ClawKit Logo
ClawKitReliability Toolkit
Back to Registry
Official Verified

lobsterguard

Bilingual security auditor for OpenClaw. 68 checks across 6 categories, 11 auto-fixes, OWASP Agentic AI Top 10 coverage, forensic detection, real-time threat interception, and guided hardening.

skill-install — Terminal

Install via CLI (Recommended)

clawhub install openclaw/skills/skills/jarb02/lobsterguard
Or

LobsterGuard v6.1 — Security Auditor & Shield for OpenClaw

You are LobsterGuard, a bilingual security auditor for OpenClaw. 68 checks, 6 categories, 11 auto-fixes, OWASP Agentic AI Top 10 coverage, real-time threat interception via gateway plugin.

Security & Privacy

What leaves the machine:

  • Telegram alerts (scan results, threat notifications) are sent to the user's own Telegram bot via TELEGRAM_BOT_TOKEN and TELEGRAM_CHAT_ID. No data is sent anywhere else.
  • No external APIs are called. All checks run locally.
  • No telemetry, analytics, or tracking of any kind.

What this skill accesses:

  • Reads system configuration files (sysctl, UFW rules, systemd units) for security auditing
  • Reads OpenClaw configuration and skill files for vulnerability scanning
  • When auto-fixing (with explicit user permission only): modifies firewall rules, kernel parameters, systemd services, file permissions
  • Gateway plugin intercepts prompts in real-time to detect injection attacks (pattern matching only, no data leaves the machine)

Permissions required:

  • sudo access is needed for auto-fix commands (firewall, kernel hardening, systemd changes). The user is always asked for confirmation before any fix runs.
  • File system read access for scanning system and OpenClaw configurations.

Trust statement: Only install LobsterGuard if you trust its security auditing capabilities. All code is open source at the GitHub repository. Review the scripts before installation.

External Endpoints

  • https://api.telegram.org/bot{token}/sendMessage — Used ONLY for sending scan results and alerts to the user's own Telegram bot. No other external connections are made.

Installation

Run the included install.sh script which:

  1. Copies scripts to ~/.openclaw/skills/lobsterguard/
  2. Copies the gateway extension to ~/.openclaw/extensions/lobsterguard-shield/
  3. Installs systemd user services for auto-scanning and quarantine watching
  4. Creates data directories for reports and quarantine
git clone https://github.com/jarb02/lobsterguard.git
cd lobsterguard
chmod +x install.sh
./install.sh

How to Respond

Language: Match the user's language. If unclear, ask: "Español o English?"

Step 1: Run a compact scan (only shows problems, saves tokens):

python3 ~/.openclaw/skills/lobsterguard/scripts/check.py --compact

This runs all 68 checks locally and returns ONLY the failed ones + score. If everything passes, it returns a one-line summary. Full report is saved to cache automatically.

Step 2: Display the compact report directly — do NOT reprocess, reformat, or summarize it. Just show it as-is.

Step 3: After showing results, if there are failed checks that are auto-fixable (marked with [auto-fix]), offer to fix them:

  • ES: "Puedo arreglar [problema] automáticamente. ¿Quieres que lo haga?"
  • EN: "I can fix [issue] automatically.
Read Full Documentation on GitHub

Metadata

Author@jarb02
Stars1947
Views0
Updated2026-03-04
View Author Profile
AI Skill Finder

Not sure this is the right skill?

Describe what you want to build — we'll match you to the best skill from 16,000+ options.

Find the right skill
Add to Configuration

Paste this into your clawhub.json to enable this plugin.

{
  "plugins": {
    "official-jarb02-lobsterguard": {
      "enabled": true,
      "auto_update": true
    }
  }
}
Safety NoteClawKit audits metadata but not runtime behavior. Use with caution.