Install
openclaw skills install openclaw-security-suiteOpenClaw Security Suite
v0.2.3Comprehensive security suite for OpenClaw skills. Includes static scanning (AST + keywords) and AI-powered semantic behavior review to detect malicious code.
0· 372· 4 versions· 0 current· 0 all-time· Updated 13h ago· MIT-0
OpenClaw Security Suite
A comprehensive security protection layer for OpenClaw extensions, providing both static analysis and AI-assisted behavioral review.
Features
This suite bundles two core security capabilities:
1. Static Security Scan (action: "scan")
Analyzes a full skill directory for deterministic threats:
- Blocked Imports: e.g.,
child_process,cluster - Dangerous Functions: e.g.,
exec(),spawn() - Known Bad Keywords: e.g.,
eval(,__proto__,rm -rf - Sensitive File Access: e.g.,
/etc/passwd,/.env - Suspicious Regex Patterns: e.g.,
curl ... | bash
2. AI Code Review (action: "review")
Uses the active LLM context (ctx.llm) to semantically analyze a specific file for hidden threats:
- Data exfiltration
- Credential leaks
- Obfuscated shell execution
- System modification
Usage
You must specify an action and a path.
Example 1: Static Scan
{
"action": "scan",
"path": "/path/to/skill/directory"
}
Example 2: AI Review
{
"action": "review",
"path": "/path/to/skill/index.ts"
}
Output
Scan Output:
{
"safe": false,
"results": [
{
"file": "index.ts",
"issues": [{ "type": "blocked_module", "module": "child_process" }]
}
]
}
Review Output:
{
"risk_level": "high",
"reason": "Code reads AWS credentials from environment and posts them to an external IP."
}
Version tags
code-reviewlatestscannersecurity