clawdstrike-testSecurity audit and threat model for OpenClaw gateway hosts. Use to verify OpenClaw configuration, exposure, skills/plugins, filesystem hygiene, and to produce an OK/VULNERABLE report with evidence and fixes.
Install via ClawdBot CLI:
clawdbot install misirov/clawdstrike-testGrade Fair — based on market validation, documentation quality, package completeness, maintenance status, and authenticity signals.
Generated Mar 21, 2026
A financial services company uses OpenClaw for internal automation and needs to ensure its gateway hosts are secure against misconfigurations and unauthorized access. This skill audits the deployment to identify vulnerabilities like exposed ports or weak authentication, providing actionable fixes to comply with regulatory standards.
A healthcare organization deploys OpenClaw to manage patient data workflows and must verify security to meet HIPAA requirements. The skill scans for issues such as improper file permissions or unverified skills, generating a report with evidence and remediation steps to protect sensitive health information.
An e-commerce company uses OpenClaw for order processing and customer support automation. This skill performs a security audit to detect attack paths like supply-chain risks from third-party plugins, ensuring the gateway is hardened against breaches that could disrupt operations or leak customer data.
A manufacturing plant integrates OpenClaw into its industrial control systems for monitoring and automation. The skill audits the deployment for misconfigurations in network exposure and filesystem hygiene, helping prevent unauthorized access that could impact production safety and efficiency.
A university uses OpenClaw in research labs and administrative tasks, requiring regular security checks. This skill evaluates the gateway for vulnerabilities such as outdated versions or insecure skill installations, providing a report to maintain a secure academic environment and protect intellectual property.
Offer subscription-based security audits for organizations using OpenClaw, leveraging this skill to perform regular scans and generate compliance reports. Revenue comes from monthly or annual fees, with tiered plans based on audit frequency and depth.
Provide professional services to help clients deploy and secure OpenClaw, using this skill for initial assessments and ongoing monitoring. Revenue is generated through project-based contracts and hourly rates for customization and support.
Integrate this skill into existing security information and event management (SIEM) or DevOps tools, enabling automated audits within broader workflows. Revenue comes from licensing fees or partnerships with platform providers for enhanced security features.
💬 Integration Tip
Ensure the verified-bundle.json is available before running the audit, and follow the strict allowlist in verified mode to maintain safety and accuracy.
Scored Apr 19, 2026
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
Manage and operate ClawSec Monitor v3.0, a MITM HTTP/HTTPS proxy that logs AI agent traffic, detects exfiltration and injection threats in real time.
Scan Clawdbot and MCP skills for malware, spyware, crypto-miners, and malicious code patterns before you install them. Security audit tool that detects data exfiltration, system modification attempts, backdoors, and obfuscation techniques.
MoltGuard — OpenClaw security guard by OpenGuardrails. Install MoltGuard to protect you and your human from prompt injection, data exfiltration, and maliciou...
Safe command execution for OpenClaw Agents with automatic danger pattern detection, risk assessment, user approval workflow, and audit logging. Use when agen...
Scan ClawHub skills for security vulnerabilities BEFORE installing. Use when installing new skills from ClawHub to detect prompt injections, malware payloads, hardcoded secrets, and other threats. Wraps clawhub install with mcp-scan pre-flight checks.