← Back to Skills Marketplace
nightfullstar

Openclaw Defender

by nightfullstar · GitHub ↗ · v0.1.0
cross-platform ⚠ suspicious
1499
Downloads
2
Stars
5
Active Installs
1
Versions
Install in OpenClaw
/install openclaw-defender
Description
Provides real-time file integrity monitoring, pre-installation skill audits, runtime threat blocking, kill switch activation, and incident response to protec...
Usage Guidance
This package mostly looks like a sensible defender toolkit, but before you enable it or wire it into your agent: 1) Inspect scripts/runtime-monitor.sh and update-lists.sh for any outbound network calls, hard-coded endpoints, or remote code execution; do not run generate-baseline.sh until you are sure your workspace is in a known-good state (creating a baseline from compromised files can lock in malicious state). 2) Do not add the cron job or integrate runtime-monitor hooks into OpenClaw core until you've audited the scripts (run them in an isolated/sandbox environment first). 3) Treat external update sources as hostile by default — either pin the blocklist source to a trusted repo you control or review fetched data before applying. 4) Verify the publisher/repository provenance (owner identity, GitHub repo activity) — absence of a clear homepage/author is a risk. 5) If you lack time/expertise to audit the runtime-monitor script, consider running audit-only features (scripts that scan skills) manually and delaying automated runtime enforcement. Following these steps will materially reduce supply-chain and persistence risk.
Capability Analysis
Type: OpenClaw Skill Name: openclaw-defender Version: 0.1.0 This skill bundle, 'openclaw-defender', is a comprehensive security framework designed to protect OpenClaw agents from various attacks, including prompt injection, credential theft, and data exfiltration. All analyzed files (scripts, documentation, and metadata) consistently describe defensive measures, threat detection, and incident response. The scripts like `runtime-monitor.sh` actively block dangerous commands, network requests to known malicious infrastructure (e.g., 91.92.242.30, glot.io), and file access to sensitive areas. The `audit-skills.sh` script scans for malicious patterns like base64 encoding, `curl|bash`, and prompt injection phrases, which are documented as threats, not executed by the skill itself. The `update-lists.sh` script legitimately uses `curl` or `wget` to fetch blocklists from a specified GitHub repository, which is a standard practice for updating threat intelligence in a security tool. There is no evidence of intentional harmful behavior; instead, the skill is explicitly designed to prevent such actions.
Capability Assessment
Purpose & Capability
Name and documentation claim a security/monitoring purpose and the repository contains matching tooling (integrity checks, audits, quarantine, runtime monitor, blocklist management). The requested actions (hashing SKILL.md, checking files, blocking network/file/command operations) are appropriate for a tool of this kind.
Instruction Scope
SKILL.md instructs the agent/admin to run scripts, create a baseline of critical files, add a cron job, and (optionally) integrate runtime calls into OpenClaw core. Those steps are expected for this functionality but are sensitive: generating a new baseline on a compromised workspace can codify malicious state, and the runtime protection only works if OpenClaw core actually invokes runtime-monitor.sh at the indicated hooks.
Install Mechanism
There is no automated install spec (lower risk) and code is included in the skill bundle. However update-lists.sh defaults to fetching blocklists/allowlists from an external GitHub repo (https://github.com/nightfullstar/openclaw-defender) and supports overriding that URL — a legitimate feature but a potential supply-chain vector if you allow automatic updates or accept untrusted remotes without review.
Credentials
The skill declares no required environment variables or credentials. Scripts optionally honor OPENCLAW_WORKSPACE / OPENCLAW_LOGS and may call the GitHub API if curl/jq are available. No unexplained secret/credential requests are present in the metadata or SKILL.md.
Persistence & Privilege
The skill recommends persistent monitoring (cron job every 10 minutes) and asks for runtime integration that would cause persistent per-skill checks. 'always' is not set; autonomous invocation is normal. The persistent presence is reasonable for a defender but raises impact if the runtime-monitor or update mechanism can be co-opted — review and audit before enabling cron/integration.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install openclaw-defender
  3. After installation, invoke the skill by name or use /openclaw-defender
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v0.1.0
Initial release with comprehensive security framework for OpenClaw agents. - Adds real-time file integrity monitoring and automatic tampering alerts. - Implements pre-installation skill auditing: pattern scanning, author reputation checks, and blocklist enforcement. - Introduces runtime protection: network, file, command, RAG operation controls, and output sanitization. - Adds a kill switch for emergency shutdown upon threat detection, with incident logging. - Enforces security policies with zero-trust rules and human approval workflow. - Includes logging, automated analytics, incident response tools, and collusion detection for advanced threat hunting. - Provides quick-start guides and operational best practices for secure skill management.
Metadata
Slug openclaw-defender
Version 0.1.0
License
All-time Installs 5
Active Installs 5
Total Versions 1
Frequently Asked Questions

What is Openclaw Defender?

Provides real-time file integrity monitoring, pre-installation skill audits, runtime threat blocking, kill switch activation, and incident response to protec... It is an AI Agent Skill for Claude Code / OpenClaw, with 1499 downloads so far.

How do I install Openclaw Defender?

Run "/install openclaw-defender" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Openclaw Defender free?

Yes, Openclaw Defender is completely free (open-source). You can download, install and use it at no cost.

Which platforms does Openclaw Defender support?

Openclaw Defender is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Openclaw Defender?

It is built and maintained by nightfullstar (@nightfullstar); the current version is v0.1.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments