ClawDefender - OpenClaw Security - Prompt injection, rogue skills etc

This appears to be a legitimate security scanner, but some advertised protections are weaker than the code shows, so users should review it before relying on it as a safety gate.

Treat ClawDefender as a heuristic helper, not a complete security boundary. Review the scripts before use, be cautious with --check-url as a sole fetch gate, and only enable persistent HEARTBEAT or cron workflows if you want that ongoing behavior.