ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Juniper Hardening

v1.0.0

Professional Juniper Network Security Configuration Generator for enterprise-grade network hardening.

0· 105·0 current·0 all-time
byToolWeb@krishnakumarmahadevan-cmd

Install

OpenClaw Prompt Flow

Install with OpenClaw

Best for remote or guided setup. Copy the exact prompt, then paste it into OpenClaw for krishnakumarmahadevan-cmd/toolweb-juniper-hardening.

Previewing Install & Setup.
Prompt PreviewInstall & Setup
Install the skill "Juniper Hardening" (krishnakumarmahadevan-cmd/toolweb-juniper-hardening) from ClawHub.
Skill page: https://clawhub.ai/krishnakumarmahadevan-cmd/toolweb-juniper-hardening
Keep the work scoped to this skill only.
After install, inspect the skill metadata and help me finish setup.
Use only the metadata you can verify from ClawHub; do not invent missing requirements.
Ask before making any broader environment changes.

Command Line

CLI Commands

Use the direct CLI path if you want to install manually and keep every step visible.

OpenClaw CLI

Bare skill slug

openclaw skills install toolweb-juniper-hardening

ClawHub CLI

Package manager switcher

npx clawhub@latest install toolweb-juniper-hardening
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
The name, description, SKILL.md and openapi.json consistently describe a Juniper hardening configuration generator that calls an external API (api.mkkpro.com / toolweb.in). That aligns with the stated purpose. However, the skill metadata declares no required credentials despite pricing and external API links suggesting a subscription/API key may be needed.
Instruction Scope
SKILL.md is instruction-only and documents endpoints and request/response formats; it does not instruct the agent to read local files or secrets. It does implicitly direct the agent to contact external endpoints (api.mkkpro.com / toolweb.in), which means user-provided configuration or examples could be transmitted externally — expected for an API wrapper, but worth noting.
Install Mechanism
No install spec and no code files — lowest-risk delivery model (instruction-only). Nothing is downloaded or written to disk by the skill itself.
!
Credentials
The skill declares no required env vars or primary credential, but SKILL.md references a paid API (pricing table and external docs). A production API of this type typically requires an API key or token; the absence of any declared credential is an inconsistency that could hide required secrets or cause the agent to try network requests without proper auth or to prompt the user for credentials at runtime.
Persistence & Privilege
always is false, and there is no indication the skill requests permanent presence or modifies other skills or agent-wide settings. Autonomous invocation is allowed (platform default) but not combined with other high-risk properties.
What to consider before installing
This skill appears to be a straightforward API client for a Juniper hardening service, but the publisher and homepage are missing and no credentials are declared even though the docs/pricing imply a paid API. Before installing or using it: verify the service owner and domain (toolweb.in / api.mkkpro.com), confirm how authentication is handled (will you need to supply an API key or token?), and read the external API's privacy/terms to understand what configuration data will be sent and stored. Test with non-sensitive or synthetic device data first. If you need offline/local-only generation of sensitive network configs, prefer a tool that runs locally and declares no external network calls.

Like a lobster shell, security has layers — review code before you run it.

latestvk97fp72dbryx3thz8pwrgw64s183xwb1
105downloads
0stars
1versions
Updated 4w ago
v1.0.0
MIT-0
ToolWeb@krishnakumarmahadevan-cmd
latest
Download

Overview

The Juniper OS Security Hardening Tool is a professional-grade API that generates production-ready security hardening configurations for Juniper Networks devices. Designed for network security engineers and infrastructure teams, this tool automates the creation of security policies, access controls, and hardened baseline configurations aligned with industry best practices and compliance standards.

This tool streamlines the deployment of security configurations across Juniper environments by providing templated, validated hardening options that reduce manual configuration errors and accelerate security implementation timelines. The API returns ready-to-deploy configuration files that can be directly applied to Juniper OS systems.

Ideal users include network administrators, security architects, DevSecOps engineers, and compliance teams responsible for maintaining secure Juniper network infrastructure in enterprise, government, and regulated industry environments.

Usage

Example Request:

Generate a hardening configuration with SSH lockdown and firewall policy options:

{
  "hardeningOptions": {
    "sshConfig": ["disable-password-auth", "change-default-port"],
    "firewallPolicy": ["block-all-inbound", "enable-stateful-inspection"],
    "authentication": ["enable-mfa", "enforce-strong-passwords"]
  },
  "sessionId": "sess_a1b2c3d4e5f6g7h8",
  "userId": 12345,
  "timestamp": "2025-01-15T14:30:00Z"
}

Example Response:

{
  "status": "success",
  "configId": "cfg_9x8y7z6a5b4c3d2e",
  "hardeningConfiguration": {
    "sshConfig": {
      "passwordAuthentication": "no",
      "port": "2222",
      "protocol": "2",
      "permitRootLogin": "no",
      "x11Forwarding": "no"
    },
    "firewallPolicy": {
      "defaultInboundPolicy": "deny",
      "statefulInspection": "enabled",
      "loggingLevel": "info"
    },
    "authentication": {
      "multiFactorAuth": "enabled",
      "passwordMinLength": 16,
      "passwordExpiry": 90
    }
  },
  "configurationFile": "set system host-name juniper-hardened\nset system time-zone UTC\nset system services ssh...",
  "appliedAt": "2025-01-15T14:30:15Z",
  "timestamp": "2025-01-15T14:30:15Z"
}

Endpoints

GET /

Health Check Endpoint

Returns the health status of the API service.

Parameters: None

Response:

Status: 200 OK
Content-Type: application/json
{
  "status": "operational",
  "version": "1.0.0"
}

POST /api/juniper/generate

Generate Hardening Configuration

Generates production-ready Juniper OS security hardening configuration files based on specified hardening options.

Parameters:

NameTypeRequiredDescription
hardeningOptionsObject (string arrays)YesKey-value map of hardening categories to option arrays. Keys represent configuration domains (e.g., sshConfig, firewallPolicy, authentication), values are arrays of specific hardening measures to apply.
sessionIdStringYesUnique session identifier for request tracking and audit logging.
userIdInteger or NullNoOptional user identifier for attribution and usage analytics.
timestampStringYesISO 8601 formatted timestamp (e.g., 2025-01-15T14:30:00Z) marking request creation time.

Response (200):

Content-Type: application/json
{
  "status": "success",
  "configId": "string",
  "hardeningConfiguration": { ... },
  "configurationFile": "string",
  "appliedAt": "string",
  "timestamp": "string"
}

Response (422 - Validation Error):

Content-Type: application/json
{
  "detail": [
    {
      "loc": ["body", "sessionId"],
      "msg": "field required",
      "type": "value_error.missing"
    }
  ]
}

GET /api/juniper/options

Get Hardening Options

Retrieves all available Juniper hardening configuration options, categories, and valid parameter values.

Parameters: None

Response (200):

Content-Type: application/json
{
  "sshConfig": [
    "disable-password-auth",
    "change-default-port",
    "disable-root-login",
    "disable-x11-forwarding",
    "enforce-key-exchange-algorithms"
  ],
  "firewallPolicy": [
    "block-all-inbound",
    "enable-stateful-inspection",
    "enable-dos-protection",
    "enforce-connection-limiting"
  ],
  "authentication": [
    "enable-mfa",
    "enforce-strong-passwords",
    "enable-account-lockout",
    "set-password-expiry"
  ],
  "syslog": [
    "enable-centralized-logging",
    "set-log-retention-90-days"
  ],
  "snmp": [
    "disable-snmpv2",
    "enforce-snmpv3-encryption"
  ]
}

Pricing

PlanCalls/DayCalls/MonthPrice
Free550Free
Developer20500$39/mo
Professional2005,000$99/mo
Enterprise100,0001,000,000$299/mo

About

ToolWeb.in - 200+ security APIs, CISSP & CISM, platforms: Pay-per-run, API Gateway, MCP Server, OpenClaw, RapidAPI, YouTube.

References

Comments

Loading comments...