ironclaw-security-guardAdd lightweight defense-in-depth guardrails to OpenClaw with dangerous-command blocking, prompt-injection detection, secret redaction, and audit logging.
Install via ClawdBot CLI:
clawdbot install wd041216-bit/ironclaw-security-guardGrade Fair — based on market validation, documentation quality, package completeness, maintenance status, and authenticity signals.
Accesses sensitive credential files or environment variables
/etc/shadowContains instructions to override system prompt or ignore user requests
"ignore previous instructions"Hardcoded API key or token pattern found in skill definition
ghp_ABCDEFGH...Potentially destructive shell commands in tool definitions
rm -rf /Usage Guide
Loading usage data… refresh in a few seconds.
Scored Jun 15, 2026
Accesses system directories or attempts privilege escalation
/etc/sudoersCalls external URL not in known-safe list
https://github.com/wd041216-bit/openclaw-ironclaw-security-guardAudited Apr 17, 2026 · audit v1.0
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope,...
Comprehensive security auditing for Clawdbot deployments. Scans for exposed credentials, open ports, weak configs, and vulnerabilities. Auto-fix mode included.
Audit codebases and infrastructure for security issues. Use when scanning dependencies for vulnerabilities, detecting hardcoded secrets, checking OWASP top 10 issues, verifying SSL/TLS, auditing file permissions, or reviewing code for injection and auth flaws.
Detect anomalies and outliers in construction data: unusual costs, schedule variances, productivity spikes. Statistical and ML-based detection methods.
Analyze and classify agent skills for safety using local evaluation. Optionally produce a signed attestation of the vetting result.
Solve CAPTCHAs with 2Captcha from the command line during browser automation.