openclaw-safeclaw-plugin 1.2.0 → 1.4.0

package/cli.tsx

@@ -2,7 +2,7 @@
 import React from 'react';
 import { render } from 'ink';
 import { execSync } from 'child_process';
-import { readFileSync, writeFileSync, mkdirSync, existsSync, copyFileSync, lstatSync, unlinkSync, rmSync } from 'fs';
+import { readFileSync, writeFileSync, mkdirSync, existsSync, copyFileSync, lstatSync, unlinkSync } from 'fs';
 import { join, dirname } from 'path';
 import { homedir } from 'os';
 import { fileURLToPath } from 'url';
@@ -94,7 +94,32 @@ const command = args[0];
 
 // Handle --help / -h for any command position
 if (!command || command === '--help' || command === '-h' || command === 'help') {
-  // Fall through to the else block at the bottom which prints full help
+  console.log('safeclaw-plugin — OpenClaw plugin CLI for SafeClaw governance');
+  console.log('');
+  console.log('Usage: safeclaw-plugin <command> [options]');
+  console.log('');
+  console.log('Setup:');
+  console.log('  connect <api-key>    Save API key, validate via handshake, register with OpenClaw');
+  console.log('                       Keys start with "sc_". Get yours at https://safeclaw.eu/dashboard');
+  console.log('  setup                Register plugin with OpenClaw without an API key (manual setup)');
+  console.log('  restart-openclaw     Restart the OpenClaw daemon to pick up plugin changes');
+  console.log('');
+  console.log('Diagnostics:');
+  console.log('  status               Run 9 checks: config, API key, service health, evaluate endpoint,');
+  console.log('                       handshake, OpenClaw binary, plugin files, OpenClaw config, NemoClaw');
+  console.log('');
+  console.log('Configuration:');
+  console.log('  config show          Show current enforcement, failMode, enabled, serviceUrl, apiKey');
+  console.log('  config set <k> <v>   Set a config value. Keys: enforcement, failMode, enabled, serviceUrl');
+  console.log('                       enforcement: enforce | warn-only | audit-only | disabled');
+  console.log('                       failMode:    open (allow on error) | closed (block on error)');
+  console.log('                       enabled:     true | false');
+  console.log('');
+  console.log('Interactive:');
+  console.log('  tui                  Open the interactive settings TUI (Status, Settings, About tabs)');
+  console.log('');
+  console.log('For the service CLI (serve, audit, policy, pref), use the "safeclaw" command.');
+  process.exit(0);
 } else if (command === 'connect') {
   const apiKey = args[1];
   const serviceUrlIdx = args.indexOf('--service-url');
@@ -192,7 +217,7 @@ if (!command || command === '--help' || command === '-h' || command === 'help')
     console.log(`enforcement: ${cfg.enforcement}`);
     console.log(`failMode:    ${cfg.failMode}`);
     console.log(`serviceUrl:  ${cfg.serviceUrl}`);
-    console.log(`apiKey:      ${cfg.apiKey ? `${cfg.apiKey.slice(0, 6)}...` : '(not set)'}`);
+    console.log(`apiKey:      ${cfg.apiKey ? `${cfg.apiKey.slice(0, 6)}..${cfg.apiKey.slice(-4)}` : '(not set)'}`);
     console.log(`timeoutMs:   ${cfg.timeoutMs}`);
   } else if (subcommand === 'set') {
     const key = args[2];
@@ -479,30 +504,7 @@ if (!command || command === '--help' || command === '-h' || command === 'help')
     console.log('Some checks failed. Fix the issues above.');
   }
 } else {
-  console.log('safeclaw-plugin — OpenClaw plugin CLI for SafeClaw governance');
-  console.log('');
-  console.log('Usage: safeclaw-plugin <command> [options]');
-  console.log('');
-  console.log('Setup:');
-  console.log('  connect <api-key>    Save API key, validate via handshake, register with OpenClaw');
-  console.log('                       Keys start with "sc_". Get yours at https://safeclaw.eu/dashboard');
-  console.log('  setup                Register plugin with OpenClaw without an API key (manual setup)');
-  console.log('  restart-openclaw     Restart the OpenClaw daemon to pick up plugin changes');
-  console.log('');
-  console.log('Diagnostics:');
-  console.log('  status               Run 8 checks: config, API key, service health, evaluate endpoint,');
-  console.log('                       handshake, OpenClaw binary, plugin files, OpenClaw config');
-  console.log('');
-  console.log('Configuration:');
-  console.log('  config show          Show current enforcement, failMode, enabled, serviceUrl, apiKey');
-  console.log('  config set <k> <v>   Set a config value. Keys: enforcement, failMode, enabled, serviceUrl');
-  console.log('                       enforcement: enforce | warn-only | audit-only | disabled');
-  console.log('                       failMode:    open (allow on error) | closed (block on error)');
-  console.log('                       enabled:     true | false');
-  console.log('');
-  console.log('Interactive:');
-  console.log('  tui                  Open the interactive settings TUI (Status, Settings, About tabs)');
-  console.log('');
-  console.log('For the service CLI (serve, audit, policy, pref), use the "safeclaw" command.');
-  process.exit(0);
+  console.error(`Unknown command: "${command}"`);
+  console.error('Run "safeclaw-plugin --help" for usage information.');
+  process.exit(1);
 }

package/dist/cli.js

@@ -85,7 +85,32 @@ const args = process.argv.slice(2);
 const command = args[0];
 // Handle --help / -h for any command position
 if (!command || command === '--help' || command === '-h' || command === 'help') {
-    // Fall through to the else block at the bottom which prints full help
+    console.log('safeclaw-plugin — OpenClaw plugin CLI for SafeClaw governance');
+    console.log('');
+    console.log('Usage: safeclaw-plugin <command> [options]');
+    console.log('');
+    console.log('Setup:');
+    console.log('  connect <api-key>    Save API key, validate via handshake, register with OpenClaw');
+    console.log('                       Keys start with "sc_". Get yours at https://safeclaw.eu/dashboard');
+    console.log('  setup                Register plugin with OpenClaw without an API key (manual setup)');
+    console.log('  restart-openclaw     Restart the OpenClaw daemon to pick up plugin changes');
+    console.log('');
+    console.log('Diagnostics:');
+    console.log('  status               Run 9 checks: config, API key, service health, evaluate endpoint,');
+    console.log('                       handshake, OpenClaw binary, plugin files, OpenClaw config, NemoClaw');
+    console.log('');
+    console.log('Configuration:');
+    console.log('  config show          Show current enforcement, failMode, enabled, serviceUrl, apiKey');
+    console.log('  config set <k> <v>   Set a config value. Keys: enforcement, failMode, enabled, serviceUrl');
+    console.log('                       enforcement: enforce | warn-only | audit-only | disabled');
+    console.log('                       failMode:    open (allow on error) | closed (block on error)');
+    console.log('                       enabled:     true | false');
+    console.log('');
+    console.log('Interactive:');
+    console.log('  tui                  Open the interactive settings TUI (Status, Settings, About tabs)');
+    console.log('');
+    console.log('For the service CLI (serve, audit, policy, pref), use the "safeclaw" command.');
+    process.exit(0);
 }
 else if (command === 'connect') {
     const apiKey = args[1];
@@ -180,7 +205,7 @@ else if (command === 'config') {
         console.log(`enforcement: ${cfg.enforcement}`);
         console.log(`failMode:    ${cfg.failMode}`);
         console.log(`serviceUrl:  ${cfg.serviceUrl}`);
-        console.log(`apiKey:      ${cfg.apiKey ? `${cfg.apiKey.slice(0, 6)}...` : '(not set)'}`);
+        console.log(`apiKey:      ${cfg.apiKey ? `${cfg.apiKey.slice(0, 6)}..${cfg.apiKey.slice(-4)}` : '(not set)'}`);
         console.log(`timeoutMs:   ${cfg.timeoutMs}`);
     }
     else if (subcommand === 'set') {
@@ -490,30 +515,7 @@ else if (command === 'status') {
     }
 }
 else {
-    console.log('safeclaw-plugin — OpenClaw plugin CLI for SafeClaw governance');
-    console.log('');
-    console.log('Usage: safeclaw-plugin <command> [options]');
-    console.log('');
-    console.log('Setup:');
-    console.log('  connect <api-key>    Save API key, validate via handshake, register with OpenClaw');
-    console.log('                       Keys start with "sc_". Get yours at https://safeclaw.eu/dashboard');
-    console.log('  setup                Register plugin with OpenClaw without an API key (manual setup)');
-    console.log('  restart-openclaw     Restart the OpenClaw daemon to pick up plugin changes');
-    console.log('');
-    console.log('Diagnostics:');
-    console.log('  status               Run 8 checks: config, API key, service health, evaluate endpoint,');
-    console.log('                       handshake, OpenClaw binary, plugin files, OpenClaw config');
-    console.log('');
-    console.log('Configuration:');
-    console.log('  config show          Show current enforcement, failMode, enabled, serviceUrl, apiKey');
-    console.log('  config set <k> <v>   Set a config value. Keys: enforcement, failMode, enabled, serviceUrl');
-    console.log('                       enforcement: enforce | warn-only | audit-only | disabled');
-    console.log('                       failMode:    open (allow on error) | closed (block on error)');
-    console.log('                       enabled:     true | false');
-    console.log('');
-    console.log('Interactive:');
-    console.log('  tui                  Open the interactive settings TUI (Status, Settings, About tabs)');
-    console.log('');
-    console.log('For the service CLI (serve, audit, policy, pref), use the "safeclaw" command.');
-    process.exit(0);
+    console.error(`Unknown command: "${command}"`);
+    console.error('Run "safeclaw-plugin --help" for usage information.');
+    process.exit(1);
 }

package/dist/index.js

@@ -34,7 +34,7 @@ function getConfig() {
 // --- HTTP Client ---
 async function post(path, body) {
     const cfg = getConfig();
-    if (!cfg.enabled)
+    if (!cfg.enabled || cfg.enforcement === 'disabled')
         return null;
     const headers = { 'Content-Type': 'application/json' };
     if (cfg.apiKey) {
@@ -79,7 +79,7 @@ async function post(path, body) {
 }
 async function get(path) {
     const cfg = getConfig();
-    if (!cfg.enabled)
+    if (!cfg.enabled || cfg.enforcement === 'disabled')
         return null;
     const headers = {};
     if (cfg.apiKey)
@@ -149,12 +149,12 @@ export default {
     name: 'SafeClaw Neurosymbolic Governance',
     version: PLUGIN_VERSION,
     register(api) {
+        _ocPluginConfig = api.pluginConfig ?? {};
+        log = api.logger ?? console;
         if (!getConfig().enabled) {
-            console.log('[SafeClaw] Plugin disabled');
+            log.info('[SafeClaw] Plugin disabled');
             return;
         }
-        log = api.logger ?? console;
-        _ocPluginConfig = api.pluginConfig ?? {};
         // Generate a unique instance ID for this plugin run (fallback when agentId is not configured)
         const instanceId = getConfig().agentId || `instance-${crypto.randomUUID()}`;
         // Heartbeat watchdog — send config hash to service every 30s
@@ -333,6 +333,16 @@ export default {
                 childConfig: event.childConfig ?? {},
                 reason: event.reason ?? '',
             });
+            // Fail-closed handling (matches before_tool_call / message_sending pattern)
+            if (r === null && cfg.failMode === 'closed' && cfg.enforcement === 'enforce') {
+                throw new Error('SafeClaw service unavailable (fail-closed mode)');
+            }
+            else if (r === null && cfg.failMode === 'closed' && cfg.enforcement === 'warn-only') {
+                log.warn('[SafeClaw] Service unavailable (fail-closed mode, warn-only)');
+            }
+            else if (r === null && cfg.failMode === 'closed' && cfg.enforcement === 'audit-only') {
+                log.warn('[SafeClaw] Service unavailable (fail-closed mode, audit-only)');
+            }
             if (r?.block && cfg.enforcement === 'enforce') {
                 throw new Error(r.reason || 'Blocked by SafeClaw: delegation bypass detected');
             }

package/dist/tui/Settings.js

@@ -15,10 +15,17 @@ export default function Settings({ config, onConfigChange }) {
     const [selected, setSelected] = useState(0);
     const [editing, setEditing] = useState(false);
     const [editBuffer, setEditBuffer] = useState('');
+    const [saveError, setSaveError] = useState(null);
     const updateConfig = (patch) => {
         const updated = { ...config, ...patch };
-        saveConfig(updated);
-        onConfigChange(updated);
+        try {
+            saveConfig(updated);
+            setSaveError(null);
+            onConfigChange(updated);
+        }
+        catch (e) {
+            setSaveError(e instanceof Error ? e.message : String(e));
+        }
     };
     useInput((input, key) => {
         if (editing) {
@@ -28,13 +35,7 @@ export default function Settings({ config, onConfigChange }) {
                     // Reject invalid API keys — must start with sc_
                     return;
                 }
-                try {
-                    updateConfig({ [editingKey]: editBuffer });
-                }
-                catch {
-                    // saveConfig may throw on invalid URL — stay in edit mode
-                    return;
-                }
+                updateConfig({ [editingKey]: editBuffer });
                 setEditing(false);
             }
             else if (key.escape) {
@@ -99,5 +100,5 @@ export default function Settings({ config, onConfigChange }) {
                         ? SETTINGS[selected].key === 'apiKey' && editBuffer && !editBuffer.startsWith('sc_')
                             ? '  API key must start with sc_ · esc to cancel'
                             : '  type to edit · enter to save · esc to cancel'
-                        : '  ↑↓ navigate · ←→/enter cycle/toggle · enter to edit text fields · q quit' }) }), _jsx(Box, { marginTop: 1, children: _jsx(Text, { dimColor: true, children: '  Enforcement: enforce=block violations, warn-only=log only, audit-only=record only, disabled=off' }) }), _jsx(Box, { children: _jsx(Text, { dimColor: true, children: '  Fail Mode:   open=allow if service unreachable, closed=block if service unreachable' }) }), _jsx(Box, { marginTop: 1, children: _jsx(Text, { dimColor: true, children: '  All changes save to ~/.safeclaw/config.json immediately.' }) })] }));
+                        : '  ↑↓ navigate · ←→/enter cycle/toggle · enter to edit text fields · q quit' }) }), _jsx(Box, { marginTop: 1, children: _jsx(Text, { dimColor: true, children: '  Enforcement: enforce=block violations, warn-only=log only, audit-only=record only, disabled=off' }) }), _jsx(Box, { children: _jsx(Text, { dimColor: true, children: '  Fail Mode:   open=allow if service unreachable, closed=block if service unreachable' }) }), saveError && (_jsx(Box, { marginTop: 1, children: _jsxs(Text, { color: "red", children: ['  Error saving config: ', saveError] }) })), _jsx(Box, { marginTop: 1, children: _jsx(Text, { dimColor: true, children: '  All changes save to ~/.safeclaw/config.json immediately.' }) })] }));
 }

package/dist/tui/Status.js

@@ -129,7 +129,7 @@ export default function Status({ config }) {
             checkOpenClaw();
         }, 10000);
         return () => clearInterval(interval);
-    }, []);
+    }, [config.serviceUrl, config.apiKey]);
     useInput((input) => {
         if (input === 'r') {
             restartOpenClaw();

package/dist/tui/config.js

@@ -33,8 +33,11 @@ export function loadConfig() {
                 defaults.serviceUrl = raw.remote.serviceUrl;
             if (raw.remote?.apiKey)
                 defaults.apiKey = raw.remote.apiKey;
-            if (raw.remote?.timeoutMs)
-                defaults.timeoutMs = raw.remote.timeoutMs;
+            if (raw.remote?.timeoutMs != null) {
+                const t = Number(raw.remote.timeoutMs);
+                if (Number.isFinite(t) && t > 0)
+                    defaults.timeoutMs = t;
+            }
             if (raw.enforcement?.mode)
                 defaults.enforcement = raw.enforcement.mode;
             if (raw.enforcement?.failMode)
@@ -67,10 +70,16 @@ export function loadConfig() {
     }
     if (process.env.SAFECLAW_ENABLED === 'false')
         defaults.enabled = false;
-    if (process.env.SAFECLAW_ENFORCEMENT)
-        defaults.enforcement = process.env.SAFECLAW_ENFORCEMENT;
-    if (process.env.SAFECLAW_FAIL_MODE)
-        defaults.failMode = process.env.SAFECLAW_FAIL_MODE;
+    else if (process.env.SAFECLAW_ENABLED === 'true')
+        defaults.enabled = true;
+    const enforcement = process.env.SAFECLAW_ENFORCEMENT;
+    if (enforcement && ['enforce', 'warn-only', 'audit-only', 'disabled'].includes(enforcement)) {
+        defaults.enforcement = enforcement;
+    }
+    const failMode = process.env.SAFECLAW_FAIL_MODE;
+    if (failMode && ['open', 'closed'].includes(failMode)) {
+        defaults.failMode = failMode;
+    }
     if (process.env.SAFECLAW_AGENT_ID)
         defaults.agentId = process.env.SAFECLAW_AGENT_ID;
     if (process.env.SAFECLAW_AGENT_TOKEN)
@@ -136,9 +145,13 @@ export function saveConfig(config) {
         existing.remote = {};
     }
     existing.remote.serviceUrl = config.serviceUrl;
+    existing.remote.timeoutMs = config.timeoutMs;
     if (config.apiKey) {
         existing.remote.apiKey = config.apiKey;
     }
+    else {
+        delete existing.remote.apiKey;
+    }
     if (!existing.enforcement || typeof existing.enforcement !== 'object') {
         existing.enforcement = {};
     }
@@ -156,9 +169,12 @@ export function saveConfig(config) {
         writeFileSync(CONFIG_PATH, JSON.stringify(existing, null, 2) + '\n', { encoding: 'utf-8', mode: 0o600 });
     }
     catch (e) {
-        if (e.code === 'EROFS' || e.code === 'EACCES') {
-            // Sandbox filesystem is read-only — silently skip
-            return;
+        const code = e.code;
+        if (code === 'EROFS') {
+            throw new Error('Cannot save config: filesystem is read-only (sandbox environment)');
+        }
+        if (code === 'EACCES') {
+            throw new Error(`Cannot save config: permission denied for ${CONFIG_PATH}`);
         }
         throw e;
     }

package/index.ts

@@ -45,7 +45,7 @@ function getConfig(): typeof config {
 
 async function post(path: string, body: Record<string, unknown>): Promise<Record<string, unknown> | null> {
   const cfg = getConfig();
-  if (!cfg.enabled) return null;
+  if (!cfg.enabled || cfg.enforcement === 'disabled') return null;
 
   const headers: Record<string, string> = { 'Content-Type': 'application/json' };
   if (cfg.apiKey) {
@@ -89,7 +89,7 @@ async function post(path: string, body: Record<string, unknown>): Promise<Record
 
 async function get(path: string): Promise<Record<string, unknown> | null> {
   const cfg = getConfig();
-  if (!cfg.enabled) return null;
+  if (!cfg.enabled || cfg.enforcement === 'disabled') return null;
   const headers: Record<string, string> = {};
   if (cfg.apiKey) headers['Authorization'] = `Bearer ${cfg.apiKey}`;
   try {
@@ -162,14 +162,14 @@ export default {
   version: PLUGIN_VERSION,
 
   register(api: OpenClawPluginApi) {
+    _ocPluginConfig = api.pluginConfig ?? {};
+    log = api.logger ?? console;
+
     if (!getConfig().enabled) {
-      console.log('[SafeClaw] Plugin disabled');
+      log.info('[SafeClaw] Plugin disabled');
       return;
     }
 
-    log = api.logger ?? console;
-    _ocPluginConfig = api.pluginConfig ?? {};
-
     // Generate a unique instance ID for this plugin run (fallback when agentId is not configured)
     const instanceId = getConfig().agentId || `instance-${crypto.randomUUID()}`;
 
@@ -357,6 +357,15 @@ export default {
         reason: event.reason ?? '',
       });
 
+      // Fail-closed handling (matches before_tool_call / message_sending pattern)
+      if (r === null && cfg.failMode === 'closed' && cfg.enforcement === 'enforce') {
+        throw new Error('SafeClaw service unavailable (fail-closed mode)');
+      } else if (r === null && cfg.failMode === 'closed' && cfg.enforcement === 'warn-only') {
+        log.warn('[SafeClaw] Service unavailable (fail-closed mode, warn-only)');
+      } else if (r === null && cfg.failMode === 'closed' && cfg.enforcement === 'audit-only') {
+        log.warn('[SafeClaw] Service unavailable (fail-closed mode, audit-only)');
+      }
+
       if (r?.block && cfg.enforcement === 'enforce') {
         throw new Error((r.reason as string) || 'Blocked by SafeClaw: delegation bypass detected');
       }

package/openclaw.plugin.json

@@ -2,7 +2,7 @@
   "id": "safeclaw",
   "name": "SafeClaw Neurosymbolic Governance",
   "description": "Validates AI agent actions against OWL ontologies and SHACL constraints before execution",
-  "version": "1.1.0",
+  "version": "1.3.0",
   "author": "Tendly EU",
   "license": "MIT",
   "homepage": "https://safeclaw.eu",

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "openclaw-safeclaw-plugin",
-  "version": "1.2.0",
+  "version": "1.4.0",
   "description": "SafeClaw Neurosymbolic Governance plugin for OpenClaw — validates AI agent actions against OWL ontologies and SHACL constraints",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",
@@ -20,6 +20,7 @@
   },
   "files": [
     "dist/",
+    "types/",
     "openclaw.plugin.json",
     "index.ts",
     "cli.tsx",

package/tui/Settings.tsx

@@ -29,11 +29,17 @@ export default function Settings({ config, onConfigChange }: SettingsProps) {
   const [selected, setSelected] = useState(0);
   const [editing, setEditing] = useState(false);
   const [editBuffer, setEditBuffer] = useState('');
+  const [saveError, setSaveError] = useState<string | null>(null);
 
   const updateConfig = (patch: Partial<SafeClawConfig>) => {
     const updated = { ...config, ...patch };
-    saveConfig(updated);
-    onConfigChange(updated);
+    try {
+      saveConfig(updated);
+      setSaveError(null);
+      onConfigChange(updated);
+    } catch (e) {
+      setSaveError(e instanceof Error ? e.message : String(e));
+    }
   };
 
   useInput((input, key) => {
@@ -44,12 +50,7 @@ export default function Settings({ config, onConfigChange }: SettingsProps) {
           // Reject invalid API keys — must start with sc_
           return;
         }
-        try {
-          updateConfig({ [editingKey]: editBuffer } as Partial<SafeClawConfig>);
-        } catch {
-          // saveConfig may throw on invalid URL — stay in edit mode
-          return;
-        }
+        updateConfig({ [editingKey]: editBuffer } as Partial<SafeClawConfig>);
         setEditing(false);
       } else if (key.escape) {
         setEditing(false);
@@ -146,6 +147,12 @@ export default function Settings({ config, onConfigChange }: SettingsProps) {
         <Text dimColor>{'  Fail Mode:   open=allow if service unreachable, closed=block if service unreachable'}</Text>
       </Box>
 
+      {saveError && (
+        <Box marginTop={1}>
+          <Text color="red">{'  Error saving config: '}{saveError}</Text>
+        </Box>
+      )}
+
       <Box marginTop={1}>
         <Text dimColor>{'  All changes save to ~/.safeclaw/config.json immediately.'}</Text>
       </Box>

package/tui/Status.tsx

@@ -141,7 +141,7 @@ export default function Status({ config }: StatusProps) {
       checkOpenClaw();
     }, 10000);
     return () => clearInterval(interval);
-  }, []);
+  }, [config.serviceUrl, config.apiKey]);
 
   useInput((input) => {
     if (input === 'r') {

package/tui/config.ts

@@ -49,7 +49,10 @@ export function loadConfig(): SafeClawConfig {
       if (raw.enabled === false) defaults.enabled = false;
       if (raw.remote?.serviceUrl) defaults.serviceUrl = raw.remote.serviceUrl;
       if (raw.remote?.apiKey) defaults.apiKey = raw.remote.apiKey;
-      if (raw.remote?.timeoutMs) defaults.timeoutMs = raw.remote.timeoutMs;
+      if (raw.remote?.timeoutMs != null) {
+        const t = Number(raw.remote.timeoutMs);
+        if (Number.isFinite(t) && t > 0) defaults.timeoutMs = t;
+      }
       if (raw.enforcement?.mode) defaults.enforcement = raw.enforcement.mode;
       if (raw.enforcement?.failMode) defaults.failMode = raw.enforcement.failMode;
       if (raw.agentId) defaults.agentId = raw.agentId;
@@ -73,8 +76,15 @@ export function loadConfig(): SafeClawConfig {
     }
   }
   if (process.env.SAFECLAW_ENABLED === 'false') defaults.enabled = false;
-  if (process.env.SAFECLAW_ENFORCEMENT) defaults.enforcement = process.env.SAFECLAW_ENFORCEMENT as SafeClawConfig['enforcement'];
-  if (process.env.SAFECLAW_FAIL_MODE) defaults.failMode = process.env.SAFECLAW_FAIL_MODE as SafeClawConfig['failMode'];
+  else if (process.env.SAFECLAW_ENABLED === 'true') defaults.enabled = true;
+  const enforcement = process.env.SAFECLAW_ENFORCEMENT;
+  if (enforcement && ['enforce', 'warn-only', 'audit-only', 'disabled'].includes(enforcement)) {
+    defaults.enforcement = enforcement as SafeClawConfig['enforcement'];
+  }
+  const failMode = process.env.SAFECLAW_FAIL_MODE;
+  if (failMode && ['open', 'closed'].includes(failMode)) {
+    defaults.failMode = failMode as SafeClawConfig['failMode'];
+  }
   if (process.env.SAFECLAW_AGENT_ID) defaults.agentId = process.env.SAFECLAW_AGENT_ID;
   if (process.env.SAFECLAW_AGENT_TOKEN) defaults.agentToken = process.env.SAFECLAW_AGENT_TOKEN;
 
@@ -146,8 +156,11 @@ export function saveConfig(config: SafeClawConfig): void {
     existing.remote = {};
   }
   (existing.remote as Record<string, unknown>).serviceUrl = config.serviceUrl;
+  (existing.remote as Record<string, unknown>).timeoutMs = config.timeoutMs;
   if (config.apiKey) {
     (existing.remote as Record<string, unknown>).apiKey = config.apiKey;
+  } else {
+    delete (existing.remote as Record<string, unknown>).apiKey;
   }
 
   if (!existing.enforcement || typeof existing.enforcement !== 'object') {
@@ -169,9 +182,12 @@ export function saveConfig(config: SafeClawConfig): void {
   try {
     writeFileSync(CONFIG_PATH, JSON.stringify(existing, null, 2) + '\n', { encoding: 'utf-8', mode: 0o600 });
   } catch (e) {
-    if ((e as NodeJS.ErrnoException).code === 'EROFS' || (e as NodeJS.ErrnoException).code === 'EACCES') {
-      // Sandbox filesystem is read-only — silently skip
-      return;
+    const code = (e as NodeJS.ErrnoException).code;
+    if (code === 'EROFS') {
+      throw new Error('Cannot save config: filesystem is read-only (sandbox environment)');
+    }
+    if (code === 'EACCES') {
+      throw new Error(`Cannot save config: permission denied for ${CONFIG_PATH}`);
     }
     throw e;
   }

package/types/openclaw-sdk.d.ts

@@ -0,0 +1,89 @@
+/**
+ * Ambient type declarations for OpenClaw Plugin SDK.
+ * These match the types exported by openclaw/plugin-sdk as of v2026.3.
+ * When installed inside OpenClaw, the real SDK types take precedence.
+ */
+
+declare module 'openclaw/plugin-sdk/core' {
+  export interface OpenClawPluginApi {
+    on(
+      hookName: string,
+      handler: (event: OpenClawPluginEvent, ctx: OpenClawPluginContext) => Promise<Record<string, unknown> | void> | void,
+      options?: { priority?: number },
+    ): void;
+    registerService?(service: OpenClawPluginService): void;
+    registerCli?(registrar: (ctx: { program: unknown; config: unknown }) => void, opts?: { commands: string[] }): void;
+    registerTool?(tool: OpenClawPluginTool): void;
+    registerCommand?(def: { name: string; description: string; execute: (ctx: unknown) => Promise<string | void> }): void;
+    pluginConfig?: Record<string, unknown>;
+    logger?: OpenClawPluginLogger;
+  }
+
+  export interface OpenClawPluginEvent {
+    sessionId?: string;
+    toolName?: string;
+    params?: Record<string, unknown>;
+    to?: string;
+    content?: string;
+    result?: unknown;
+    error?: string;
+    durationMs?: number;
+    prompt?: string;
+    provider?: string;
+    model?: string;
+    lastAssistant?: string;
+    usage?: Record<string, unknown>;
+    parentAgentId?: string;
+    childConfig?: Record<string, unknown>;
+    reason?: string;
+    metadata?: Record<string, unknown>;
+    channel?: string;
+    sender?: string;
+    [key: string]: unknown;
+  }
+
+  export interface OpenClawPluginContext {
+    sessionId?: string;
+    agentId?: string;
+    runId?: string;
+    conversationId?: string;
+    accountId?: string;
+    channelId?: string;
+    workspaceDir?: string;
+    [key: string]: unknown;
+  }
+
+  export interface OpenClawPluginService {
+    id: string;
+    start: () => void | Promise<void>;
+    stop?: () => void | Promise<void>;
+  }
+
+  export interface OpenClawPluginTool {
+    name: string;
+    description: string;
+    parameters: Record<string, unknown>;
+    execute: (params: Record<string, unknown>, ctx: Record<string, unknown>) => Promise<unknown>;
+  }
+
+  export interface OpenClawPluginLogger {
+    info: (...args: unknown[]) => void;
+    warn: (...args: unknown[]) => void;
+    error: (...args: unknown[]) => void;
+  }
+}
+
+declare module 'openclaw/plugin-sdk/plugin-entry' {
+  import type { OpenClawPluginApi } from 'openclaw/plugin-sdk/core';
+
+  export interface PluginDefinition {
+    id: string;
+    name: string;
+    description?: string;
+    version?: string;
+    configSchema?: Record<string, unknown>;
+    register?: (api: OpenClawPluginApi) => void | Promise<void>;
+  }
+
+  export function definePluginEntry(def: PluginDefinition): PluginDefinition;
+}