clawsec

gnezim/clawsec

Fork 0

mirror of https://github.com/prompt-security/clawsec.git synced 2026-06-13 05:28:02 +03:00

Commit Graph

Author	SHA1	Message	Date
davida-ps	db0339084f	chore: migrate repository licensing from MIT to AGPL (#63 ) * chore(license): migrate repository licensing to AGPL-3.0-or-later * fix(ci): skip skill dry-run when version is unchanged	2026-02-24 15:43:14 +02:00
David Abutbul	f43f792a88	feat(skills): add clawsec-clawhub-checker reputation checking skill (#41 ) * feat(skills): add clawsec-clawhub-checker reputation checking skill - Adds ClawHub reputation checks to guarded installer - Integrates VirusTotal Code Insight scores - Requires --confirm-reputation for suspicious skills - Enhances advisory guardian hook with reputation warnings - Defense-in-depth layer for skill installation security * feat: add clawsec-clawhub-checker skill - Enhanced guarded installer with reputation checks - VirusTotal Code Insight integration - Reputation scoring (0-100) with multiple signals - New exit code 43 for reputation warnings - Requires --confirm-reputation for suspicious skills - Integration with clawsec-advisory-guardian hook - Standalone skill compatible with dynamic catalog system Note: Removed hardcoded catalog entry to work with new dynamic catalog system (discover_skill_catalog.mjs). * fix: lint errors in clawsec-clawhub-checker - Remove unused imports (fs, os, path) from check_clawhub_reputation.mjs - Remove unused variable in setup_reputation_hook.mjs - Remove unused os import from update_suite_catalog.mjs - All ESLint checks now pass - TypeScript check passes - Build check passes * refactor: remove PR_NOTES.md and update documentation in README.md and SKILL.md feat: add input validation for skill slug and version in check_clawhub_reputation.mjs fix: enhance argument parsing in enhanced_guarded_install.mjs test: add reputation check tests for input validation and output formatting chore: delete unused update_suite_catalog.mjs script * feat: enhance clawsec-clawhub-checker with setup script and reputation checks * feat: integrate reputation checks into clawhub setup script and enhance installer * docs: update README and SKILL documentation to reflect new installer scripts and usage instructions * feat: enhance CLI validation for skill version and reputation threshold; update documentation --------- Co-authored-by: davida-ps <david.a@prompt.security>	2026-02-16 21:27:32 +02:00

Author

SHA1

Message

Date

davida-ps

db0339084f

chore: migrate repository licensing from MIT to AGPL (#63 )

* chore(license): migrate repository licensing to AGPL-3.0-or-later

* fix(ci): skip skill dry-run when version is unchanged

2026-02-24 15:43:14 +02:00

David Abutbul

f43f792a88

feat(skills): add clawsec-clawhub-checker reputation checking skill (#41 )

* feat(skills): add clawsec-clawhub-checker reputation checking skill

- Adds ClawHub reputation checks to guarded installer
- Integrates VirusTotal Code Insight scores
- Requires --confirm-reputation for suspicious skills
- Enhances advisory guardian hook with reputation warnings
- Defense-in-depth layer for skill installation security

* feat: add clawsec-clawhub-checker skill

- Enhanced guarded installer with reputation checks
- VirusTotal Code Insight integration
- Reputation scoring (0-100) with multiple signals
- New exit code 43 for reputation warnings
- Requires --confirm-reputation for suspicious skills
- Integration with clawsec-advisory-guardian hook
- Standalone skill compatible with dynamic catalog system

Note: Removed hardcoded catalog entry to work with new
dynamic catalog system (discover_skill_catalog.mjs).

* fix: lint errors in clawsec-clawhub-checker

- Remove unused imports (fs, os, path) from check_clawhub_reputation.mjs
- Remove unused variable in setup_reputation_hook.mjs
- Remove unused os import from update_suite_catalog.mjs
- All ESLint checks now pass
- TypeScript check passes
- Build check passes

* refactor: remove PR_NOTES.md and update documentation in README.md and SKILL.md
feat: add input validation for skill slug and version in check_clawhub_reputation.mjs
fix: enhance argument parsing in enhanced_guarded_install.mjs
test: add reputation check tests for input validation and output formatting
chore: delete unused update_suite_catalog.mjs script

* feat: enhance clawsec-clawhub-checker with setup script and reputation checks

* feat: integrate reputation checks into clawhub setup script and enhance installer

* docs: update README and SKILL documentation to reflect new installer scripts and usage instructions

* feat: enhance CLI validation for skill version and reputation threshold; update documentation

---------

Co-authored-by: davida-ps <david.a@prompt.security>

2026-02-16 21:27:32 +02:00

2 Commits