mirror of
https://github.com/prompt-security/clawsec.git
synced 2026-06-13 05:28:02 +03:00
davida-ps
c1d1824f86
* ci(skills): publish release trust packets * ci(skills): simulate beta tag releases * ci(skills): match release version bump rules * chore(skills): group agent skills for installer * chore(skills): make clawtributor global * chore(skills): bump all skills for trust release * ci(skills): require npx install docs * fix(skills): simulate prerelease tag versions * fix(skills): aggregate trust artifact checksum failures * fix(frontend): advertise npx skills suite install * chore(frontend): drop ad hoc homepage copy test * fix(ci): run skill release tooling tests
69 lines
1.9 KiB
JSON
69 lines
1.9 KiB
JSON
{
|
|
"name": "clawtributor",
|
|
"version": "0.0.7",
|
|
"description": "Harness-neutral community incident reporting for AI agents. Contribute to collective security by reporting threats.",
|
|
"author": "prompt-security",
|
|
"license": "AGPL-3.0-or-later",
|
|
"homepage": "https://clawsec.prompt.security",
|
|
"platforms": [
|
|
"openclaw",
|
|
"nanoclaw",
|
|
"hermes",
|
|
"picoclaw"
|
|
],
|
|
"keywords": [
|
|
"security",
|
|
"reporting",
|
|
"community",
|
|
"agents",
|
|
"ai",
|
|
"global",
|
|
"harness-neutral",
|
|
"vulnerability",
|
|
"contribution"
|
|
],
|
|
"sbom": {
|
|
"files": [
|
|
{
|
|
"path": "SKILL.md",
|
|
"required": true,
|
|
"description": "Community reporting skill documentation"
|
|
},
|
|
{
|
|
"path": "CHANGELOG.md",
|
|
"required": true,
|
|
"description": "Version history and release notes"
|
|
},
|
|
{
|
|
"path": "reporting.md",
|
|
"required": true,
|
|
"description": "Incident report format and submission guide"
|
|
}
|
|
]
|
|
},
|
|
"openclaw": {
|
|
"emoji": "🤝",
|
|
"category": "security",
|
|
"execution": {
|
|
"always": false,
|
|
"persistence": "Stores local report/state files only; no recurring automation is created by default.",
|
|
"network_egress": "No automatic egress; reports are prepared locally and submitted manually only after explicit user approval."
|
|
},
|
|
"operator_review": [
|
|
"Reporting is opt-in and should remain approval-gated for every submission.",
|
|
"Review and sanitize report content before submitting because reports leave the host and become visible to maintainers.",
|
|
"Use the browser-based Security Incident Report form for manual submission after user approval."
|
|
],
|
|
"triggers": [
|
|
"report vulnerability",
|
|
"report attack",
|
|
"clawtributor",
|
|
"submit report",
|
|
"security report",
|
|
"contribute report",
|
|
"report incident",
|
|
"report threat"
|
|
]
|
|
}
|
|
}
|