ClawHub

Jellyfish Security Plugin

Always-on OpenClaw security plugin with prompt-risk, behavioral-risk, and VirusTotal-backed file/site checks.

Install

openclaw plugins install clawhub:jellyfish-security-plugin

jellyfish-security-plugin

Puppetjellyfish's always-on native OpenClaw code plugin for automatic prompt-risk, behavioral-risk, and reputation-based threat checks before risky actions run.

Features

  • Auto-start plugin behavior: checks run without user input whenever monitored events occur
  • Pre-install skill scan: runs before skill installation and blocks risky skills by default
  • Detects prompt injection / instruction override attempts
  • Flags dangerous commands, risky file writes, and suspicious API usage
  • Detects secret leakage and PII exposure
  • Warns when sensitive data is about to be sent to LLM providers
  • Detects intent–action mismatch
  • Monitors browser, web fetch, search, file download, file open, and file run events
  • Checks IPs, domains, URLs, and file hashes
  • Integrates with VirusTotal, Hillstone Threat Intelligence (hs-ti), and custom TI APIs
  • Supports block / warn / log policies, allowlists, blocklists, audit logs, metrics, and caching

Native Plugin Package Markers

This repo now includes the native package files OpenClaw and ClawHub expect for a real plugin install:

  • package.json
  • openclaw.plugin.json
  • dist/index.js

Quick Start

cd c:\ALLY\diyskills\all-in-one-security
pip install -r requirements.txt
copy .env.example .env

Set your VirusTotal API key:

/sec set-vt-key <YOUR_API_KEY>

Run a manual IOC check:

python -m openclaw_security /sec check https://example.org/payload.exe

Show audit history:

python -m openclaw_security /sec audit show 20

Gateway Integration Example

from openclaw_security import OpenClawSecurityPlugin

plugin = OpenClawSecurityPlugin()

event = {
    "event_type": "file_download",
    "url": "https://downloads.example.org/tool.exe",
    "intent": "download a driver update",
}

decision = plugin.on_event(event)

if decision.status == "blocked":
    raise RuntimeError(decision.summary)
elif decision.status == "warned":
    print(decision.summary)

Gateway Chat Commands

  • /sec help
  • /sec status
  • /sec set-vt-key <API_KEY>
  • /sec check <ip|domain|url|hash>
  • /sec scan <file-or-url>
  • /sec preinstall <status|on|off>
  • /sec preflight <event_type> <target> [--intent "..."]
  • /sec audit show [count]
  • /sec audit clear
  • /sec whitelist add|remove|list <value>
  • /sec blacklist add|remove|list <value>
  • /sec stats

Why this now shows as a plugin

The repo now ships with the standard native plugin manifests, so it should be detected under the Plugins family instead of only as a skill-style package.

Manual Admin Commands

These remain available even though the plugin runs automatically:

  • security.audit.show
  • security.audit.clear
  • security.vt.setApiKey
  • security.status.show
  • security.preinstall.scan
  • Slash-command equivalents under /sec ...

Caveats

  • VirusTotal free-tier rate limits still apply.
  • Uploading unknown files to VirusTotal is disabled by default to avoid privacy leakage; enable it in config/security_config.json if desired.
  • This project ships as a drop-in plugin scaffold and may need minor adapter changes depending on your exact OpenClaw gateway runtime.