mirror of https://github.com/prompt-security/clawsec.git synced 2026-06-13 05:28:02 +03:00

Files

T

davida-ps 073e771b73 Exploitability Context for CVE Advisories (#89 )

* feat(advisories): add exploitability context for CVE advisories

* fix(ci): align exploitability workflow with signing model

* docs(skills): add patch release changelog entries

* chore(clawsec-feed): bump version to 0.0.5

* chore(clawsec-suite): bump version to 0.1.4

* fix(clawsec-nanoclaw): align exploitability handling and nanoclaw integration

* chore(clawsec-nanoclaw): bump version to 0.0.2

* refactor(scripts): share feed path and mirror sync helpers

* refactor(utils): unify cvss vector parsing flow

* refactor(clawsec-nanoclaw): centralize advisory risk evaluation

* docs(exploitability): refresh release metadata dates

* fix(review): align feed signing and advisory dedupe

* chore(clawsec-feed): bump version to 0.0.6

* chore(clawsec-nanoclaw): bump version to 0.0.3

* fix(backfill): limit signing to target feed only

* fix(review): keep skill runtime verify-only and dedupe matching

* chore(clawsec-nanoclaw): bump version to 0.0.4

* chore(skills): align versions with published tags

* feat(feed): enrich local population with exploitability analysis

* docs(exploitability): mark backfill as historical flow

2026-03-01 18:43:24 +02:00

5.1 KiB

Raw Blame History

ClawSec for NanoClaw

ClawSec now supports NanoClaw, a containerized WhatsApp bot powered by Claude agents.

What Changed

Advisory Feed Monitoring

NVD CVE Pipeline: Now monitors for NanoClaw-specific keywords
- "NanoClaw", "WhatsApp-bot", "baileys" (WhatsApp library)
- Container-related vulnerabilities
Platform Targeting: Advisories can specify platforms: ["nanoclaw"] for NanoClaw-specific issues

Keywords Added

The CVE monitoring now includes:

NanoClaw - Direct product name
WhatsApp-bot - Core functionality
baileys - WhatsApp client library dependency

Advisory Schema

Advisories now support optional platforms field:

{
  "id": "CVE-2026-XXXXX",
  "platforms": ["openclaw", "nanoclaw"],
  "severity": "critical",
  "type": "prompt_injection",
  "affected": ["skill-name@1.0.0"],
  "action": "Update to version 1.0.1"
}

Platform values:

"openclaw" - Affects OpenClaw/ClawdBot/MoltBot only
"nanoclaw" - Affects NanoClaw only
["openclaw", "nanoclaw"] - Affects both platforms
(empty/missing) - Applies to all platforms (backward compatible)

ClawSec NanoClaw Skill

ClawSec provides a complete security skill for NanoClaw deployments:

Location: skills/clawsec-nanoclaw/

Features

9 MCP Tools for agents to manage security:
- clawsec_check_advisories - Scan installed skills for vulnerabilities
- clawsec_check_skill_safety - Pre-installation safety checks
- clawsec_list_advisories - Browse advisory feed with filtering
- clawsec_refresh_cache - Request immediate advisory cache refresh
- clawsec_verify_skill_package - Verify Ed25519 signatures on skill packages
- clawsec_check_integrity - Check protected files for unauthorized changes
- clawsec_approve_change - Approve intentional file modifications
- clawsec_integrity_status - View file baseline status
- clawsec_verify_audit - Verify audit log hash chain
Advisory Cache Service: Host-managed feed fetching with signature validation
Signature Verification: Ed25519-signed feeds ensure integrity
Exploitability Context: Surfaces exploitability_score and rationale to reduce alert fatigue
IPC Communication: Container-safe host communication

Installation

Copy the skill to your NanoClaw deployment:

cp -r skills/clawsec-nanoclaw /path/to/nanoclaw/skills/

Follow the detailed guide at skills/clawsec-nanoclaw/INSTALL.md

Quick Integration

The skill integrates into three places:

1. MCP Tools (container):

// container/agent-runner/src/ipc-mcp-stdio.ts
import '../../../skills/clawsec-nanoclaw/mcp-tools/advisory-tools.js';

2. IPC Handlers (host):

// src/ipc.ts
import { handleAdvisoryIpc } from '../skills/clawsec-nanoclaw/host-services/ipc-handlers.js';

3. Cache Service (host):

// src/index.ts
import { AdvisoryCacheManager } from '../skills/clawsec-nanoclaw/host-services/advisory-cache.js';

Advisory Feed

NanoClaw consumes the same feed as OpenClaw:

https://clawsec.prompt.security/advisories/feed.json

The feed is Ed25519 signed and automatically fetched by the cache service.

Team Credits

This integration was developed by a team of 8 specialized agents coordinated to adapt ClawSec for NanoClaw:

pioneer-repo-scout - ClawSec architecture analysis
pioneer-nanoclaw-scout - NanoClaw architecture analysis
architect - Integration design and coordination
advisory-specialist - Advisory feed integration
integrity-specialist - File integrity design
installer-specialist - Signature verification implementation
tester - Test infrastructure and validation
documenter - Documentation

Total contribution: 3000+ lines of code and comprehensive design documents.

What's Included

The clawsec-nanoclaw skill provides:

1,730 lines of production-ready TypeScript code
MCP Tools (350 lines): Agent-facing vulnerability checking
Advisory Cache (492 lines): Automatic feed fetching and caching
Signature Verification (387 lines): Ed25519 signature validation
Advisory Matching (289 lines): Skill-to-vulnerability correlation
IPC Handlers (212 lines): Container-to-host communication
Complete Documentation: Installation guide, usage examples, troubleshooting

Future Enhancements

Planned features for future releases:

File integrity monitoring (soul-guardian adaptation for containers)
Real-time advisory alerts via WebSocket
WhatsApp-native security alert formatting
Behavioral analysis and anomaly detection
Custom/private advisory feed support

Documentation

Skill Documentation - Features and architecture
Installation Guide - Detailed setup instructions
ClawSec Main README - Overall ClawSec documentation
Security & Signing - Signature verification details

Support

Issues: https://github.com/prompt-security/clawsec/issues
Security: security@prompt.security
NanoClaw Repository: https://github.com/qwibitai/nanoclaw

5.1 KiB Raw Blame History