← Back to Skills Marketplace
cubeclaw

Claw Def

by cubeclaw · GitHub ↗ · v1.0.0 · MIT-0
cross-platform ⚠ suspicious
97
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install claw-def
Description
Provides AI-driven security protection for OpenClaw with threat detection, risk alerts, real-time interception, file and permission management, and security...
README (SKILL.md)

ClawDef

OpenClaw 原生安全防护系统

版本: 1.0.0
作者: ClawDef Team
标签: security, protection, safety

🎯 功能

为 OpenClaw 提供 AI Agent 安全防护,包括:

  • 云端威胁库
  • 安装时风险提示
  • 运行时实时拦截
  • 文件保护
  • 权限管理
  • 安全日志

📦 安装

clawhub install claw-def

🚀 使用

安装后自动启用,无需额外配置。

📊 测试

  • 测试覆盖率:100% (13/13)
  • 性能损耗:\x3C2%
  • 内存占用:\x3C100MB

📄 许可证

MIT License

📞 反馈

GitHub: https://github.com/clawdef/claw-def/issues

Usage Guidance
This package is internally inconsistent rather than overtly malicious. Before installing: (1) ask the author for the missing runtime (src/main.py) and for the implementation of the advertised cloud threat library and WebSocket endpoints; (2) verify the repository URL and review any network code (requests/websockets) for endpoints and auth handling; (3) confirm whether the package will run code that touches your home directory (it expands '~' and checks absolute paths) and run it first in a sandboxed environment; (4) be cautious of the tests' hard-coded sys.path (/home/admin/.openclaw/…), which reveal assumptions about host paths — ensure installation won't implicitly rely on or overwrite those locations; (5) if you need cloud features, require explicit declaration of required env vars/credentials and inspect how they are stored/transmitted. Given the missing main runtime and overpromises, do not install in production until the author provides the missing runtime code and a clear security/privacy design.
Capability Analysis
Type: OpenClaw Skill Name: claw-def Version: 1.0.0 The 'claw-def' skill bundle is a security utility designed to protect the OpenClaw environment from malicious activities. The core logic in 'src/file_protection.py' implements a legitimate access control system that categorizes file paths into 'critical' (e.g., SSH keys, GPG, system passwords), 'restricted' (e.g., AWS/Azure credentials), and 'allowed' zones, effectively blocking or prompting for permission upon access. The bundle includes comprehensive test suites and extensive documentation (README.md, SKILL.md, and various marketing/release plans) that are entirely consistent with its stated purpose of providing a native security layer. No indicators of data exfiltration, malicious execution, or harmful prompt injection were identified.
Capability Assessment
Purpose & Capability
The metadata and docs advertise a cloud threat library, WebSocket realtime push, a main runtime (src/main.py), and dependencies (requests, websockets), but the repository contents only include a small local file_protection.py and tests — there is no src/main.py, no cloud-client implementation, and no code that performs network calls. This is an overpromise: someone building the advertised cloud-backed product would legitimately need the missing runtime and network code and likely environment configuration, but those are absent.
Instruction Scope
SKILL.md is minimal (install via 'clawhub install claw-def' and 'auto-enable') and does not describe runtime behavior or network endpoints. The tests insert a hard-coded sys.path to '/home/admin/.openclaw/workspace/claw-def/src', which indicates assumptions about host filesystem layout and could lead to accidental access to host paths when tests or code run. The one real runtime function (FileProtectionManager.check_file_operation) only checks/blocks paths and does not read or transmit files, but the packaging claims broader runtime interception and cloud queries that are not specified in instructions.
Install Mechanism
There is no install spec that downloads or extracts remote artifacts; the SKILL.md suggests 'clawhub install claw-def' and a manual git+pip option. No arbitrary URLs, installers, or packaged binaries are present in the provided files, which reduces install-time risk. However, the repository references a GitHub URL in skill.json that should be verified before using an install command that fetches remote code.
Credentials
The skill declares no required environment variables or credentials. That is proportionate for the actual code present, which performs only local path checks. Note: the advertised cloud features would typically require API credentials or endpoints — those are not declared, another inconsistency to clarify.
Persistence & Privilege
always is false and model invocation is allowed (platform default). The package does not request permanent presence or modify other skills' configurations in the supplied files. Nothing in the code writes to global agent config or requests elevated privileges; still, absent the runtime main, it's unclear what an installed package would actually register with the agent.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install claw-def
  3. After installation, invoke the skill by name or use /claw-def
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release of ClawDef, the native security protection system for OpenClaw. - Provides AI Agent security features: cloud threat database, risk alerts during installation, real-time runtime interception, file protection, permission management, and security logs - Installs via clawhub and activates automatically - Tested with 100% coverage and minimal performance impact (<2% CPU, <100MB RAM) - Open source under the MIT License
Metadata
Slug claw-def
Version 1.0.0
License MIT-0
All-time Installs 0
Active Installs 0
Total Versions 1
Frequently Asked Questions

What is Claw Def?

Provides AI-driven security protection for OpenClaw with threat detection, risk alerts, real-time interception, file and permission management, and security... It is an AI Agent Skill for Claude Code / OpenClaw, with 97 downloads so far.

How do I install Claw Def?

Run "/install claw-def" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Claw Def free?

Yes, Claw Def is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does Claw Def support?

Claw Def is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Claw Def?

It is built and maintained by cubeclaw (@cubeclaw); the current version is v1.0.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments