run using an absolute path or an unquoted home expression. --- ## 📱 NanoClaw Platform Support ClawSec now supports **NanoClaw**, a containerized WhatsApp bot powered by Claude agents. ### clawsec-nanoclaw Skill **Location**: `skills/clawsec-nanoclaw/` A complete security suite adapted for NanoClaw's containerized architecture: - **9 MCP Tools** for agents to check vulnerabilities - Advisory checking and browsing - Pre-installation safety checks - Skill package signature verification (Ed25519) - File integrity monitoring - **Automatic Advisory Feed** - Fetches and caches advisories every 6 hours - **Platform Filtering** - Shows only NanoClaw-relevant advisories - **IPC-Based** - Container-safe host communication - **Full Documentation** - Installation guide, usage examples, troubleshooting ### Advisory Feed for NanoClaw The feed now monitors NanoClaw-specific keywords: - `NanoClaw` - Direct product name - `WhatsApp-bot` - Core functionality - `baileys` - WhatsApp client library dependency Advisories can specify `platforms: ["nanoclaw"]` for platform-specific issues. ### Quick Start for NanoClaw See [`skills/clawsec-nanoclaw/INSTALL.md`](skills/clawsec-nanoclaw/INSTALL.md) for detailed setup instructions. **Quick integration:** 1. Copy skill to NanoClaw deployment 2. Integrate MCP tools in container 3. Add IPC handlers and cache service on host 4. Restart NanoClaw --- ## 📦 ClawSec Suite (OpenClaw) The **clawsec-suite** is a skill-of-skills manager that installs, verifies, and maintains security skills from the ClawSec catalog. `clawsec-suite` is optional orchestration; skills can still be installed directly as standalone packages. ### ClawSec Skills | Skill | Description | Installation | Compatibility | |-------|-------------|--------------|---------------| | 📡 **clawsec-feed** | Security advisory feed monitoring with live CVE updates | ✅ Included by default | All agents | | 🔭 **openclaw-audit-watchdog** | Automated daily audits with email reporting | ⚙️ Optional (install separately) | OpenClaw/MoltBot/Clawdbot | | 👻 **soul-guardian** | Drift detection and file integrity guard with auto-restore | ⚙️ Optional | All agents | | 🤝 **clawtributor** | Community incident reporting | ❌ Optional (Explicit request) | All agents | > ⚠️ **clawtributor** is not installed by default as it may share anonymized incident data. Install only on explicit user request. > ⚠️ **openclaw-audit-watchdog** is tailored for the OpenClaw/MoltBot/Clawdbot agent family. Other agents receive the universal skill set. ### Suite Features - **Integrity Verification** - Every skill package includes `checksums.json` with SHA256 hashes - **Updates** - Automatic checks for new skill versions - **Self-Healing** - Failed integrity checks trigger automatic re-download from trusted releases - **Advisory Cross-Reference** - Installed skills are checked against the security advisory feed --- ## 📡 Security Advisory Feed ClawSec maintains a continuously updated security advisory feed, automatically populated from NIST's National Vulnerability Database (NVD). ### Feed URL ```bash # Fetch latest advisories curl -s https://clawsec.prompt.security/advisories/feed.json | jq '.advisories[] | select(.severity == "critical" or .severity == "high")' ``` Canonical endpoint: `https://clawsec.prompt.security/advisories/feed.json` Compatibility mirror (legacy): `https://clawsec.prompt