shield_lock
JinDaGe
Contact
โ† Back to skills
extension
Category: Security & ComplianceNo API key required

Openclaw Security Toolkit

Security guard for OpenClaw users. Audit configs, scan secrets, manage access, and generate security reports.

personAuthor: hkallhubclawhub
open_in_newRepositorydownloadDownload package

OpenClaw Security Guard

A comprehensive security tool for OpenClaw users to protect their AI assistant.

Features

  • ๐Ÿ” Security Audit - Comprehensive security configuration check
  • ๐Ÿ” Secret Scanner - Detect exposed API keys and tokens
  • ๐Ÿ‘ฅ Access Control - Manage devices, users, and permissions
  • ๐Ÿ”‘ Token Manager - Rotate and validate tokens
  • ๐Ÿ“Š Security Report - Generate detailed security reports
  • ๐Ÿ›ก๏ธ Hardening - Apply security best practices

Requirements

  • Python 3.6+
  • No external dependencies (uses stdlib)

Commands

# Run security audit
python3 {baseDir}/scripts/main.py audit

# Scan for secrets
python3 {baseDir}/scripts/main.py scan

# Generate report
python3 {baseDir}/scripts/main.py report --format md

# Check token status
python3 {baseDir}/scripts/main.py token status

# Access control
python3 {baseDir}/scripts/main.py access list

# Security hardening
python3 {baseDir}/scripts/main.py harden --fix

# Quick status check
python3 {baseDir}/scripts/main.py status

Options

--format, -f <format>    Output format: json, md, table (default: table)
--lang, -l <lang>        Language: en, zh (default: auto-detect)
--quiet, -q              Quiet mode, only output results
--verbose, -v            Verbose output
--output, -o <file>      Output file path
--deep                   Deep scan mode
--fix                    Auto-fix issues where possible

Security Checks

| Category | Checks | |----------|--------| | Config | Gateway bind, auth mode, token strength | | Secrets | API keys, tokens, passwords, private keys | | Access | Devices, users, channels, sessions | | Network | Public exposure, open ports |

Examples

# Full audit with auto-fix
python3 {baseDir}/scripts/main.py audit --deep --fix

# Generate markdown report
python3 {baseDir}/scripts/main.py report --format md -o security.md

# Scan for specific pattern
python3 {baseDir}/scripts/main.py scan --pattern "sk-"

# List all paired devices
python3 {baseDir}/scripts/main.py access devices

# Generate JSON report
python3 {baseDir}/scripts/main.py report --format json

Output Formats

Table (default)

๐Ÿ” OpenClaw Security Guard v1.0.0
โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”โ”

๐Ÿ“Š Security Score: 72/100 โš ๏ธ

๐Ÿ”ด HIGH RISK
  โ€ข API Key exposed in config file
    Location: ~/.openclaw/openclaw.json:15

JSON

{
  "score": 72,
  "findings": [...]
}

Markdown

# Security Report
**Score**: 72/100

Languages

  • English (en)
  • ไธญๆ–‡ (zh)

Auto-detected based on system locale.

License

MIT

Version

v1.0.0