clawarmor 3.0.0 → 3.0.1

package/README.md

@@ -1,6 +1,6 @@
 # ClawArmor
 
-Security armor for OpenClaw agents — audit, scan, monitor.
+The security control plane for OpenClaw agents — audit, harden, and orchestrate your full protection stack.
 
 [![npm version](https://img.shields.io/npm/v/clawarmor?color=3fb950&label=npm&style=flat-square)](https://www.npmjs.com/package/clawarmor)
 [![license](https://img.shields.io/badge/license-MIT-blue?style=flat-square)](LICENSE)
@@ -8,43 +8,77 @@ Security armor for OpenClaw agents — audit, scan, monitor.
 
 ## What it does
 
-- Audits your OpenClaw config and live gateway with 30+ checks — scored 0–100
-- Scans every installed skill file for malicious code and prompt injection patterns
-- Guards every install: intercepts `openclaw clawhub install`, pre-scans before activation
+AI agent security isn't one tool — it's a stack. ClawArmor is the foundation and control plane:
+
+1. **Audits** your OpenClaw config and live gateway — 30+ checks, scored 0–100
+2. **Hardens** your setup — auto-applies safe fixes, snapshots before every change
+3. **Orchestrates** the full security stack — deploys and configures [Invariant Guardrails](https://github.com/invariantlabs-ai/invariant) and [IronCurtain](https://github.com/provos/ironcurtain) based on your audit results
+
+```
+clawarmor audit          → understand your risk (0–100 score)
+clawarmor stack plan     → see what protection stack your risk profile needs
+clawarmor stack deploy   → deploy it in one command
+clawarmor stack sync     → keep everything aligned after changes
+```
 
 ## Quick start
 
 ```bash
 npm install -g clawarmor
-clawarmor protect --install
-clawarmor audit
+clawarmor protect --install   # install guard hooks
+clawarmor audit               # score your setup
+clawarmor stack deploy --all  # deploy full protection stack
 ```
 
+## The Stack
+
+ClawArmor sits at the foundation and orchestrates the layers above it:
+
+| Layer | Tool | What it does | ClawArmor role |
+|---|---|---|---|
+| **Foundation** | ClawArmor | Config hygiene, credential checks, skill supply chain | Audits + hardens |
+| **Flow guardrails** | [Invariant](https://github.com/invariantlabs-ai/invariant) | Detects multi-step attack chains at runtime | Generates rules from audit findings |
+| **Runtime sandbox** | [IronCurtain](https://github.com/provos/ironcurtain) | Policy-enforced tool call interception, V8 isolate | Generates constitution from audit findings |
+| **Action gating** | [Latch](https://github.com/latchagent/latch) | Human approval for risky actions via Telegram | Coming in v3.2 |
+
+`clawarmor stack deploy` reads your audit score, generates the right config for each tool, and deploys them. `clawarmor stack sync` keeps everything updated as your setup changes.
+
 ## Commands
 
+### Core
+
 | Command | Description |
 |---|---|
 | `audit` | Score your OpenClaw config (0–100), live gateway probes, plain-English verdict |
 | `scan` | Scan all installed skill files for malicious code and SKILL.md instructions |
 | `prescan <skill>` | Pre-scan a skill before installing — blocks on CRITICAL findings |
-| `protect --install` | Install guard hook, shell intercept (zsh/bash/fish), and watch daemon |
-| `protect --uninstall` | Remove all ClawArmor protection components |
-| `protect --status` | Show current protection state |
-| `watch` | Monitor config and skill changes in real time |
-| `watch --daemon` | Start the watcher as a background daemon |
-| `harden` | Interactive hardening wizard (--dry-run, --auto) |
+| `fix` | Auto-apply safe fixes (--dry-run to preview, --apply to run) |
+| `harden` | Interactive hardening wizard (--dry-run, --auto, --monitor) |
 | `status` | One-screen security posture dashboard |
-| `log` | View the audit event log |
-| `digest` | Show weekly security digest |
 | `verify` | Re-run only previously-failed checks (CI-friendly, exit 0 = all fixed) |
+
+### Stack Orchestration
+
+| Command | Description |
+|---|---|
+| `stack status` | Show all stack components, install state, config state |
+| `stack plan` | Preview what would be deployed based on current audit (no changes) |
+| `stack deploy` | Deploy stack components (--invariant, --ironcurtain, --all) |
+| `stack sync` | Regenerate stack configs from latest audit — run after harden/fix |
+| `stack teardown` | Remove deployed stack components |
+
+### History & Monitoring
+
+| Command | Description |
+|---|---|
 | `trend` | ASCII chart of your security score over time |
 | `compare` | Compare coverage vs openclaw security audit |
-| `fix` | Auto-apply safe fixes (--dry-run to preview, --apply to run) |
+| `log` | View the audit event log |
+| `digest` | Show weekly security digest |
+| `watch` | Monitor config and skill changes in real time |
+| `protect --install` | Install guard hook, shell intercept (zsh/bash/fish), and watch daemon |
 | `snapshot` | Save a config snapshot manually (auto-saved before every harden/fix) |
 | `rollback` | Restore config from auto-snapshot (--list, --id <id>) |
-| `harden --monitor` | Enable monitor mode — observe before enforcing |
-| `harden --monitor-report` | Show what monitor mode has observed |
-| `harden --monitor-off` | Disable monitor mode |
 
 ## What it catches
 
@@ -59,13 +93,14 @@ clawarmor audit
 | Live gateway auth | WebSocket probe — does server actually reject unauthenticated connections? | Full |
 | CORS misconfiguration | OPTIONS probe with arbitrary origin | Full |
 | Gateway exposure | TCP-connects to every non-loopback interface | Full |
-| Runtime policy enforcement | Requires a runtime layer (SupraWall) | None |
+| Multi-step attack chains | read→exfil, inject→execute flows (via Invariant) | Full (with stack) |
+| Runtime tool call interception | Policy-enforced sandboxing (via IronCurtain) | Full (with stack) |
 
 ## Safety features
 
-**Impact classification** — Every fix is tagged 🟢 Safe, 🟡 Caution, or 🔴 Breaking. `--auto` mode skips breaking changes unless you pass `--force`.
+**Impact classification** — Every fix is tagged 🟢 Safe, 🟡 Caution, or 🔴 Breaking. `--auto` skips breaking changes unless you pass `--force`.
 
-**Config snapshots** — ClawArmor auto-saves your config before every `harden` or `fix` run. If something breaks, roll back instantly:
+**Config snapshots** — Auto-saves before every `harden` or `fix` run:
 
 ```bash
 clawarmor rollback --list    # see all snapshots
@@ -73,7 +108,7 @@ clawarmor rollback           # restore the latest
 clawarmor rollback --id <n>  # restore a specific one
 ```
 
-**Monitor mode** — Observe what `harden` would do before enforcing:
+**Monitor mode** — Observe what `harden` would change before enforcing:
 
 ```bash
 clawarmor harden --monitor        # start monitoring
@@ -87,6 +122,8 @@ ClawArmor runs entirely on your machine — no telemetry, no cloud, no accounts.
 It has zero npm runtime dependencies, using only Node.js built-ins.
 Every run prints exactly what files it reads and what network calls it makes before executing anything.
 
+The full security stack for AI agents doesn't exist as one product. ClawArmor is the foundation that ties it together.
+
 ## License
 
 MIT

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "clawarmor",
-  "version": "3.0.0",
+  "version": "3.0.1",
   "description": "Security armor for OpenClaw agents — audit, scan, monitor",
   "bin": {
     "clawarmor": "cli.js"