davida-ps
c1d1824f86
* ci(skills): publish release trust packets * ci(skills): simulate beta tag releases * ci(skills): match release version bump rules * chore(skills): group agent skills for installer * chore(skills): make clawtributor global * chore(skills): bump all skills for trust release * ci(skills): require npx install docs * fix(skills): simulate prerelease tag versions * fix(skills): aggregate trust artifact checksum failures * fix(frontend): advertise npx skills suite install * chore(frontend): drop ad hoc homepage copy test * fix(ci): run skill release tooling tests
ClawSec for NanoClaw
ClawSec now supports NanoClaw, a containerized WhatsApp bot powered by Claude agents.
Vercel Skills Installation
Install with the Vercel Skills CLI for this harness:
npx skills add prompt-security/clawsec --skill clawsec-nanoclaw -a openclaw -y
What Changed
Advisory Feed Monitoring
- NVD CVE Pipeline: Now monitors for NanoClaw-specific keywords
- "NanoClaw", "WhatsApp-bot", "baileys" (WhatsApp library)
- Container-related vulnerabilities
- Platform Targeting: Advisories can specify
platforms: ["nanoclaw"]for NanoClaw-specific issues
Keywords Added
The CVE monitoring now includes:
NanoClaw- Direct product nameWhatsApp-bot- Core functionalitybaileys- WhatsApp client library dependency
Advisory Schema
Advisories now support optional platforms field:
{
"id": "CVE-2026-XXXXX",
"platforms": ["openclaw", "nanoclaw"],
"severity": "critical",
"type": "prompt_injection",
"affected": ["skill-name@1.0.0"],
"action": "Update to version 1.0.1"
}
Platform values:
"openclaw"- Affects OpenClaw/ClawdBot/MoltBot only"nanoclaw"- Affects NanoClaw only["openclaw", "nanoclaw"]- Affects both platforms- (empty/missing) - Applies to all platforms (backward compatible)
ClawSec NanoClaw Skill
ClawSec provides a complete security skill for NanoClaw deployments:
Location: skills/clawsec-nanoclaw/
Features
-
9 MCP Tools for agents to manage security:
clawsec_check_advisories- Scan installed skills for vulnerabilitiesclawsec_check_skill_safety- Pre-installation safety checksclawsec_list_advisories- Browse advisory feed with filteringclawsec_refresh_cache- Request immediate advisory cache refreshclawsec_verify_skill_package- Verify Ed25519 signatures on skill packagesclawsec_check_integrity- Check protected files for unauthorized changesclawsec_approve_change- Approve intentional file modificationsclawsec_integrity_status- View file baseline statusclawsec_verify_audit- Verify audit log hash chain
-
Advisory Cache Service: Host-managed feed fetching with signature validation
-
Signature Verification: Ed25519-signed feeds ensure integrity
-
Exploitability Context: Surfaces
exploitability_scoreand rationale to reduce alert fatigue -
IPC Communication: Container-safe host communication
Installation
-
Copy the skill to your NanoClaw deployment:
cp -r skills/clawsec-nanoclaw /path/to/nanoclaw/skills/ -
Follow the detailed guide at
skills/clawsec-nanoclaw/INSTALL.md
Quick Integration
The skill integrates into three places:
1. MCP Tools (container):
// container/agent-runner/src/ipc-mcp-stdio.ts
import '../../../skills/clawsec-nanoclaw/mcp-tools/advisory-tools.js';
2. IPC Handlers (host):
// src/ipc.ts
import { handleAdvisoryIpc } from '../skills/clawsec-nanoclaw/host-services/ipc-handlers.js';
3. Cache Service (host):
// src/index.ts
import { AdvisoryCacheManager } from '../skills/clawsec-nanoclaw/host-services/advisory-cache.js';
Advisory Feed
NanoClaw consumes the same feed as OpenClaw:
https://clawsec.prompt.security/advisories/feed.json
The feed is Ed25519 signed and automatically fetched by the cache service.
Team Credits
This integration was developed by a team of 8 specialized agents coordinated to adapt ClawSec for NanoClaw:
- pioneer-repo-scout - ClawSec architecture analysis
- pioneer-nanoclaw-scout - NanoClaw architecture analysis
- architect - Integration design and coordination
- advisory-specialist - Advisory feed integration
- integrity-specialist - File integrity design
- installer-specialist - Signature verification implementation
- tester - Test infrastructure and validation
- documenter - Documentation
Total contribution: 3000+ lines of code and comprehensive design documents.
What's Included
The clawsec-nanoclaw skill provides:
- 1,730 lines of production-ready TypeScript code
- MCP Tools (350 lines): Agent-facing vulnerability checking
- Advisory Cache (492 lines): Automatic feed fetching and caching
- Signature Verification (387 lines): Ed25519 signature validation
- Advisory Matching (289 lines): Skill-to-vulnerability correlation
- IPC Handlers (212 lines): Container-to-host communication
- Complete Documentation: Installation guide, usage examples, troubleshooting
Future Enhancements
Planned features for future releases:
- File integrity monitoring (soul-guardian adaptation for containers)
- Real-time advisory alerts via WebSocket
- WhatsApp-native security alert formatting
- Behavioral analysis and anomaly detection
- Custom/private advisory feed support
Documentation
- Skill Documentation - Features and architecture
- Installation Guide - Detailed setup instructions
- ClawSec Main README - Overall ClawSec documentation
- Security & Signing - Signature verification details
Support
- Issues: https://github.com/prompt-security/clawsec/issues
- Security: security@prompt.security
- NanoClaw Repository: https://github.com/qwibitai/nanoclaw