hackmyagent 0.2.2 → 0.2.3

package/README.md

@@ -1,12 +1,16 @@
-# HackMyAgent
-
-> **AI Agent Security Scanner** — Detect exposed MCP servers, leaked API keys, and vulnerable Claude Code configurations. Free, no signup required.
+# HackMyAgent CLI
 
 [![npm version](https://img.shields.io/npm/v/hackmyagent.svg)](https://www.npmjs.com/package/hackmyagent)
 [![License: Apache-2.0](https://img.shields.io/badge/License-Apache%202.0-blue.svg)](https://opensource.org/licenses/Apache-2.0)
 
+**Part of [OpenA2A](https://opena2a.org)** — open-source security for AI agents
+
 **Website:** [hackmyagent.com](https://hackmyagent.com) — Scan external infrastructure for exposed MCP endpoints, configs, and credentials
 
+## Disclaimer
+
+HackMyAgent performs passive reconnaissance only (port checks and HTTP requests) — it does not exploit vulnerabilities. However, please only scan systems you own or have permission to test. The authors assume no liability for misuse of this tool.
+
 ```bash
 npx hackmyagent check @publisher/skill     # verify a skill before installing
 npx hackmyagent secure                      # harden your agent setup (100 checks)
@@ -26,7 +30,7 @@ npx hackmyagent scan example.com            # scan for exposed infrastructure
 AI agents are powerful but introduce new attack surfaces. Skills can be malicious. Configs can leak secrets. MCP servers can be exposed. HackMyAgent helps you:
 
 - **Check** skills before installing (publisher verification, permission analysis)
-- **Secure** your agent setup (100-point CIS-style security scan, auto-remediation)
+- **Secure** your agent setup (100-point CIS security scan, auto-remediation)
 - **Scan** external infrastructure (exposed MCP endpoints, leaked configs)
 
 ## Installation
@@ -108,6 +112,8 @@ hackmyagent check @publisher/skill --offline  # skip DNS verification
 - Permissions requested (filesystem, network, shell access)
 - Revocation status against global blocklist
 
+**Note:** Only scan systems you own or have permission to test.
+
 **Risk Levels:** `low`, `medium`, `high`, `critical`
 
 ### `hackmyagent scan`
@@ -129,6 +135,46 @@ hackmyagent scan example.com --json
 
 **Scoring:** A (90-100), B (80-89), C (70-79), D (60-69), F (<60)
 
+### `hackmyagent secure-openclaw`
+
+Scan OpenClaw/Moltbot installations with 34 specialized security checks and auto-remediation.
+
+```bash
+hackmyagent secure-openclaw              # scan default location
+hackmyagent secure-openclaw ~/.moltbot   # scan specific directory
+hackmyagent secure-openclaw --fix        # auto-fix gateway misconfigurations
+hackmyagent secure-openclaw --fix --dry-run  # preview fixes
+hackmyagent secure-openclaw --json       # JSON output for CI/CD
+```
+
+**Detects:**
+- Unsigned/malicious skills (ClawHavoc campaign patterns)
+- ClickFix social engineering attacks
+- Reverse shell backdoors
+- Credential exfiltration (wallets, SSH keys, API keys)
+- Heartbeat/cron abuse
+- Gateway misconfigurations (GHSA-g8p2 vulnerability)
+- Disabled sandbox/approval confirmations
+
+**Auto-Fix (with `--fix`):**
+| Check | Before | After |
+|-------|--------|-------|
+| GATEWAY-001 | `0.0.0.0` | `127.0.0.1` (local-only) |
+| GATEWAY-003 | Plaintext token | `${OPENCLAW_AUTH_TOKEN}` env var |
+| GATEWAY-004 | Approvals disabled | Approvals enabled |
+| GATEWAY-005 | Sandbox disabled | Sandbox enabled |
+
+**Check Categories:**
+| Category | Checks | Description |
+|----------|--------|-------------|
+| SKILL | 12 | Malicious skill detection |
+| HEARTBEAT | 6 | Heartbeat/cron abuse |
+| GATEWAY | 6 | Gateway misconfigurations (4 auto-fixable) |
+| CONFIG | 6 | Insecure settings |
+| SUPPLY | 4 | Supply chain attacks |
+
+See [SECURITY_CHECKS.md](docs/SECURITY_CHECKS.md#openclaw-security-checks) for full documentation.
+
 ### `hackmyagent rollback`
 
 Undo auto-fix changes.
@@ -194,6 +240,7 @@ For the complete list of 100 security checks with descriptions and remediation g
 
 The following issues can be automatically fixed with `--fix`:
 
+**General (`hackmyagent secure --fix`):**
 | Check ID | Issue | Auto-Fix Action |
 |----------|-------|-----------------|
 | CRED-001 | Exposed API keys | Replace with env var reference |
@@ -203,7 +250,15 @@ The following issues can be automatically fixed with `--fix`:
 | MCP-001 | Root filesystem access | Scope to project directory |
 | NET-001 | Bound to 0.0.0.0 | Bind to 127.0.0.1 |
 
-Always use `--dry-run` first to preview changes.
+**OpenClaw (`hackmyagent secure-openclaw --fix`):**
+| Check ID | Issue | Auto-Fix Action |
+|----------|-------|-----------------|
+| GATEWAY-001 | Bound to 0.0.0.0 | Bind to 127.0.0.1 |
+| GATEWAY-003 | Plaintext token in config | Replace with `${OPENCLAW_AUTH_TOKEN}` |
+| GATEWAY-004 | Approvals disabled | Enable approval confirmations |
+| GATEWAY-005 | Sandbox disabled | Enable sandbox mode |
+
+Always use `--dry-run` first to preview changes. Backups are created automatically.
 
 ## Environment Variables
 
@@ -248,4 +303,8 @@ Apache-2.0
 
 ---
 
-**Need enterprise features?** Check out [AIM (Agent Identity Management)](https://github.com/opena2a-org/agent-identity-management) for centralized policy management, compliance, and audit trails.
+## Secure What You Find
+
+HackMyAgent finds vulnerabilities. **[AIM](https://github.com/opena2a-org/agent-identity-management)** fixes them — the open-source NHI platform for AI agents with cryptographic identity, governance, and access control.
+
+→ [Get started with AIM](https://opena2a.org/docs/quick-start) | [Learn about NHI governance](https://opena2a.org/nhi)

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "hackmyagent",
-  "version": "0.2.2",
+  "version": "0.2.3",
   "description": "Security toolkit for AI agents - verify skills, harden setups, scan for exposures",
   "bin": {
     "hackmyagent": "dist/index.js"
@@ -13,7 +13,8 @@
   "scripts": {
     "build": "tsc",
     "test": "echo 'No CLI tests yet'",
-    "lint": "eslint src --ext .ts"
+    "lint": "eslint src --ext .ts",
+    "prepublishOnly": "cp ../../README.md ./README.md"
   },
   "dependencies": {
     "commander": "^12.0.0",