mirror of
https://github.com/prompt-security/clawsec.git
synced 2026-06-13 05:28:02 +03:00
David Abutbul
1e48a955cc
* fix(release): exclude tests from skill payloads * fix(release): normalize test path filtering * fix(release): prefer GitHub artifacts for non-OpenClaw installs * fix(release): keep legacy ClawHub publishing * fix(release): address skill packaging review feedback * chore(skills): bump release versions * feat(skills): surface recommended platforms * docs(skills): add signed release verification * fix(skills): normalize PR version bumps --------- Co-authored-by: David Abutbul <David.a@prompt.security>
126 lines
3.4 KiB
JSON
126 lines
3.4 KiB
JSON
{
|
|
"name": "openclaw-audit-watchdog",
|
|
"version": "0.1.5",
|
|
"description": "Automated daily security audits for OpenClaw agents with DM delivery and optional email reporting. Creates or updates an unattended cron job and sends formatted reports to configured recipients.",
|
|
"author": "prompt-security",
|
|
"license": "AGPL-3.0-or-later",
|
|
"homepage": "https://clawsec.prompt.security",
|
|
"keywords": [
|
|
"security",
|
|
"audit",
|
|
"watchdog",
|
|
"agents",
|
|
"ai",
|
|
"reporting",
|
|
"cron",
|
|
"monitoring"
|
|
],
|
|
"sbom": {
|
|
"files": [
|
|
{
|
|
"path": "SKILL.md",
|
|
"required": true,
|
|
"description": "Audit watchdog skill documentation"
|
|
},
|
|
{
|
|
"path": "scripts/runner.sh",
|
|
"required": true,
|
|
"description": "Main runner script"
|
|
},
|
|
{
|
|
"path": "scripts/run_audit_and_format.sh",
|
|
"required": true,
|
|
"description": "Audit execution and formatting"
|
|
},
|
|
{
|
|
"path": "scripts/codex_review.sh",
|
|
"required": false,
|
|
"description": "Codex-based code review"
|
|
},
|
|
{
|
|
"path": "scripts/render_report.mjs",
|
|
"required": false,
|
|
"description": "Report rendering (Node.js)"
|
|
},
|
|
{
|
|
"path": "scripts/sendmail_report.sh",
|
|
"required": false,
|
|
"description": "Sendmail delivery"
|
|
},
|
|
{
|
|
"path": "scripts/send_smtp.mjs",
|
|
"required": false,
|
|
"description": "SMTP delivery (Node.js)"
|
|
},
|
|
{
|
|
"path": "scripts/setup_cron.mjs",
|
|
"required": false,
|
|
"description": "Cron job setup"
|
|
}
|
|
]
|
|
},
|
|
"openclaw": {
|
|
"emoji": "🔭",
|
|
"category": "security",
|
|
"requires": {
|
|
"bins": [
|
|
"bash",
|
|
"openclaw",
|
|
"node"
|
|
]
|
|
},
|
|
"runtime": {
|
|
"required_env": [
|
|
"PROMPTSEC_DM_CHANNEL",
|
|
"PROMPTSEC_DM_TO"
|
|
],
|
|
"optional_env": [
|
|
"PROMPTSEC_EMAIL_TO",
|
|
"PROMPTSEC_TZ",
|
|
"PROMPTSEC_HOST_LABEL",
|
|
"PROMPTSEC_INSTALL_DIR",
|
|
"PROMPTSEC_GIT_PULL",
|
|
"OPENCLAW_AUDIT_CONFIG",
|
|
"PROMPTSEC_SENDMAIL_BIN",
|
|
"PROMPTSEC_SMTP_HOST",
|
|
"PROMPTSEC_SMTP_PORT",
|
|
"PROMPTSEC_SMTP_HELO",
|
|
"PROMPTSEC_SMTP_FROM"
|
|
],
|
|
"optional_bins": [
|
|
"git",
|
|
"sendmail"
|
|
]
|
|
},
|
|
"delivery": {
|
|
"dm": "required",
|
|
"email": "optional via PROMPTSEC_EMAIL_TO",
|
|
"email_transport": [
|
|
"local sendmail",
|
|
"SMTP relay configured with PROMPTSEC_SMTP_*"
|
|
]
|
|
},
|
|
"execution": {
|
|
"always": false,
|
|
"persistence": "Creates or updates a recurring openclaw cron job when setup is run.",
|
|
"network_egress": "Reports are delivered to the configured DM target and optionally to the configured email recipient."
|
|
},
|
|
"operator_review": [
|
|
"Verify the openclaw CLI and node runtime on the host before enabling the cron job.",
|
|
"Review DM and email recipients before installing because reports are delivered externally.",
|
|
"If email is enabled, verify the local sendmail binary or PROMPTSEC_SMTP_* relay settings.",
|
|
"Suppressions require both --enable-suppressions and enabledFor: [\"audit\"] in config."
|
|
],
|
|
"triggers": [
|
|
"audit watchdog",
|
|
"security audit",
|
|
"daily audit",
|
|
"run audit",
|
|
"audit report",
|
|
"security report",
|
|
"watchdog check",
|
|
"deep audit"
|
|
]
|
|
}
|
|
}
|