hackmyagent-core 0.4.2 → 0.4.3

package/README.md

@@ -7,16 +7,18 @@
 
 **Website:** [hackmyagent.com](https://hackmyagent.com) — Scan external infrastructure for exposed MCP endpoints, configs, and credentials
 
-## What's New — v0.4.0
+## What's New — v0.4.3
 
 **First scanner for [CVE-2026-25253](https://hackmyagent.com/blog/cve-2026-25253-detection)** (CVSS 8.8) — the OpenClaw WebSocket hijacking RCE.
 
 - **CVE-001:** Detect vulnerable OpenClaw versions (before v2026.1.29)
 - **CVE-002:** Control UI origin restrictions (defense-in-depth hardening)
+- **CVE-003:** CVE-2026-25157 — OS command injection via SSH path (CVSS 7.8)
+- **CVE-004:** CVE-2026-24763 — Docker PATH command injection (CVSS 8.8)
 - **SUPPLY-005–008:** ClawHavoc campaign IOCs (C2 IPs, malware filenames, ClickFix patterns)
 - **GATEWAY-007–008, CONFIG-007–009:** Config hardening (open DM wildcards, disabled sandbox, weak tokens)
 
-11 new checks. 145+ total.
+13 new checks. 147+ total.
 
 ## Disclaimer
 
@@ -24,7 +26,7 @@ HackMyAgent performs passive reconnaissance only (port checks and HTTP requests)
 
 ```bash
 npx hackmyagent check @publisher/skill     # verify a skill before installing
-npx hackmyagent secure                      # harden your agent setup (145+ checks)
+npx hackmyagent secure                      # harden your agent setup (147+ checks)
 npx hackmyagent secure --fix                # auto-fix security issues
 npx hackmyagent scan example.com            # scan for exposed infrastructure
 npx hackmyagent attack --local              # red team with 55 attack payloads
@@ -43,7 +45,7 @@ npx hackmyagent secure --benchmark oasb-1   # run OASB-1 security benchmark
 CVE-2026-25253 turned every OpenClaw installation into a remote code execution target. 341 malicious skills were distributed through ClawHub. AI agent security is no longer theoretical — HackMyAgent helps you:
 
 - **Check** skills before installing (publisher verification, permission analysis)
-- **Secure** your agent setup (145+ security checks with auto-remediation)
+- **Secure** your agent setup (147+ security checks with auto-remediation)
 - **Scan** external infrastructure (exposed MCP endpoints, leaked configs)
 
 ## Installation
@@ -63,7 +65,7 @@ npm install --save-dev hackmyagent
 
 ### `hackmyagent secure`
 
-Scan and harden your local agent setup with 145+ security checks across 31 categories.
+Scan and harden your local agent setup with 147+ security checks across 31 categories.
 
 ```bash
 # Basic scan
@@ -116,7 +118,7 @@ hackmyagent secure --verbose
 | API | 4 | API security |
 | VSCODE | 4 | VS Code configuration |
 | CURSOR | 4 | Cursor IDE configuration |
-| CVE | 2 | CVE-2026-25253 detection |
+| CVE | 4 | OpenClaw CVE detection |
 | GATEWAY | 8 | Gateway misconfigurations |
 | CONFIG | 9 | Insecure settings |
 | SUPPLY | 8 | Supply chain attacks |
@@ -329,7 +331,7 @@ hackmyagent secure -b oasb-1 --fail-below 70
 
 ### `hackmyagent secure-openclaw`
 
-Scan OpenClaw/Moltbot installations with 45 specialized security checks and auto-remediation.
+Scan OpenClaw/Moltbot installations with 47 specialized security checks and auto-remediation.
 
 ```bash
 hackmyagent secure-openclaw              # scan default location
@@ -367,7 +369,7 @@ hackmyagent secure-openclaw --json       # JSON output for CI/CD
 | GATEWAY | 8 | Gateway misconfigurations (4 auto-fixable) |
 | CONFIG | 9 | Insecure settings |
 | SUPPLY | 8 | Supply chain attacks |
-| CVE | 2 | CVE-2026-25253 detection |
+| CVE | 4 | OpenClaw CVE detection |
 
 See [SECURITY_CHECKS.md](docs/SECURITY_CHECKS.md#openclaw-security-checks) for full documentation.
 
@@ -462,7 +464,7 @@ hackmyagent secure --json | jq '.findings[] | select(.severity == "critical")'
 
 ## Security Check Reference
 
-For the complete list of 145+ security checks with descriptions and remediation guidance, see [SECURITY_CHECKS.md](docs/SECURITY_CHECKS.md).
+For the complete list of 147+ security checks with descriptions and remediation guidance, see [SECURITY_CHECKS.md](docs/SECURITY_CHECKS.md).
 
 ## Auto-Fix Capabilities
 

package/dist/hardening/scanner.d.ts

@@ -136,7 +136,7 @@ export declare class HardeningScanner {
      */
     private checkOpenclawSupplyChain;
     /**
-     * OpenClaw CVE-specific checks (CVE-001, CVE-002)
+     * OpenClaw CVE-specific checks (CVE-001, CVE-002, CVE-003, CVE-004)
      */
     private checkOpenclawCVE;
 }

package/dist/hardening/scanner.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"scanner.d.ts","sourceRoot":"","sources":["../../src/hardening/scanner.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAIH,OAAO,KAAK,EAAE,UAAU,EAA0C,MAAM,kBAAkB,CAAC;AAyD3F,MAAM,WAAW,WAAW;IAC1B,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,0CAA0C;IAC1C,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,0DAA0D;IAC1D,MAAM,CAAC,EAAE,MAAM,EAAE,CAAC;IAClB,wEAAwE;IACxE,WAAW,CAAC,EAAE,MAAM,EAAE,CAAC;CACxB;AA8HD,qBAAa,gBAAgB;IAE3B,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,YAAY,CAelC;IAEF;;OAEG;IACH,OAAO,CAAC,qBAAqB;IAMvB,IAAI,CAAC,OAAO,EAAE,WAAW,GAAG,OAAO,CAAC,UAAU,CAAC;YA8NvC,cAAc;IAsE5B;;OAEG;YACW,iBAAiB;IA+F/B;;OAEG;IACH,OAAO,CAAC,gBAAgB;YAeV,uBAAuB;YAmGvB,aAAa;YAgDb,cAAc;YA+Fd,oBAAoB;YAwDpB,gBAAgB;YA0IhB,oBAAoB;YAgFpB,gBAAgB;YA2IhB,mBAAmB;YA4EnB,iBAAiB;YAyCjB,iBAAiB;YA+DjB,wBAAwB;YA0FxB,wBAAwB;YAmExB,wBAAwB;YAqHxB,oBAAoB;YA+GpB,uBAAuB;YA8HvB,iBAAiB;YA8GjB,oBAAoB;YAuGpB,mBAAmB;YAiGnB,gBAAgB;YAmIhB,oBAAoB;YAoIpB,gBAAgB;YAyHhB,qBAAqB;YA+GrB,eAAe;IAiI7B;;OAEG;YACW,mBAAmB;IA8GjC;;OAEG;YACW,oBAAoB;IAiKlC;;OAEG;YACW,iBAAiB;IA4I/B;;OAEG;YACW,oBAAoB;IAwIlC;;OAEG;YACW,eAAe;IAqJ7B;;OAEG;YACW,eAAe;IAuI7B;;OAEG;YACW,eAAe;IAyG7B;;OAEG;YACW,mBAAmB;IAmHjC,OAAO,CAAC,cAAc;IAsBtB;;OAEG;YACW,YAAY;IAkD1B;;OAEG;IACG,QAAQ,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IA6DhD;;;OAGG;YACW,cAAc;IAgD5B;;OAEG;YACW,mBAAmB;IAoUjC;;;OAGG;YACW,kBAAkB;IAgDhC;;OAEG;YACW,sBAAsB;IA2LpC;;OAEG;YACW,sBAAsB;IA+BpC;;OAEG;YACW,oBAAoB;IAqVlC;;OAEG;IACH,OAAO,CAAC,mBAAmB;IA4B3B;;OAEG;YACW,iBAAiB;IA8D/B;;OAEG;YACW,mBAAmB;IA6VjC;;OAEG;YACW,wBAAwB;IA4OtC;;OAEG;YACW,gBAAgB;CAmG/B"}
+{"version":3,"file":"scanner.d.ts","sourceRoot":"","sources":["../../src/hardening/scanner.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAIH,OAAO,KAAK,EAAE,UAAU,EAA0C,MAAM,kBAAkB,CAAC;AAyD3F,MAAM,WAAW,WAAW;IAC1B,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,0CAA0C;IAC1C,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,0DAA0D;IAC1D,MAAM,CAAC,EAAE,MAAM,EAAE,CAAC;IAClB,wEAAwE;IACxE,WAAW,CAAC,EAAE,MAAM,EAAE,CAAC;CACxB;AA8HD,qBAAa,gBAAgB;IAE3B,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,YAAY,CAelC;IAEF;;OAEG;IACH,OAAO,CAAC,qBAAqB;IAMvB,IAAI,CAAC,OAAO,EAAE,WAAW,GAAG,OAAO,CAAC,UAAU,CAAC;YA8NvC,cAAc;IAsE5B;;OAEG;YACW,iBAAiB;IA+F/B;;OAEG;IACH,OAAO,CAAC,gBAAgB;YAeV,uBAAuB;YAmGvB,aAAa;YAgDb,cAAc;YA+Fd,oBAAoB;YAwDpB,gBAAgB;YA0IhB,oBAAoB;YAgFpB,gBAAgB;YA2IhB,mBAAmB;YA4EnB,iBAAiB;YAyCjB,iBAAiB;YA+DjB,wBAAwB;YA0FxB,wBAAwB;YAmExB,wBAAwB;YAqHxB,oBAAoB;YA+GpB,uBAAuB;YA8HvB,iBAAiB;YA8GjB,oBAAoB;YAuGpB,mBAAmB;YAiGnB,gBAAgB;YAmIhB,oBAAoB;YAoIpB,gBAAgB;YAyHhB,qBAAqB;YA+GrB,eAAe;IAiI7B;;OAEG;YACW,mBAAmB;IA8GjC;;OAEG;YACW,oBAAoB;IAiKlC;;OAEG;YACW,iBAAiB;IA4I/B;;OAEG;YACW,oBAAoB;IAwIlC;;OAEG;YACW,eAAe;IAqJ7B;;OAEG;YACW,eAAe;IAuI7B;;OAEG;YACW,eAAe;IAyG7B;;OAEG;YACW,mBAAmB;IAmHjC,OAAO,CAAC,cAAc;IAsBtB;;OAEG;YACW,YAAY;IAkD1B;;OAEG;IACG,QAAQ,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IA6DhD;;;OAGG;YACW,cAAc;IAgD5B;;OAEG;YACW,mBAAmB;IAoUjC;;;OAGG;YACW,kBAAkB;IAgDhC;;OAEG;YACW,sBAAsB;IA2LpC;;OAEG;YACW,sBAAsB;IA+BpC;;OAEG;YACW,oBAAoB;IAqVlC;;OAEG;IACH,OAAO,CAAC,mBAAmB;IA4B3B;;OAEG;YACW,iBAAiB;IA8D/B;;OAEG;YACW,mBAAmB;IA6VjC;;OAEG;YACW,wBAAwB;IA4OtC;;OAEG;YACW,gBAAgB;CA4J/B"}

package/dist/hardening/scanner.js

@@ -5227,7 +5227,7 @@ dist/
         return findings;
     }
     /**
-     * OpenClaw CVE-specific checks (CVE-001, CVE-002)
+     * OpenClaw CVE-specific checks (CVE-001, CVE-002, CVE-003, CVE-004)
      */
     async checkOpenclawCVE(targetDir, _autoFix) {
         const findings = [];
@@ -5263,11 +5263,69 @@ dist/
                         fixable: false,
                         fix: 'Upgrade openclaw to v2026.1.29 or later: npm install openclaw@latest',
                     });
+                    // CVE-003: OS Command Injection via SSH Path (same fix version)
+                    if (isVulnerable) {
+                        findings.push({
+                            checkId: 'CVE-003',
+                            name: 'CVE-2026-25157: OS Command Injection via SSH Path',
+                            description: 'OpenClaw version vulnerable to CVE-2026-25157 (CVSS 7.8) - unescaped project path enables command injection on SSH hosts',
+                            category: 'cve',
+                            severity: 'high',
+                            passed: false,
+                            message: `OpenClaw ${openclawVersion} is vulnerable to CVE-2026-25157 - upgrade to v2026.1.29+`,
+                            file: 'package.json',
+                            fixable: false,
+                            fix: 'Upgrade openclaw to v2026.1.29 or later: npm install openclaw@latest',
+                        });
+                    }
+                    else {
+                        findings.push({
+                            checkId: 'CVE-003',
+                            name: 'CVE-2026-25157: OS Command Injection via SSH Path',
+                            description: 'OpenClaw version includes CVE-2026-25157 fix',
+                            category: 'cve',
+                            severity: 'high',
+                            passed: true,
+                            message: `OpenClaw ${openclawVersion} includes CVE-2026-25157 fix`,
+                            file: 'package.json',
+                            fixable: false,
+                            fix: 'No action needed',
+                        });
+                    }
+                    // CVE-004: Docker PATH Command Injection (same fix version)
+                    if (isVulnerable) {
+                        findings.push({
+                            checkId: 'CVE-004',
+                            name: 'CVE-2026-24763: Docker PATH Command Injection',
+                            description: 'OpenClaw version vulnerable to CVE-2026-24763 (CVSS 8.8) - unsafe PATH handling enables command injection in Docker sandbox',
+                            category: 'cve',
+                            severity: 'critical',
+                            passed: false,
+                            message: `OpenClaw ${openclawVersion} is vulnerable to CVE-2026-24763 - upgrade to v2026.1.29+`,
+                            file: 'package.json',
+                            fixable: false,
+                            fix: 'Upgrade openclaw to v2026.1.29 or later: npm install openclaw@latest',
+                        });
+                    }
+                    else {
+                        findings.push({
+                            checkId: 'CVE-004',
+                            name: 'CVE-2026-24763: Docker PATH Command Injection',
+                            description: 'OpenClaw version includes CVE-2026-24763 fix',
+                            category: 'cve',
+                            severity: 'critical',
+                            passed: true,
+                            message: `OpenClaw ${openclawVersion} includes CVE-2026-24763 fix`,
+                            file: 'package.json',
+                            fixable: false,
+                            fix: 'No action needed',
+                        });
+                    }
                 }
             }
         }
         catch {
-            // No package.json or parse error - skip CVE-001
+            // No package.json or parse error - skip CVE checks
         }
         // CVE-002: Control UI Origin Restrictions (defense-in-depth)
         const configFiles = await this.findGatewayConfigFiles(targetDir);