← Back to Skills Marketplace
Security Monitor Deploy
by
aiwithabidi
· GitHub ↗
· v1.0.0
642
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install security-monitor-deploy
Description
Comprehensive security audit for OpenClaw deployments. Checks Docker port bindings, SSH config, openclaw.json settings, file permissions, exposed services, a...
Usage Guidance
This skill appears to do what it says: a local security audit. Before installing or running it: 1) Review the entire scripts/security_audit.sh file yourself (the provided content was truncated in the review). 2) Run it on a non-production or disposable system first (or inside an isolated container/VM) so you don't expose real secrets during testing. 3) Note it inspects /var/run/docker.sock and may run docker inspect/ps — if your Docker containers hold secrets in environment variables, the audit may see them. 4) Confirm you trust the unknown publisher/homepage; if unsure, ask for source provenance or run the script under restricted privileges. 5) If you need higher assurance, have someone with shell experience audit the remainder of the script for any unexpected network calls, obfuscated behavior, or commands that read or transmit file contents.
Capability Analysis
Type: OpenClaw Skill
Name: security-monitor-deploy
Version: 1.0.0
The OpenClaw AgentSkills bundle 'security-monitor-deploy' is a security auditing tool. The `SKILL.md` documentation clearly outlines its purpose to perform comprehensive security checks on Docker, SSH, network, file permissions, and OpenClaw configurations. The `scripts/security_audit.sh` script implements these checks by inspecting system configurations, Docker settings, network services, and file permissions using standard system utilities (e.g., `docker`, `grep`, `stat`, `find`, `ss`, `python3` for JSON parsing). While the script requires significant system access to perform its audit functions, all actions are directly aligned with its stated purpose of identifying security vulnerabilities, not exploiting them or exfiltrating data. There is no evidence of malicious intent, data exfiltration, persistence mechanisms, obfuscation, or prompt injection attempts against the agent.
Capability Assessment
Purpose & Capability
Name/description claim a local security audit. The skill only requires the docker binary and its script inspects OpenClaw config files, Docker, SSH, firewall, listening services, and file permissions — all consistent with an audit tool. No unrelated credentials or binaries are requested.
Instruction Scope
The SKILL.md instructs the agent to run the included shell script which enumerates and inspects local files (/root/.openclaw/openclaw.json, ~/.openclaw, /etc/ssh/sshd_config, /var/run/docker.sock, SSH key dirs, .env files) and runs docker/ss/netstat/iptables/ufw commands. This is expected for a security audit, but these actions access sensitive local files and system state — the script checks permissions and configuration but generally does not display full private key contents in the portions shown. The SKILL.md and script are consistent, but the script was truncated in the review so the full behavior could not be confirmed.
Install Mechanism
No install spec; this is instruction-only with a bundled script. Nothing is downloaded or written to disk by an installer. This is the lower-risk pattern for skills that are local-audit focused.
Credentials
The skill declares no required environment variables or credentials, which is appropriate. However, the script reads various sensitive files and system resources (openclaw.json, .env files, SSH key paths, Docker socket and container details). Those accesses are proportionate to an auditing tool but are inherently sensitive — running the script gives it the ability to inspect local secrets and container metadata (Docker inspect can reveal container environment variables).
Persistence & Privilege
The skill is not always-enabled and does not request persistent presence or modify other skills. It runs as a one-off script when invoked. The agent's autonomous invocation capability is default and not combined with other concerning privileges here.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install security-monitor-deploy - After installation, invoke the skill by name or use
/security-monitor-deploy - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release of Security Monitor.
- Performs comprehensive security audits for OpenClaw deployments.
- Checks Docker port bindings, SSH configuration, OpenClaw JSON settings, file permissions, exposed services, and firewall rules.
- Generates a security score (0–100) with detailed recommendations.
- Supports detailed output in both standard and JSON formats.
- Includes scoring rubric and actionable improvement tips for production readiness.
Metadata
Frequently Asked Questions
What is Security Monitor Deploy?
Comprehensive security audit for OpenClaw deployments. Checks Docker port bindings, SSH config, openclaw.json settings, file permissions, exposed services, a... It is an AI Agent Skill for Claude Code / OpenClaw, with 642 downloads so far.
How do I install Security Monitor Deploy?
Run "/install security-monitor-deploy" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Security Monitor Deploy free?
Yes, Security Monitor Deploy is completely free (open-source). You can download, install and use it at no cost.
Which platforms does Security Monitor Deploy support?
Security Monitor Deploy is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Security Monitor Deploy?
It is built and maintained by aiwithabidi (@aiwithabidi); the current version is v1.0.0.
More Skills