mirror of
https://github.com/prompt-security/clawsec.git
synced 2026-06-13 05:28:02 +03:00
David Abutbul
1e48a955cc
* fix(release): exclude tests from skill payloads * fix(release): normalize test path filtering * fix(release): prefer GitHub artifacts for non-OpenClaw installs * fix(release): keep legacy ClawHub publishing * fix(release): address skill packaging review feedback * chore(skills): bump release versions * feat(skills): surface recommended platforms * docs(skills): add signed release verification * fix(skills): normalize PR version bumps --------- Co-authored-by: David Abutbul <David.a@prompt.security>
86 lines
2.3 KiB
JSON
86 lines
2.3 KiB
JSON
{
|
|
"name": "soul-guardian",
|
|
"version": "0.0.6",
|
|
"description": "Drift detection and baseline integrity guard for agent workspace prompt files. Auto-restore critical files with tamper-evident audit logging.",
|
|
"author": "prompt-security",
|
|
"license": "AGPL-3.0-or-later",
|
|
"homepage": "https://clawsec.prompt.security",
|
|
"keywords": [
|
|
"security",
|
|
"integrity",
|
|
"drift-detection",
|
|
"agents",
|
|
"ai",
|
|
"protection",
|
|
"audit",
|
|
"baseline"
|
|
],
|
|
"sbom": {
|
|
"files": [
|
|
{
|
|
"path": "SKILL.md",
|
|
"required": true,
|
|
"description": "Soul guardian skill documentation"
|
|
},
|
|
{
|
|
"path": "CHANGELOG.md",
|
|
"required": true,
|
|
"description": "Version history and release notes"
|
|
},
|
|
{
|
|
"path": "scripts/soul_guardian.py",
|
|
"required": true,
|
|
"description": "Main guardian script"
|
|
},
|
|
{
|
|
"path": "scripts/onboard_state_dir.py",
|
|
"required": true,
|
|
"description": "State directory setup"
|
|
},
|
|
{
|
|
"path": "scripts/install_launchd_plist.py",
|
|
"required": false,
|
|
"description": "macOS launchd installer"
|
|
}
|
|
]
|
|
},
|
|
"openclaw": {
|
|
"emoji": "👻",
|
|
"category": "security",
|
|
"requires": {
|
|
"bins": [
|
|
"python3"
|
|
]
|
|
},
|
|
"runtime": {
|
|
"required_env": [],
|
|
"optional_bins": [
|
|
"openclaw",
|
|
"launchctl",
|
|
"bash"
|
|
]
|
|
},
|
|
"execution": {
|
|
"always": false,
|
|
"persistence": "No automation is installed by default, but the documented workflow supports heartbeat, OpenClaw cron, or launchd scheduling.",
|
|
"network_egress": "None by default; soul-guardian operates on local files and local state."
|
|
},
|
|
"operator_review": [
|
|
"Restore mode can overwrite protected workspace files back to their approved baseline.",
|
|
"The external state directory can contain sensitive snapshots, diffs, and quarantined copies; secure it with restrictive permissions.",
|
|
"Any launchd or cron scheduling is opt-in and should be reviewed before enabling."
|
|
],
|
|
"triggers": [
|
|
"soul guardian",
|
|
"integrity check",
|
|
"drift detection",
|
|
"baseline check",
|
|
"file integrity",
|
|
"protect soul",
|
|
"guard files",
|
|
"workspace security",
|
|
"tamper detection"
|
|
]
|
|
}
|
|
}
|