openclaw-security
Unified security suite for agent workspaces. Installs, configures, and orchestrates all 11 OpenClaw security tools in one command — integrity, secrets, permissions, network, audit trail, signing, supply chain, credentials, injection defense, compliance, and incident response.
Why use this skill?
Install, configure, and orchestrate 11 essential security tools for your OpenClaw agent workspace. Automate scanning, compliance, and defense.
Install via CLI (Recommended)
clawhub install openclaw/skills/skills/dexiaong/openclaw-securityuppWhat This Skill Does
The openclaw-security skill serves as the central orchestration engine for the entire OpenClaw security ecosystem. Rather than managing individual security modules separately, this skill allows users to manage a suite of 11 distinct tools—including warden, sentry, arbiter, egress, ledger, signet, sentinel, vault, bastion, marshal, and triage—through a single, unified interface. It simplifies the installation, configuration, auditing, and maintenance of your workspace security posture, ensuring that integrity, compliance, and threat mitigation are handled consistently across your agent environments.
Installation
To integrate this comprehensive security suite into your environment, use the OpenClaw command-line interface. Ensure your system meets the Python 3.8+ requirement before executing the following command:
clawhub install openclaw/skills/skills/dexiaong/openclaw-securityupp
Once installed, you must initialize the environment using the setup command to generate your baseline integrity checks and audit ledgers: python3 {baseDir}/scripts/security.py setup --workspace /path/to/workspace.
Use Cases
This skill is essential for teams requiring standardized security protocols. Use it to conduct full-system scans for prompt injections and unauthorized credentials, audit file permissions for policy violations, and maintain cryptographically signed audit trails for compliance. It is particularly effective for hardening workspace integrity against supply chain attacks and managing incident response workflows during security alerts.
Example Prompts
- "OpenClaw, run a full security scan on my current project directory and summarize any detected policy violations."
- "Update all my installed security tools to the latest versions from ClawHub and perform a health check on the sentinel supply chain scanner."
- "Show me the status of the audit ledger and list any unauthorized permission changes detected by the arbiter tool this week."
Tips & Limitations
For maximum effectiveness, ensure your workspace paths are correctly mapped within the script arguments. While the tool is cross-platform, note that Pro features such as automated quarantine and remediation require paid-tier credentials; free users are limited to detection and reporting functionality. Always perform a manual backup before running high-level remediation commands like the 'protect' suite to avoid unintended modifications to critical project files.
Metadata
Not sure this is the right skill?
Describe what you want to build — we'll match you to the best skill from 16,000+ options.
Find the right skillPaste this into your clawhub.json to enable this plugin.
{
"plugins": {
"official-dexiaong-openclaw-securityupp": {
"enabled": true,
"auto_update": true
}
}
}Tags(AI)
Flags: file-read, file-write, code-execution
Related Skills
omnicog
Universal service integration for OpenClaw — connect Reddit, Steam, Spotify, GitHub, Discord, and more with a single API.
chaterimo
AI Customer Service for Shopify & E-commerce - Query conversations, analyze chatbot performance, and manage your Chaterimo AI assistant
lulu-monitor
AI-powered LuLu Firewall companion for macOS. Monitors firewall alerts, analyzes connections with AI, sends Telegram notifications with Allow/Block buttons. Use when setting up LuLu integration, handling firewall callbacks, or troubleshooting LuLu Monitor issues.
gmail-client-PM
Read and send emails via Gmail. Use to list unread messages, read specific emails by ID, or send new emails.
arb-injection
BYOCB ArbInjectionSkill: Scan EVM smart contracts for arbitrary call injection vulnerabilities. Monitor chains in real-time or scan specific addresses.