gnezim/clawsec
1
0
Fork 0
mirror of https://github.com/prompt-security/clawsec.git synced 2026-06-13 05:28:02 +03:00
Code Issues Packages Projects Releases Wiki Activity
Files
main
clawsec/skills/clawsec-scanner/CHANGELOG.md
T
davida-ps c1d1824f86 ci(skills): publish release trust packets + expand skill installer awareness (vercel) (#262) 
* ci(skills): publish release trust packets

* ci(skills): simulate beta tag releases

* ci(skills): match release version bump rules

* chore(skills): group agent skills for installer

* chore(skills): make clawtributor global

* chore(skills): bump all skills for trust release

* ci(skills): require npx install docs

* fix(skills): simulate prerelease tag versions

* fix(skills): aggregate trust artifact checksum failures

* fix(frontend): advertise npx skills suite install

* chore(frontend): drop ad hoc homepage copy test

* fix(ci): run skill release tooling tests
2026-06-10 13:22:22 +03:00

1.9 KiB
Raw Permalink Blame History

Changelog

[0.0.5] - 2026-06-10

Changed

  • Re-released skill package with updated marketplace grouping and signed release trust artifacts for Vercel-compatible skill installation.

[0.0.4] - 2026-06-07

Security

  • Replaced DAST target hook execution with static hook source inspection so scanner runs never import, transpile, or invoke untrusted handler code.

[0.0.3] - 2026-05-13

Changed

  • Re-release skill payload metadata after excluding test-only files from release SBOMs and archives.

All notable changes to the ClawSec Scanner will be documented in this file.

The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.

[0.0.2] - 2026-03-10

Changed

  • Replaced simulated DAST checks with real OpenClaw hook execution harness testing
  • Updated DAST semantics so high-severity findings are emitted for actual hook execution failures/timeouts, not static payload pattern matches
  • Reclassified DAST harness capability limitations (for example missing TypeScript compiler for .ts hooks) to info coverage findings instead of high severity
  • Added DAST harness mode guard to prevent recursive scanner execution when hook handlers are tested in isolation

Added

  • New DAST helper executor script for isolated per-hook execution and timeout enforcement
  • DAST harness regression tests covering no-false-positive baseline and malicious-input crash detection

[0.0.1] - 2026-02-27

Added

  • Initial release of ClawSec Scanner skill
  • Automated vulnerability scanning for OpenClaw skill installations
  • Integration with advisory feed for real-time security alerts
  • Support for scanning skill dependencies and detecting known CVEs
  • Configurable scan policies and risk thresholds
  • Detailed vulnerability reporting with remediation guidance
Reference in New Issue View Git Blame Copy Permalink