gnezim/clawsec
1
0
Fork 0
mirror of https://github.com/prompt-security/clawsec.git synced 2026-06-21 09:21:21 +03:00
Code Issues Packages Projects Releases Wiki Activity
Files
55fb234fc00d4f765f5440596ec722a0c4cb76bb
clawsec/docs/MIGRATION-SIGNED-FEED.md
T
Aldo Delgado 7cdb4ab7e2 fix(portability): harden cross-platform path handling and install workflows (#62) 
* docs: add agent collaboration and git safety rules to AGENTS.md

* fix(portability): harden cross-platform path handling and install workflows

- add shared path resolution utility for advisory guardian components
- expand and normalize home-path tokens: ~, $HOME, ${HOME}, %USERPROFILE%, $env:USERPROFILE
- reject unresolved/escaped home tokens to prevent literal "$HOME" directory creation
- fix install/runtime path handling in:
  - openclaw-audit-watchdog setup_cron and suppression config loader
  - clawsec-suite advisory hook handler, suppression loader, and guarded installer
- remove hardcoded Homebrew binary assumptions in watchdog scripts/tests
- add LF enforcement via .gitattributes to reduce CRLF script breakage
- expand CI Node checks to linux/macos/windows matrix
- add cross-platform test coverage for path expansion and token rejection
- update README and SKILL docs with bash/zsh/PowerShell-safe path guidance
- add compatibility deliverables:
  - docs/COMPATIBILITY_REPORT.md
  - docs/REMEDIATION_PLAN.md
  - docs/PLATFORM_VERIFICATION.md

Validation:
- node skills/clawsec-suite/test/path_resolution.test.mjs
- node skills/clawsec-suite/test/guarded_install.test.mjs
- node skills/clawsec-suite/test/advisory_suppression.test.mjs
- node skills/openclaw-audit-watchdog/test/suppression_config.test.mjs
- node skills/openclaw-audit-watchdog/test/render_report_suppression.test.mjs

* fix(advisory): avoid fail-open on invalid path vars and cover watchdog tests

* docs: move signing runbooks into docs folder

* docs: remove root-level signing runbooks after move

* chore(clawsec-suite): bump version to 0.1.3

* chore(openclaw-audit-watchdog): bump version to 0.1.1

* docs(changelog): add entries for clawsec-suite 0.1.3 and watchdog 0.1.1

* docs(changelog): credit @aldodelgado for PR #62 contributions

* feat(clawsec-suite): scope advisories to openclaw application

* fix(ci): run advisory scope tests without TypeScript loader

---------

Co-authored-by: David Abutbul <David.a@prompt.security>
2026-02-25 13:24:31 +02:00

5.5 KiB
Raw Blame History

Migration Plan: Unsigned Feed → Signed Feed

1) Objective

Move ClawSec advisory distribution from unsigned feed.json delivery to detached-signature verification with minimal disruption.

This plan is written against the current repository behavior:

  • feed is produced by poll-nvd-cves.yml and community-advisory.yml
  • feed is published by deploy-pages.yml
  • suite consumers currently load unsigned JSON from remote/local fallback paths

2) Baseline (today)

Current feed paths in active use:

  • Source of truth: advisories/feed.json
  • Skill copy: skills/clawsec-feed/advisories/feed.json
  • Pages copy: public/advisories/feed.json
  • Latest mirror copy: public/releases/latest/download/advisories/feed.json

Current consumer defaults:

  • skills/clawsec-suite/hooks/clawsec-advisory-guardian/handler.ts
  • skills/clawsec-suite/scripts/guarded_skill_install.mjs
  • default URL: https://raw.githubusercontent.com/prompt-security/clawsec/main/advisories/feed.json

3) Migration principles

  • Dual-publish first: publish signatures before enforcing verification.
  • Fail-open only during transition: temporary compatibility period is explicit and time-bounded.
  • Measured rollout: enforce verification after telemetry confirms stable signed publishing.
  • Fast rollback: preserve a path back to unsigned behavior while root cause is investigated.

4) Phased timeline

Phase 0 — Preparation (Week 0)

Deliverables:

  • signing keys generated and fingerprints recorded
  • GitHub secrets created
  • public key(s) added in repo
  • runbooks approved (SECURITY-SIGNING.md, this file)

Exit criteria:

  • key fingerprints verified by reviewer
  • protected branch/workflow controls enabled

Phase 1 — CI signing enabled, no client enforcement (Week 1)

Implement:

  • add feed signing step/workflow to produce advisories/feed.json.sig
  • optionally produce advisories/checksums.json + .sig
  • ensure CI verifies signatures before publishing artifacts

Also update deployment:

  • copy .sig artifacts to public/advisories/
  • mirror .sig in public/releases/latest/download/advisories/

Exit criteria:

  • signatures generated successfully for all feed update paths
  • deploy artifacts contain both payload and signature companions

Phase 2 — Consumer dual-read/dual-verify support (Week 2)

Implement in consumers:

  • read feed.json and feed.json.sig
  • verify with pinned public key
  • keep controlled temporary unsigned fallback during migration window

Validation:

  • test remote signed path
  • test local signed fallback path
  • test invalid signature rejection

Exit criteria:

  • verification logic released and tested
  • no false-positive verification failures in soak period

Phase 3 — Enforcement (Week 3)

Actions:

  • disable temporary unsigned fallback behavior in default paths
  • add CI/publish gates that fail when .sig is missing
  • announce enforcement date in release notes and docs

Exit criteria:

  • all production clients verify signatures by default
  • no unsigned feed dependency in standard installation flow

Phase 4 — Stabilization (Week 4)

Actions:

  • run first key rotation tabletop drill
  • run rollback tabletop drill
  • close migration with post-implementation review

5) Rollback plan

Rollback triggers

Initiate rollback if any of the following occur:

  • sustained signature verification failures across clients
  • signing workflow cannot produce valid signatures
  • key compromise suspected but replacement key is not yet deployed
  • deployment path publishes mismatched payload/signature pairs

Rollback levels

Level 1 (preferred): Verification bypass window, keep signed publishing

Use when: signing is healthy, client-side verifier has a defect.

Actions:

  1. Re-enable temporary unsigned-acceptance behavior in client release branch.
  2. Ship patch release with explicit expiry date for bypass.
  3. Keep signing pipeline active to avoid authenticity gap.

Recovery target: restore strict verification within 2448h.

Level 2: Signed pipeline paused, unsigned feed temporarily authoritative

Use when: signing pipeline is unstable or producing inconsistent artifacts.

Actions:

  1. Disable signing workflow or signing step.
  2. Continue publishing unsigned advisories/feed.json via existing workflows.
  3. Revert deploy gates that require .sig artifacts.
  4. Open incident record and track time in unsigned mode.

Recovery target: restore signed publishing ASAP, ideally <72h.

Level 3: Full release freeze

Use when: compromise or integrity of repository/workflows is in doubt.

Actions:

  1. Pause feed mutation and deployment workflows.
  2. Restore known-good commit for advisory files/workflows.
  3. Rotate keys and credentials.
  4. Resume pipeline only after security review sign-off.

Roll-forward after rollback

  • identify root cause
  • add regression tests/gates
  • redeploy signed artifacts
  • publish incident + remediation summary

6) Communication plan

For enforcement and rollback events, communicate:

  • what changed
  • expected operator/client action
  • duration of temporary compatibility mode (if any)
  • verification commands for users

Recommended channels:

  • GitHub release notes
  • repository README/docs updates
  • issue/incident report in repository

7) Go/No-Go checklist

Go only if all are true:

  • signing workflow success rate is stable
  • signatures are mirrored to all documented feed endpoints
  • consumer verification path tested for remote + local fallback
  • rollback owner is assigned and reachable
  • key rotation procedure has been dry-run at least once
Reference in New Issue View Git Blame Copy Permalink