clawsec-suite

The clawsec-suite is a comprehensive security management bundle for OpenClaw designed to monitor for vulnerable or malicious skills. It implements robust defensive patterns, including Ed25519 cryptographic signature verification for its advisory feed, SHA-256 checksum validation for artifacts, and a hardened 'secureFetch' wrapper in 'hooks/clawsec-advisory-guardian/lib/feed.mjs' that enforces TLS 1.2+ and restricts network egress to an allowlist of trusted domains (e.g., clawsec.prompt.security). The suite uses a 'guarded' installation flow ('scripts/guarded_skill_install.mjs') and persistent hooks to alert users of threats, but it strictly adheres to an approval-gated model where no destructive actions (like skill removal) occur without explicit user confirmation. The code is well-documented, transparent about its persistence mechanisms (cron/hooks), and lacks any indicators of malicious intent or unauthorized data exfiltration.