← Back to Skills Marketplace
nukewire

ClawDefender - OpenClaw Security - Prompt injection, rogue skills etc

by Nukewire · GitHub ↗ · v1.0.1
cross-platform ⚠ suspicious
10162
Downloads
31
Stars
72
Active Installs
2
Versions
Install in OpenClaw
/install clawdefender
Description
Security scanner and input sanitizer for AI agents. Detects prompt injection, command injection, SSRF, credential exfiltration, and path traversal attacks. Use when (1) installing new skills from ClawHub, (2) processing external input like emails, calendar events, Trello cards, or API responses, (3) validating URLs before fetching, (4) running security audits on your workspace. Protects agents from malicious content in untrusted data sources.
Usage Guidance
Treat ClawDefender as a heuristic helper, not a complete security boundary. Review the scripts before use, be cautious with --check-url as a sole fetch gate, and only enable persistent HEARTBEAT or cron workflows if you want that ongoing behavior.
Capability Analysis
Type: OpenClaw Skill Name: clawdefender Version: 1.0.1 The skill bundle 'clawdefender' is a security tool designed to protect AI agents from various attacks, including prompt injection, command injection, SSRF, credential exfiltration, and path traversal. The `SKILL.md` clearly outlines its defensive purpose and instructs the agent to be cautious of flagged content. The `clawdefender.sh` script implements extensive detection patterns for malicious activities and performs audits, input validation, and safe skill installation. The `sanitize.sh` script acts as a wrapper for prompt injection detection. All observed behaviors are consistent with a legitimate security scanner and lack any evidence of intentional harmful actions by the skill itself.
Capability Assessment
Purpose & Capability
The skill purpose is coherent, but the visible URL validation allowlists by substring before SSRF checks, and the JSON sanitizer mode appears under-implemented compared with its documentation.
Instruction Scope
The instructions tell agents not to follow flagged content and suggest persistent HEARTBEAT guidance; this is purpose-aligned security guidance but affects future agent behavior.
Install Mechanism
There is no install spec, but SKILL.md documents manual script copying/chmod and a user-directed --install flow that runs npx clawhub install before scanning the installed skill.
Credentials
The audit behavior targets installed skills/scripts under a hard-coded workspace path, which is broad but aligned with the stated security-audit purpose.
Persistence & Privilege
The artifacts reference persistent security logs, a whitelist file, HEARTBEAT guidance, and cron examples; these are disclosed/user-directed, with no hidden background execution shown.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install clawdefender
  3. After installation, invoke the skill by name or use /clawdefender
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.1
ClawDefender v1.0.1 - Tuned pattern detection to reduce false positives.
v1.0.0
- Initial release of ClawDefender v1.0.0. - Provides a comprehensive security toolkit for AI agents, including malware scanning, input sanitization, and blocking of prompt injection attacks. - Detects prompt injection, command injection, SSRF, credential exfiltration, and path traversal threats. - Includes scripts for auditing skills, sanitizing external input, validating URLs, and checking text for malicious patterns. - Designed for use during skill installation, processing of external input, and regular security audits. - Follows OWASP LLM Top 10 best practices and integrates easily with automation and CI/CD workflows.
Metadata
Slug clawdefender
Version 1.0.1
License
All-time Installs 351
Active Installs 72
Total Versions 2
Frequently Asked Questions

What is ClawDefender - OpenClaw Security - Prompt injection, rogue skills etc?

Security scanner and input sanitizer for AI agents. Detects prompt injection, command injection, SSRF, credential exfiltration, and path traversal attacks. Use when (1) installing new skills from ClawHub, (2) processing external input like emails, calendar events, Trello cards, or API responses, (3) validating URLs before fetching, (4) running security audits on your workspace. Protects agents from malicious content in untrusted data sources. It is an AI Agent Skill for Claude Code / OpenClaw, with 10162 downloads so far.

How do I install ClawDefender - OpenClaw Security - Prompt injection, rogue skills etc?

Run "/install clawdefender" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is ClawDefender - OpenClaw Security - Prompt injection, rogue skills etc free?

Yes, ClawDefender - OpenClaw Security - Prompt injection, rogue skills etc is completely free (open-source). You can download, install and use it at no cost.

Which platforms does ClawDefender - OpenClaw Security - Prompt injection, rogue skills etc support?

ClawDefender - OpenClaw Security - Prompt injection, rogue skills etc is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created ClawDefender - OpenClaw Security - Prompt injection, rogue skills etc?

It is built and maintained by Nukewire (@nukewire); the current version is v1.0.1.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments