afrocoderhanane/clawguard
openclaw-skill/SKILL.md
Runtime security layer that intercepts shell commands, file operations, and network requests for AI agents
testing
Updated Mar 27, 2026
$ install --global
skillsauthnpx skillsauth add afrocoderhanane/clawguard clawguardInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Mar 30, 2026, 5:26 PM62.2s3 files scanned
SKILL.md
- name:
- clawguard
- description:
- Runtime security layer that intercepts shell commands, file operations, and network requests for AI agents
- version:
- 0.1.0
- author:
- afroCoderHanane
ClawGuard Security Skill
A security layer that monitors and controls what OpenClaw can do. Think of it as a firewall for your AI assistant.
Description
ClawGuard intercepts all shell commands, file operations, and network requests before OpenClaw executes them. Actions are checked against your security policy and can be:
- ✅ Allowed — Proceeds immediately
- ❌ Blocked — Rejected with explanation
- 👤 Approval Required — Waits for human confirmation
Instructions
Before executing any of the following actions, check with ClawGuard:
Shell Commands
Before running any shell/bash command, call clawguard_check_shell with the command. If blocked, explain why and suggest an alternative.
File Operations
Before reading or writing files, call clawguard_check_file with the path and operation type. Respect blocked paths like ~/.ssh and .env files.
Network Requests
Before making HTTP requests, call clawguard_check_network with the URL. Only access allowed domains.
Security Philosophy
- Deny by Default — In allowlist mode, anything not explicitly allowed is blocked
- Blocked Wins — Block rules take precedence over allow rules
- Fail Closed — Errors and timeouts result in denial
Configuration
Edit clawguard.yaml in your project root to customize the security policy.
Related Skills
afrocoderhanane/clawguard
testing
VerifiedTrustedCommunity
Runtime security layer that intercepts shell commands, file operations, and network requests for AI agents
SKILL.mdUpdated Mar 27, 2026
steipete/skill-creator
testing
VerifiedTrustedCommunity
Create, edit, improve, or audit AgentSkills. Use when creating a new skill from scratch or when asked to improve, review, audit, tidy up, or clean up an existing skill or SKILL.md file. Also use when editing or restructuring a skill directory (moving files to references/ or scripts/, removing stale content, validating against the AgentSkills spec). Triggers on phrases like "create a skill", "author a skill", "tidy up a skill", "improve this skill", "review the skill", "clean up the skill", "audit the skill".
356,423SKILL.mdUpdated Apr 13, 2026
steipete/healthcheck
testing
VerifiedTrustedCommunity
Host security hardening and risk-tolerance configuration for OpenClaw deployments. Use when a user asks for security audits, firewall/SSH/update hardening, risk posture, exposure review, OpenClaw cron scheduling for periodic checks, or version status checks on a machine running OpenClaw (laptop, workstation, Pi, VPS).
356,423SKILL.mdUpdated Apr 13, 2026
openclaw/skill-creator
testing
VerifiedTrustedCommunity
Create, edit, improve, or audit AgentSkills. Use when creating a new skill from scratch or when asked to improve, review, audit, tidy up, or clean up an existing skill or SKILL.md file. Also use when editing or restructuring a skill directory (moving files to references/ or scripts/, removing stale content, validating against the AgentSkills spec). Triggers on phrases like "create a skill", "author a skill", "tidy up a skill", "improve this skill", "review the skill", "clean up the skill", "audit the skill".
353,662SKILL.mdUpdated Apr 10, 2026