baseline-kitOpenClaw 安全配置基线生成器和审计工具。生成开发/团队/企业/隔离环境的安全配置模板,并审计现有配置的安全问题(网络暴露、认证限流、技能来源限制、审计日志、备份策略、密钥卫生)。
Install via ClawdBot CLI:
clawdbot install mike007jd/baseline-kitOpenClaw 安全配置基线生成器和审计工具。
| 场景 | 特点 |
|------|------|
| development | 宽松限流(20次/分钟),7天日志保留 |
| team | 中等限流(10次/分钟),30天日志保留 |
| enterprise | 严格限流(5次/5分钟),90天日志,含灾备 |
| airgapped | 仅本地回环,本地镜像源,180天日志 |
# 生成企业级配置
node bin/baseline-kit.js generate --profile enterprise --out ./openclaw.secure.json
# 生成开发环境配置
node bin/baseline-kit.js generate --profile development --out ./openclaw.dev.json# 表格输出
node bin/baseline-kit.js audit --config ~/.openclaw/openclaw.json --format table
# JSON 输出
node bin/baseline-kit.js audit --config ./openclaw.secure.json --format jsonNET_EXPOSURE: gateway.bind 是否仅限本地回环AUTH_RATE_LIMIT: 认证限流是否配置完整SOURCE_RESTRICTION: 技能来源限制是否过宽AUDIT_LOGGING: 审计日志是否启用BACKUP_HINT: 备份是否配置SECRET_HYGIENE: 配置中是否存在明文密钥每个发现项都标注了相关合规框架:SOC2、ISO27001、NIST CSF
Generated Mar 1, 2026
A development team uses the development profile to generate a baseline configuration with relaxed rate limiting (20 requests/minute) and 7-day log retention, enabling rapid iteration and testing in a secure sandbox environment. This scenario supports agile workflows while maintaining basic security controls for internal development phases.
An enterprise IT department employs the enterprise profile to enforce strict security policies, including tight rate limiting (5 requests/5 minutes), 90-day log retention, and disaster recovery features. This scenario ensures compliance with frameworks like SOC2 and ISO27001 for production systems handling sensitive data.
A research institution uses the airgapped profile to configure a fully isolated system with local loopback access, local mirror sources, and 180-day log retention. This scenario is ideal for high-security environments such as government labs or proprietary research where external network exposure must be minimized.
A cross-functional team in a medium-sized company utilizes the team profile with moderate rate limiting (10 requests/minute) and 30-day log retention to balance security and collaboration. This scenario supports departments like marketing or operations that require shared access while adhering to internal security standards.
A company offers Baseline Kit as a SaaS product, charging subscription fees based on usage tiers (e.g., per user or audit volume). This model targets organizations needing ongoing security configuration management and compliance reporting, generating recurring revenue from enterprise clients.
A consulting firm integrates Baseline Kit into their security audit and configuration services, providing tailored implementations and training. Revenue comes from project-based fees and retainer contracts, helping clients achieve compliance with standards like NIST CSF and ISO27001.
The tool is offered as open source with core features free, while premium features like advanced audit reports or custom profiles are monetized. This model attracts a broad user base and converts a percentage to paid plans, generating revenue from upsells and enterprise support.
💬 Integration Tip
Start by generating a development profile to test configurations in a low-risk environment, then use the audit feature to validate existing setups against security standards before scaling to production.
Transform AI agents from task-followers into proactive partners that anticipate needs and continuously improve. Now with WAL Protocol, Working Buffer, Autonomous Crons, and battle-tested patterns. Part of the Hal Stack 🦞
Use the ClawdHub CLI to search, install, update, and publish agent skills from clawdhub.com. Use when you need to fetch new skills on the fly, sync installed skills to latest or a specific version, or publish new/updated skill folders with the npm-installed clawdhub CLI.
Clawdbot documentation expert with decision tree navigation, search scripts, doc fetching, version tracking, and config snippets for all Clawdbot features
Interact with Moltbook social network for AI agents. Post, reply, browse, and analyze engagement. Use when the user wants to engage with Moltbook, check their feed, reply to posts, or track their activity on the agent social network.
OpenClaw CLI wrapper — gateway, channels, models, agents, nodes, browser, memory, security, automation.
MoltGuard — runtime security plugin for OpenClaw agents by OpenGuardrails. Helps users install, register, activate, and check the status of MoltGuard. Use wh...