mirror of
https://github.com/prompt-security/clawsec.git
synced 2026-06-13 05:28:02 +03:00
Aldo Delgado
7cdb4ab7e2
* docs: add agent collaboration and git safety rules to AGENTS.md
* fix(portability): harden cross-platform path handling and install workflows
- add shared path resolution utility for advisory guardian components
- expand and normalize home-path tokens: ~, $HOME, ${HOME}, %USERPROFILE%, $env:USERPROFILE
- reject unresolved/escaped home tokens to prevent literal "$HOME" directory creation
- fix install/runtime path handling in:
- openclaw-audit-watchdog setup_cron and suppression config loader
- clawsec-suite advisory hook handler, suppression loader, and guarded installer
- remove hardcoded Homebrew binary assumptions in watchdog scripts/tests
- add LF enforcement via .gitattributes to reduce CRLF script breakage
- expand CI Node checks to linux/macos/windows matrix
- add cross-platform test coverage for path expansion and token rejection
- update README and SKILL docs with bash/zsh/PowerShell-safe path guidance
- add compatibility deliverables:
- docs/COMPATIBILITY_REPORT.md
- docs/REMEDIATION_PLAN.md
- docs/PLATFORM_VERIFICATION.md
Validation:
- node skills/clawsec-suite/test/path_resolution.test.mjs
- node skills/clawsec-suite/test/guarded_install.test.mjs
- node skills/clawsec-suite/test/advisory_suppression.test.mjs
- node skills/openclaw-audit-watchdog/test/suppression_config.test.mjs
- node skills/openclaw-audit-watchdog/test/render_report_suppression.test.mjs
* fix(advisory): avoid fail-open on invalid path vars and cover watchdog tests
* docs: move signing runbooks into docs folder
* docs: remove root-level signing runbooks after move
* chore(clawsec-suite): bump version to 0.1.3
* chore(openclaw-audit-watchdog): bump version to 0.1.1
* docs(changelog): add entries for clawsec-suite 0.1.3 and watchdog 0.1.1
* docs(changelog): credit @aldodelgado for PR #62 contributions
* feat(clawsec-suite): scope advisories to openclaw application
* fix(ci): run advisory scope tests without TypeScript loader
---------
Co-authored-by: David Abutbul <David.a@prompt.security>
83 lines
1.9 KiB
JSON
83 lines
1.9 KiB
JSON
{
|
|
"name": "openclaw-audit-watchdog",
|
|
"version": "0.1.1",
|
|
"description": "Automated daily security audits for OpenClaw agents with email reporting. Runs deep audits and sends formatted reports.",
|
|
"author": "prompt-security",
|
|
"license": "AGPL-3.0-or-later",
|
|
"homepage": "https://clawsec.prompt.security",
|
|
"keywords": [
|
|
"security",
|
|
"audit",
|
|
"watchdog",
|
|
"agents",
|
|
"ai",
|
|
"reporting",
|
|
"cron",
|
|
"monitoring"
|
|
],
|
|
"sbom": {
|
|
"files": [
|
|
{
|
|
"path": "SKILL.md",
|
|
"required": true,
|
|
"description": "Audit watchdog skill documentation"
|
|
},
|
|
{
|
|
"path": "scripts/runner.sh",
|
|
"required": true,
|
|
"description": "Main runner script"
|
|
},
|
|
{
|
|
"path": "scripts/run_audit_and_format.sh",
|
|
"required": true,
|
|
"description": "Audit execution and formatting"
|
|
},
|
|
{
|
|
"path": "scripts/codex_review.sh",
|
|
"required": false,
|
|
"description": "Codex-based code review"
|
|
},
|
|
{
|
|
"path": "scripts/render_report.mjs",
|
|
"required": false,
|
|
"description": "Report rendering (Node.js)"
|
|
},
|
|
{
|
|
"path": "scripts/sendmail_report.sh",
|
|
"required": false,
|
|
"description": "Sendmail delivery"
|
|
},
|
|
{
|
|
"path": "scripts/send_smtp.mjs",
|
|
"required": false,
|
|
"description": "SMTP delivery (Node.js)"
|
|
},
|
|
{
|
|
"path": "scripts/setup_cron.mjs",
|
|
"required": false,
|
|
"description": "Cron job setup"
|
|
}
|
|
]
|
|
},
|
|
"openclaw": {
|
|
"emoji": "🔭",
|
|
"category": "security",
|
|
"requires": {
|
|
"bins": [
|
|
"bash",
|
|
"curl"
|
|
]
|
|
},
|
|
"triggers": [
|
|
"audit watchdog",
|
|
"security audit",
|
|
"daily audit",
|
|
"run audit",
|
|
"audit report",
|
|
"security report",
|
|
"watchdog check",
|
|
"deep audit"
|
|
]
|
|
}
|
|
}
|