davida-ps
4dbac421ab
* feat(advisories): add provisional ghsa feed * fix(workflows): include advisory signatures in checksums * fix(workflows): mirror ghsa feed at release root * feat(advisories): consolidate ghsa into agent feed * ci(advisories): consolidate ghsa during nvd poll * fix(advisories): retain unreplaced ghsa feed entries * chore(skills): bump advisory feed consumers * fix(release): resolve ts import closure dry run * fix(release): preserve urls while stripping comments * fix(release): ignore skill test-only changes * fix(advisories): follow ghsa pagination links * test(advisories): add nvd ghsa pipeline dry run
ClawSec for NanoClaw
ClawSec now supports NanoClaw, a containerized WhatsApp bot powered by Claude agents.
What Changed
Advisory Feed Monitoring
- NVD CVE Pipeline: Now monitors for NanoClaw-specific keywords
- "NanoClaw", "WhatsApp-bot", "baileys" (WhatsApp library)
- Container-related vulnerabilities
- Platform Targeting: Advisories can specify
platforms: ["nanoclaw"]for NanoClaw-specific issues
Keywords Added
The CVE monitoring now includes:
NanoClaw- Direct product nameWhatsApp-bot- Core functionalitybaileys- WhatsApp client library dependency
Advisory Schema
Advisories now support optional platforms field:
{
"id": "CVE-2026-XXXXX",
"platforms": ["openclaw", "nanoclaw"],
"severity": "critical",
"type": "prompt_injection",
"affected": ["skill-name@1.0.0"],
"action": "Update to version 1.0.1"
}
Platform values:
"openclaw"- Affects OpenClaw/ClawdBot/MoltBot only"nanoclaw"- Affects NanoClaw only["openclaw", "nanoclaw"]- Affects both platforms- (empty/missing) - Applies to all platforms (backward compatible)
ClawSec NanoClaw Skill
ClawSec provides a complete security skill for NanoClaw deployments:
Location: skills/clawsec-nanoclaw/
Features
-
9 MCP Tools for agents to manage security:
clawsec_check_advisories- Scan installed skills for vulnerabilitiesclawsec_check_skill_safety- Pre-installation safety checksclawsec_list_advisories- Browse advisory feed with filteringclawsec_refresh_cache- Request immediate advisory cache refreshclawsec_verify_skill_package- Verify Ed25519 signatures on skill packagesclawsec_check_integrity- Check protected files for unauthorized changesclawsec_approve_change- Approve intentional file modificationsclawsec_integrity_status- View file baseline statusclawsec_verify_audit- Verify audit log hash chain
-
Advisory Cache Service: Host-managed feed fetching with signature validation
-
Signature Verification: Ed25519-signed feeds ensure integrity
-
Exploitability Context: Surfaces
exploitability_scoreand rationale to reduce alert fatigue -
IPC Communication: Container-safe host communication
Installation
-
Copy the skill to your NanoClaw deployment:
cp -r skills/clawsec-nanoclaw /path/to/nanoclaw/skills/ -
Follow the detailed guide at
skills/clawsec-nanoclaw/INSTALL.md
Quick Integration
The skill integrates into three places:
1. MCP Tools (container):
// container/agent-runner/src/ipc-mcp-stdio.ts
import '../../../skills/clawsec-nanoclaw/mcp-tools/advisory-tools.js';
2. IPC Handlers (host):
// src/ipc.ts
import { handleAdvisoryIpc } from '../skills/clawsec-nanoclaw/host-services/ipc-handlers.js';
3. Cache Service (host):
// src/index.ts
import { AdvisoryCacheManager } from '../skills/clawsec-nanoclaw/host-services/advisory-cache.js';
Advisory Feed
NanoClaw consumes the same feed as OpenClaw:
https://clawsec.prompt.security/advisories/feed.json
The feed is Ed25519 signed and automatically fetched by the cache service.
Team Credits
This integration was developed by a team of 8 specialized agents coordinated to adapt ClawSec for NanoClaw:
- pioneer-repo-scout - ClawSec architecture analysis
- pioneer-nanoclaw-scout - NanoClaw architecture analysis
- architect - Integration design and coordination
- advisory-specialist - Advisory feed integration
- integrity-specialist - File integrity design
- installer-specialist - Signature verification implementation
- tester - Test infrastructure and validation
- documenter - Documentation
Total contribution: 3000+ lines of code and comprehensive design documents.
What's Included
The clawsec-nanoclaw skill provides:
- 1,730 lines of production-ready TypeScript code
- MCP Tools (350 lines): Agent-facing vulnerability checking
- Advisory Cache (492 lines): Automatic feed fetching and caching
- Signature Verification (387 lines): Ed25519 signature validation
- Advisory Matching (289 lines): Skill-to-vulnerability correlation
- IPC Handlers (212 lines): Container-to-host communication
- Complete Documentation: Installation guide, usage examples, troubleshooting
Future Enhancements
Planned features for future releases:
- File integrity monitoring (soul-guardian adaptation for containers)
- Real-time advisory alerts via WebSocket
- WhatsApp-native security alert formatting
- Behavioral analysis and anomaly detection
- Custom/private advisory feed support
Documentation
- Skill Documentation - Features and architecture
- Installation Guide - Detailed setup instructions
- ClawSec Main README - Overall ClawSec documentation
- Security & Signing - Signature verification details
Support
- Issues: https://github.com/prompt-security/clawsec/issues
- Security: security@prompt.security
- NanoClaw Repository: https://github.com/qwibitai/nanoclaw