OpenClaw Security Hardening Toolkit

Secures OpenClaw by auditing instance exposure, protecting credentials, verifying skill safety, enforcing gateway token access, and enabling session sandboxing.

This SKILL.md largely behaves like a legitimate hardening checklist, but before installing or running it: 1) note that the metadata lists no required binaries while the instructions call many system tools (ss, curl, openssl, python3, openclaw CLI). Confirm those tools exist and that the skill author intended that omission. 2) The checks and remediation steps will read/move config files and may require root (writing /etc/default/aegis, restarting the gateway). Back up openclaw.json and any affected files and test on a staging instance first. 3) Be aware the reachability test calls external services (ifconfig.me/curl) which reveals your public IP to a third party — run that step from a location you control or skip it if undesired. 4) Review the full SKILL.md yourself (or have a trusted admin do so) before permitting autonomous invocation: the instructions have the power to read many files and to write system-owned locations, so give the skill only the privileges and scope it needs. 5) What would raise confidence: author provenance (homepage or repo), an explicit list of required binaries and minimal privileges, and a dry-run mode that only reports findings without performing writes or restarts.

Type: OpenClaw Skill Name: openclaw-security-hardening-toolkit Version: 1.0.0 The skill bundle is a defensive security toolkit designed to audit and harden OpenClaw deployments. It provides legitimate instructions and shell commands for network exposure checks, credential discovery/rotation, and auditing other skills for malicious patterns (e.g., detecting ClawHavoc-style attacks). No malicious behavior, data exfiltration, or unauthorized execution was found; all actions are aligned with the stated purpose of security hardening (SKILL.md).