← Back to Skills Marketplace
jzming9

ShieldClaw

by jzming9 · GitHub ↗ · v1.0.4 · MIT-0
cross-platform ✓ Security Clean
180
Downloads
1
Stars
0
Active Installs
5
Versions
Install in OpenClaw
/install shieldclaw
Description
Security suite for OpenClaw. Provides security scanning, real-time protection, audit logging, and sensitive data encryption. Use this skill when users need s...
Usage Guidance
ShieldClaw appears internally consistent with a local security tool, but before installing: 1) review the runtime behavior of the included plugins (@shieldclaw/scan, /guard, /audit, /vault) since only their import names appear in the bundle — these implementations determine whether any network calls or unexpected operations occur; 2) be aware the skill will access/monitor sensitive paths (default ~/.ssh and ~/.aws) and will create a local DB and config files in your user data directory; 3) if you plan to enable Guard strict/auto-blocking or automatic scans on install, test in a controlled environment first so you don't accidentally block legitimate tools; and 4) if you require higher assurance, ask the author for the source code of the referenced @shieldclaw/* packages or run the plugin in a sandbox to inspect its behavior.
Capability Analysis
Type: OpenClaw Skill Name: shieldclaw Version: 1.0.4 The 'shieldclaw' bundle is a security suite providing scanning, real-time protection, and data encryption. The integration code in 'apps/openclaw-integration/dist/index.js' and 'dist/index.js' serves as a boilerplate framework for loading security plugins (Scan, Guard, Audit, Vault) and managing system hooks. While the bundle requests broad permissions (filesystem, network, storage) and describes high-risk capabilities like network interception and process monitoring, these are strictly aligned with its stated defensive purpose. The implementation is professional, lacks obfuscation, and contains no evidence of malicious intent, data exfiltration, or unauthorized access.
Capability Assessment
Purpose & Capability
Name/description, manifest permissions (filesystem, network, storage), README and SKILL.md all describe a security suite that scans code, monitors file/network/process operations, audits events, and encrypts secrets. The declared capabilities align with the requested permissions and included code that wires in Scan/Guard/Audit/Vault plugins.
Instruction Scope
SKILL.md and README instruct the agent to scan skill directories, protect sensitive paths (default: ~/.ssh, ~/.aws), and store audit logs locally. This matches the skill purpose. Note: Guard promises real-time fs/network/process interception; the provided integration code contains a HookFramework skeleton and relies on external Guard plugin implementations to do the actual hooking. Verify what the Guard plugin does at runtime before enabling strict/automatic blocking.
Install Mechanism
No install spec (instruction-only install) is provided, but compiled JS files are bundled in the package (dist/*.js). Nothing downloads arbitrary archives or uses an untrusted URL. There is no installer that fetches code from unknown hosts in the manifest.
Credentials
The skill does not request environment variables or credentials, which is appropriate. However it defaults to protecting/accessing highly sensitive filesystem locations (~/.ssh, ~/.aws) and uses the system keychain for encryption keys and a local SQLite DB. These are proportionate to a local security product, but you should be aware the skill will read/write those locations and may require OS keychain APIs.
Persistence & Privilege
always is false and autonomous invocation is allowed by default. The skill will create configuration and database files in the user's data directory (documented in README). That local persistence is expected for an audit/guard/vault product and doesn't modify other skills or system-wide agent settings.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install shieldclaw
  3. After installation, invoke the skill by name or use /shieldclaw
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.4
No changes detected in this version. - The skill description, features, configuration, and recommendations remain unchanged. - No file modifications were detected in this release.
v1.0.3
- SKILL.md translated from Chinese to English for broader accessibility. - No code or functionality changes; documentation only. - All features, configuration options, and usage scenarios remain the same.
v1.0.2
- Added OpenClaw integration files in apps/openclaw-integration/dist (index.js, index.d.ts, and maps) - Removed README.en.md - SKILL.md rewritten in Chinese with improved structure, richer usage examples, detailed abilities for each core feature (Scan, Guard, Vault, Audit), and configuration table - Expanded security recommendations and clarified supported environments and limitations
v1.0.1
Version 1.0.1 - Added a CHANGELOG.md file. - Updated SKILL.md: streamlined feature descriptions and removed pricing/tier information. - Revised audit report section for clarity; simplified references to "security reports" instead of "compliance" reports. - Moved feature and limitation details for better readability.
v1.0.0
🎉 ShieldClaw 1.0.0 - Initial Release! ✨ Core Features: - 🔍 Scan: Security scanning and risk assessment for OpenClaw Skills - 🛡️ Guard: Real-time behavior monitoring and threat interception - 📊 Audit: Operation logging and security reporting - 🔐 Vault: Sensitive data encryption and secure storage 💰 Pricing: - Free: $0 forever, essential security features - Pro: $1.4/month, unlock advanced features - Team: $0.8-1.4/seat/month, best for teams 🚀 Ready to protect your OpenClaw environment!
Metadata
Slug shieldclaw
Version 1.0.4
License MIT-0
All-time Installs 0
Active Installs 0
Total Versions 5
Frequently Asked Questions

What is ShieldClaw?

Security suite for OpenClaw. Provides security scanning, real-time protection, audit logging, and sensitive data encryption. Use this skill when users need s... It is an AI Agent Skill for Claude Code / OpenClaw, with 180 downloads so far.

How do I install ShieldClaw?

Run "/install shieldclaw" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is ShieldClaw free?

Yes, ShieldClaw is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does ShieldClaw support?

ShieldClaw is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created ShieldClaw?

It is built and maintained by jzming9 (@jzming9); the current version is v1.0.4.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments