🧪 Skills

Firm Advanced Security Pack

Advanced security audit pack covering secrets lifecycle, path canonicalization, exec plan freeze, hook routing, config includes, prototype pollution, safeBin...

v1.0.0
❤️ 0
⬇️ 137
👁 1
Save📁 Collect
Share

Description

name: firm-advanced-security-pack version: 1.0.0 description: > Advanced security audit pack covering secrets lifecycle, path canonicalization, exec plan freeze, hook routing, config includes, prototype pollution, safeBins profiles, and group policy defaults. 8 deep security tools. author: romainsantoli-web license: MIT metadata: openclaw: registry: ClawHub requires: - mcp-openclaw-extensions >= 3.0.0 tags:

  • security
  • advanced
  • audit
  • prototype-pollution
  • exec-freeze

firm-advanced-security-pack

⚠️ Contenu généré par IA — validation humaine requise avant utilisation.

Purpose

Deep security auditing for OpenClaw configurations — covers external secrets lifecycle, channel path canonicalization, execution plan freeze validation, hook session routing, $include directive guards, prototype pollution detection, safeBins profile enforcement, and group policy default audit.

Tools (8)

Tool Description Severity
openclaw_secrets_lifecycle_check External Secrets lifecycle audit CRITICAL
openclaw_channel_auth_canon_check Channel path canonicalization CRITICAL
openclaw_exec_approval_freeze_check Exec plan freeze validation CRITICAL
openclaw_hook_session_routing_check Hook session routing audit HIGH
openclaw_config_include_check $include directive guards HIGH
openclaw_config_prototype_check Prototype pollution detection HIGH
openclaw_safe_bins_profile_check safeBins profile enforcement HIGH
openclaw_group_policy_default_check Group policy default audit HIGH

Usage

skills:
  - firm-advanced-security-pack

# Run full advanced security audit:
openclaw_secrets_lifecycle_check config_path=/path/to/config.json
openclaw_config_prototype_check config_path=/path/to/config.json
openclaw_safe_bins_profile_check config_path=/path/to/config.json

Requirements

  • mcp-openclaw-extensions >= 3.0.0

Reviews (0)

Sign in to write a review.

No reviews yet. Be the first to review!

Comments (0)

Sign in to join the discussion.

No comments yet. Be the first to share your thoughts!

Compatible Platforms

Links

📂 Source Code

Pricing

Free

Related Configs

🧪 Skill

self-improving-agent

Free

Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...

❤️ 2.0k ⬇️ 218k
🧪 Skill

Self Improving Agent

Free

Captures learnings, errors, and corrections to enable continuous improvement. And also 50+ models for image generation, video generation, text-to-speech, spe...

❤️ 2.0k ⬇️ 206k
🧪 Skill

Find Skills

Free

Search, discover, and install skills from the open agent skills ecosystem to extend agent capabilities for specific tasks or domains.

❤️ 814 ⬇️ 199k
🧪 Skill

Summarize

Free

--- name: summarize description: Summarize URLs or files with the summarize CLI (web, PDFs, images, audio, YouTube). homepage: https://summarize.sh metadata: {"clawdbot":{"emoji":"🧾","requires":{"b

❤️ 609 ⬇️ 160k