SkillAgentSearch skills...

Clawsec

A complete security skill suite for OpenClaw's and NanoClaw agents (and variants). Protect your SOUL.md (etc') with drift detection, live security recommendations, automated audits, and skill integrity verification. All from one installable suite.

GenerateConvertImprove

Install / Use

/learn @prompt-security/Clawsec
About this skill

Quality Score

0/100

Supported Platforms

Universal

README

<h1 align="center"> <img src="./img/prompt-icon.svg" alt="prompt-icon" width="40"> ClawSec: Security Skill Suite for AI Agents <img src="./img/prompt-icon.svg" alt="prompt-icon" width="40"> </h1> <div align="center">

Secure Your OpenClaw and NanoClaw Agents with a Complete Security Skill Suite

<h4>Brought to you by <a href="https://prompt.security">Prompt Security</a>, the Platform for AI Security</h4> </div> <div align="center">

Prompt Security Logo <img src="./public/img/mascot.png" alt="clawsec mascot" width="200" />

</div> <div align="center">

🌐 Live at: https://clawsec.prompt.security https://prompt.security/clawsec

CI Deploy Pages Poll NVD CVEs

</div>

🦞 What is ClawSec?

ClawSec is a complete security skill suite for AI agent platforms. It provides unified security monitoring, integrity verification, and threat intelligence-protecting your agent's cognitive architecture against prompt injection, drift, and malicious instructions.

Supported Platforms

  • OpenClaw (MoltBot, Clawdbot, and clones) - Full suite with skill installer, file integrity protection, and security audits
  • NanoClaw - Containerized WhatsApp bot security with MCP tools for advisory monitoring, signature verification, and file integrity

Core Capabilities

  • 📦 Suite Installer - One-command installation of all security skills with integrity verification
  • 🛡️ File Integrity Protection - Drift detection and auto-restore for critical agent files (SOUL.md, IDENTITY.md, etc.)
  • 📡 Live Security Advisories - Automated NVD CVE polling and community threat intelligence
  • 🔍 Security Audits - Self-check scripts to detect prompt injection markers and vulnerabilities
  • 🔐 Checksum Verification - SHA256 checksums for all skill artifacts
  • Health Checks - Automated updates and integrity verification for all installed skills

🎬 Product Demos

Animated previews below are GIFs (no audio). Click any preview to open the full MP4 with audio.

Install Demo (clawsec-suite)

Install demo animated preview

Direct link: install-demo.mp4

Drift Detection Demo (soul-guardian)

Drift detection animated preview

Direct link: soul-guardian-demo.mp4

🚀 Quick Start

For AI Agents

# Install the ClawSec security suite
npx clawhub@latest install clawsec-suite

After install, the suite can:

  1. Discover installable protections from the published skills catalog
  2. Verify release integrity using signed checksums
  3. Set up advisory monitoring and hook-based protection flows
  4. Add optional scheduled checks

Manual/source-first option:

Read https://github.com/prompt-security/clawsec/releases/latest/download/SKILL.md and follow the installation instructions.

For Humans

Copy this instruction to your AI agent:

Install ClawSec with npx clawhub@latest install clawsec-suite, then complete the setup steps from the generated instructions.

Shell and OS Notes

ClawSec scripts are split between:

  • Cross-platform Node/Python tooling (npm run build, hook/setup .mjs, utils/*.py)
  • POSIX shell workflows (*.sh, most manual install snippets)

For Linux/macOS (bash/zsh):

  • Use unquoted or double-quoted home vars: export INSTALL_ROOT="$HOME/.openclaw/skills"
  • Do not single-quote expandable vars (for example, avoid '$HOME/.openclaw/skills')

For Windows (PowerShell):

  • Prefer explicit path building:
    • $env:INSTALL_ROOT = Join-Path $HOME ".openclaw\\skills"
    • node "$env:INSTALL_ROOT\\clawsec-suite\\scripts\\setup_advisory_hook.mjs"
  • POSIX .sh scripts require WSL or Git Bash.

Troubleshooting: if you see directories such as ~/.openclaw/workspace/$HOME/..., a home variable was passed literally. Re-run using an absolute path or an unquoted home expression.

📱 NanoClaw Platform Support

ClawSec now supports NanoClaw, a containerized WhatsApp bot powered by Claude agents.

clawsec-nanoclaw Skill

Location: skills/clawsec-nanoclaw/

A complete security suite adapted for NanoClaw's containerized architecture:

  • 9 MCP Tools for agents to check vulnerabilities
    • Advisory checking and browsing
    • Pre-installation safety checks
    • Skill package signature verification (Ed25519)
    • File integrity monitoring
  • Automatic Advisory Feed - Fetches and caches advisories every 6 hours
  • Platform Filtering - Shows only NanoClaw-relevant advisories
  • IPC-Based - Container-safe host communication
  • Full Documentation - Installation guide, usage examples, troubleshooting

Advisory Feed for NanoClaw

The feed now monitors NanoClaw-specific keywords:

  • NanoClaw - Direct product name
  • WhatsApp-bot - Core functionality
  • baileys - WhatsApp client library dependency

Advisories can specify platforms: ["nanoclaw"] for platform-specific issues.

Quick Start for NanoClaw

See skills/clawsec-nanoclaw/INSTALL.md for detailed setup instructions.

Quick integration:

  1. Copy skill to NanoClaw deployment
  2. Integrate MCP tools in container
  3. Add IPC handlers and cache service on host
  4. Restart NanoClaw

📦 ClawSec Suite (OpenClaw)

The clawsec-suite is a skill-of-skills manager that installs, verifies, and maintains security skills from the ClawSec catalog.

clawsec-suite is optional orchestration; skills can still be installed directly as standalone packages.

ClawSec Skills

| Skill | Description | Installation | Compatibility | |-------|-------------|--------------|---------------| | 📡 clawsec-feed | Security advisory feed monitoring with live CVE updates | ✅ Included by default | All agents | | 🔭 openclaw-audit-watchdog | Automated daily audits with email reporting | ⚙️ Optional (install separately) | OpenClaw/MoltBot/Clawdbot | | 👻 soul-guardian | Drift detection and file integrity guard with auto-restore | ⚙️ Optional | All agents | | 🤝 clawtributor | Community incident reporting | ❌ Optional (Explicit request) | All agents |

⚠️ clawtributor is not installed by default as it may share anonymized incident data. Install only on explicit user request.

⚠️ openclaw-audit-watchdog is tailored for the OpenClaw/MoltBot/Clawdbot agent family. Other agents receive the universal skill set.

Suite Features

  • Integrity Verification - Every skill package includes checksums.json with SHA256 hashes
  • Updates - Automatic checks for new skill versions
  • Self-Healing - Failed integrity checks trigger automatic re-download from trusted releases
  • Advisory Cross-Reference - Installed skills are checked against the security advisory feed

📡 Security Advisory Feed

ClawSec maintains a continuously updated security advisory feed, automatically populated from NIST's National Vulnerability Database (NVD).

Feed URL

# Fetch latest advisories
curl -s https://clawsec.prompt.security/advisories/feed.json | jq '.advisories[] | select(.severity == "critical" or .severity == "high")'

Canonical endpoint: https://clawsec.prompt.security/advisories/feed.json
Compatibility mirror (legacy): https://clawsec.prompt.security/releases/latest/download/feed.json

Monitored Keywords

The feed polls CVEs related to:

  • OpenClaw Platform: OpenClaw, clawdbot, Moltbot
  • NanoClaw Platform: NanoClaw, WhatsApp-bot, baileys
  • Prompt injection patterns
  • Agent security vulnerabilities

Exploitability Context

ClawSec enriches CVE advisories with exploitability context to help agents assess real-world risk beyond raw CVSS scores. Newly analyzed advisories can include:

  • Exploit Evidence: Whether public exploits exist in the wild
  • Weaponization Status: If exploits are integrated into common attack frameworks
  • Attack Requirements: Prerequisites needed for successful exploitation (network access, authentication, user interaction)
  • Risk Assessment: Contextualized risk level combining technical severity with exploitability

This feature helps agents prioritize vulnerabilities that pose immediate threats versus theoretical risks, enabling smarter security decisions.

Advisory Schema

NVD CVE Advisory:

{
  "id": "CVE-2026-XXXXX",
  "severity": "critical|high|medium|low",
  "type": "vulnerable_skill",
  "platforms": ["openclaw", "nanoclaw"],
  "title": "Short description",
  "description": "Full CVE description from NVD",
  "published": "2026-02-01T00:00:00Z",
  "cvss_score": 8.8,
  "nvd_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-XXXXX",
  "exploitability_score": "high|medium|low|unknown",
  "exploitability_rationale": "Why this CVE is or is not likely exploitable in agent deployments",
  "references": ["..."],
  "action": "Recommended remediation"
}

Community Advisory:

{
  "id": "CLAW-2026-0042",
  "severity": "high",
  "type": "prompt_injection|vulnerable_skill|tampering_attempt",
  "platforms": ["nanoclaw"],
  "title": "Short description",
  "description": "Detailed description from issue",
  "published": "2026-02-01T00:00:00Z",
  "affected": ["skill-name@1.0.0"],
  "source": "Community Rep

prompt-security

View profile

View on GitHub
GitHub Stars830
CategoryDevelopment
Updated8h ago
Forks87
prompt-security/clawsec

Languages

JavaScript

Security Score

100/100

Audited on Mar 24, 2026

No findings