npm - @clawnitor/plugin - Versions diffs - 1.0.0 → 1.0.1 - Mend

@clawnitor/plugin 1.0.0 → 1.0.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (2) hide show

package/README.md +74 -24
package/package.json +4 -2

package/README.md CHANGED Viewed

@@ -1,15 +1,20 @@
 # @clawnitor/plugin
-OpenClaw plugin for Clawnitor — agent monitoring, alerting, and kill switch.
+[![npm](https://img.shields.io/npm/v/@clawnitor/plugin?color=FF6B4A)](https://www.npmjs.com/package/@clawnitor/plugin)
+[![license](https://img.shields.io/badge/license-AGPL--3.0-A78BFA)](LICENSE)
-## Installation
+Agent monitoring, rules enforcement, and kill switch for OpenClaw. Blocks dangerous actions **before** they execute.
+## Why
+Prompt-level safety instructions are fragile — they get dropped during context compaction, ignored by the model, or overridden by conflicting instructions. Clawnitor enforces rules at the architecture level via `before_tool_call`. Context compaction can't drop it because it's not in the context.
+## Install
 ```bash
-openclaw plugins install @clawnitor/plugin
+npm install @clawnitor/plugin
 ```
-## Configuration
 Add to your `openclaw.json`:
 ```json
@@ -26,35 +31,80 @@ Add to your `openclaw.json`:
 }
 ```
-### Options
+Get your API key at [clawnitor.io](https://clawnitor.io). Events appear on your dashboard immediately.
+## What it captures
+| Event | Hook | Details |
+|-------|------|---------|
+| Tool calls | `before_tool_call` / `after_tool_call` | Name, params, result, duration. **Can block.** |
+| LLM requests | `llm_input` / `llm_output` | Model, tokens, cost |
+| Messages | `message_sending` / `message_sent` / `message_received` | Content (redacted). **Can block sends.** |
+| Lifecycle | `session_start` / `session_end` / `agent_end` | Session tracking |
+| Sub-agents | `subagent_spawning` / `subagent_ended` | Coordination tracking |
+## Pre-action defense (3 layers)
+Every tool call and message is checked **before execution**:
+1. **Kill state** — server-triggered pause via WebSocket. Instant, remote.
+2. **Local failsafe** — spend circuit breaker, rate limiter, tool blocklist. Always active, even offline.
+3. **Cached rules** — your server-side rules fetched every 60s, evaluated locally. Keyword, rate, threshold — all pre-action.
+If any layer triggers, the action is blocked in-process. Zero network latency.
+```
+// Agent tries to run: bash("rm -rf /app/data")
+// Clawnitor intercepts via before_tool_call:
+BLOCKED by Clawnitor
+  Rule matched: keyword "rm -rf"
+  Action stopped before execution
+  Agent paused. Resume from dashboard when ready.
+```
+## Configuration
 | Option | Default | Description |
 |--------|---------|-------------|
-| `apiKey` | required | Your Clawnitor API key |
+| `apiKey` | **required** | Your Clawnitor API key (starts with `clw_live_`) |
 | `backendUrl` | `https://api.clawnitor.io` | Backend URL |
-| `spendLimit` | `100` | Max spend per session ($) before auto-pause |
+| `spendLimit` | `100` | Session spend limit in USD before auto-pause |
 | `rateLimit` | `120` | Max tool calls per minute before auto-pause |
-| `toolBlocklist` | `[]` | Tool names to always block |
+| `toolBlocklist` | `[]` | Tool names to always block (case-insensitive) |
 | `redactionPatterns` | `[]` | Additional regex patterns for secret redaction |
-## What it monitors
+### Full example
+```json
+{
+  "plugins": {
+    "entries": {
+      "clawnitor": {
+        "config": {
+          "apiKey": "clw_live_abc123",
+          "spendLimit": 50,
+          "rateLimit": 60,
+          "toolBlocklist": ["execute_bash", "delete_file"],
+          "redactionPatterns": ["sk-[a-zA-Z0-9]{32}"]
+        }
+      }
+    }
+  }
+}
+```
-- Tool calls (before and after execution)
-- LLM requests (input/output, token usage, cost)
-- Messages (sending, sent, received)
-- Session lifecycle (start, end, agent completion)
-- Sub-agent spawning and completion
+## Privacy
-## Safety features
+Sensitive data (API keys, passwords, tokens) is automatically redacted before transmission. 25+ built-in patterns plus your custom `redactionPatterns`. Data sharing for aggregate pattern improvement is opt-in and **off by default**.
-- **Kill switch** — blocks tool calls and messages when agent is paused (server or local)
-- **Spend circuit breaker** — auto-pauses at configurable spend limit
-- **Rate limiter** — auto-pauses at configurable tool call rate
-- **Tool blocklist** — prevents specific tools from ever executing
-- **Secret redaction** — strips API keys, passwords, tokens from logged data
+## Links
-## Privacy
+- [Live demo](https://clawnitor.io/demo) — see it in action, no signup
+- [Documentation](https://clawnitor.io/docs) — full reference
+- [Dashboard](https://app.clawnitor.io) — sign up and monitor
+- [Main repo](https://github.com/davidkny22/clawnitor) — backend + dashboard source
-Event data streams to the Clawnitor backend for monitoring. Sensitive data (API keys, passwords, tokens) is automatically redacted before transmission. Data sharing for aggregate pattern improvement is opt-in (default OFF).
+## License
-Learn more at https://clawnitor.io
+[AGPL-3.0](LICENSE)

package/package.json CHANGED Viewed

@@ -1,12 +1,14 @@
 {
   "name": "@clawnitor/plugin",
-  "version": "1.0.0",
+  "version": "1.0.1",
   "description": "OpenClaw plugin for Clawnitor — agent monitoring, alerting, and kill switch",
   "type": "module",
   "main": "./dist/index.js",
   "types": "./dist/index.d.ts",
   "openclaw": {
-    "extensions": ["./dist/index.js"]
+    "extensions": [
+      "./dist/index.js"
+    ]
   },
   "files": [
     "dist",