openclawsec 1.0.0

package/.github/ISSUE_TEMPLATE/bug-report.md

@@ -0,0 +1,42 @@
+name: Bug Report
+about: Report a bug in ClawShield
+title: '[BUG] '
+labels: bug
+assignees: ''
+
+---
+
+## Description
+
+Describe the bug clearly.
+
+## Steps to Reproduce
+
+1. 
+2. 
+3. 
+
+## Expected Behavior
+
+What should happen.
+
+## Actual Behavior
+
+What happens instead.
+
+## Environment
+
+- OS: 
+- Node.js version: 
+- ClawShield version: 
+- OpenClaw installed: Yes/No
+
+## Output
+
+```
+[Paste relevant output here]
+```
+
+## Additional Context
+
+Any other information about the problem.

package/.github/ISSUE_TEMPLATE/feature-request.md

@@ -0,0 +1,23 @@
+name: Feature Request
+about: Suggest a new feature for ClawShield
+title: '[FEATURE] '
+labels: enhancement
+assignees: ''
+
+---
+
+## Problem
+
+Describe the problem you're solving.
+
+## Proposed Solution
+
+Describe your proposed solution.
+
+## Alternatives Considered
+
+Describe any alternative solutions considered.
+
+## Additional Context
+
+Any other context or screenshots.

package/.github/workflows/ci.yml

@@ -0,0 +1,41 @@
+name: CI
+
+on:
+  push:
+    branches: [main, master]
+  pull_request:
+    branches: [main, master]
+
+jobs:
+  test:
+    runs-on: ubuntu-latest
+    
+    strategy:
+      matrix:
+        node-version: [18.x, 20.x, 22.x]
+
+    steps:
+    - uses: actions/checkout@v4
+    
+    - name: Use Node.js ${{ matrix.node-version }}
+      uses: actions/setup-node@v4
+      with:
+        node-version: ${{ matrix.node-version }}
+        cache: 'npm'
+    
+    - name: Install dependencies
+      run: npm ci
+    
+    - name: Run linter
+      run: npm run lint
+      continue-on-error: true
+    
+    - name: Run tests
+      run: npm test
+      continue-on-error: true
+    
+    - name: Test CLI help
+      run: node cli.js help
+    
+    - name: Test doctor command
+      run: node cli.js doctor

package/CONTRIBUTING.md

@@ -0,0 +1,28 @@
+# Contributing to ClawShield
+
+Thank you for your interest in contributing!
+
+## How to Contribute
+
+1. **Fork the repository**
+2. **Create a feature branch**: `git checkout -b my-feature`
+3. **Make your changes** and test them
+4. **Commit your changes**: `git commit -m "Add something cool"`
+5. **Push to your fork**: `git push origin my-feature`
+6. **Open a Pull Request**
+
+## Coding Standards
+
+- Use clear, descriptive variable names
+- Add comments for complex logic
+- Test your changes before submitting
+- Keep functions small and focused
+
+## Reporting Issues
+
+- Use GitHub Issues to report bugs or request features
+- Include details like your OS, Node version, and steps to reproduce
+
+## License
+
+By contributing, you agree that your contributions will be licensed under the MIT License.

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 ClawShield
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md

@@ -0,0 +1,175 @@
+# OpenClawSec
+
+**OpenClaw Security Monitoring & Hardening Tool**
+
+![Version](https://img.shields.io/badge/version-1.0.0-blue.svg)
+![License](https://img.shields.io/badge/license-MIT-green.svg)
+![Node](https://img.shields.io/badge/node-18%2B-brightgreen.svg)
+
+OpenClawSec is a security monitoring tool for OpenClaw deployments. It scans for vulnerabilities, audits installed skills for malware patterns, checks CVE databases, and provides actionable hardening recommendations — all from a simple CLI.
+
+---
+
+## Features
+
+- **Version Check** — Compare your OpenClaw version against the latest release
+- **CVE Scanner** — Check against 60+ known OpenClaw vulnerabilities
+- **Gateway Exposure Check** — Detect if your gateway is exposed to the network
+- **Skill Audit** — Scan installed skills for malware patterns (ClawHavoc, AMOS stealer, etc.)
+- **Secrets Scanner** — Detect exposed API keys and credentials
+- **Config Hardening** — Analyze your openclaw.json for security issues
+- **Continuous Monitoring** — Run background monitoring with alerts
+
+---
+
+## Installation
+
+### Prerequisites
+
+- Node.js 18 or higher
+- npm or pnpm
+
+### Quick Install
+
+```bash
+npm install -g openclawsec
+```
+
+### Or run directly with npx
+
+```bash
+npx openclawsec scan
+```
+
+---
+
+## Usage
+
+### Full Security Scan
+
+```bash
+openclawsec scan
+```
+
+Runs a comprehensive security scan including:
+- OpenClaw version check
+- CVE vulnerability detection
+- Gateway exposure analysis
+- Skill malware scanning
+- Secrets audit
+
+### Quick Health Check
+
+```bash
+openclawsec doctor
+```
+
+Fast diagnostic check for basic security issues.
+
+### Skill & Secrets Audit
+
+```bash
+openclawsec audit
+```
+
+Specifically audits installed skills for malicious patterns and checks for exposed secrets.
+
+### Continuous Monitoring
+
+```bash
+openclawsec monitor
+```
+
+Run continuous background monitoring (checks every 60 minutes by default).
+
+Custom interval:
+```bash
+openclawsec monitor --30  # Every 30 minutes
+```
+
+### Check Monitoring Status
+
+```bash
+openclawsec status
+```
+
+### Show Help
+
+```bash
+openclawsec help
+```
+
+---
+
+## Output Example
+
+```
+╔══════════════════════════════════════════════════╗
+║           OPENCLAWSEC SECURITY REPORT            ║
+╠══════════════════════════════════════════════════╣
+║  OpenClaw Version:  2026.4.22                   ║
+║  Latest Version:    2026.5.4 ⚠️ OUTDATED        ║
+║  Security Score:   68/100                       ║
+╠══════════════════════════════════════════════════╣
+║  🔴 CRITICAL (3)                                ║
+║  🟡 WARNING (2)                                 ║
+║  🟢 PASSED (5)                                  ║
+╚══════════════════════════════════════════════════╝
+```
+
+---
+
+## Security Checks
+
+### CVE Coverage
+
+Detects all major OpenClaw CVEs including:
+- CVE-2026-25253 (CVSS 8.8) — WebSocket token exfiltration
+- CVE-2026-24763 (CVSS 8.8) — Docker sandbox bypass
+- CVE-2026-33579 (CVSS 8.1) — Privilege escalation
+- CVE-2026-28446 (CVSS 9.8) — Voice RCE
+- CVE-2026-44113 (CVSS 8.3) — TOCTOU race condition
+
+### Malicious Pattern Detection
+
+ClawShield scans for:
+- ClawHavoc malware indicators
+- Base64 encoded payloads
+- C2 server connections
+- Credential harvesting patterns
+- AMOS stealer references
+- Suspicious tunnel services (bore.pub, localhost.run)
+
+---
+
+## Free & Open Source
+
+ClawShield is completely free to use. No paid tiers, no hidden fees.
+
+---
+
+## Support
+
+## Contributing
+
+Contributions are welcome! Please read the contributing guidelines and submit PRs.
+
+---
+
+## License
+
+MIT License — see LICENSE file for details.
+
+---
+
+## Links
+
+- [GitHub](https://github.com/clawshield/clawshield)
+- [ClawHub](https://clawhub.ai/clawshield)
+- [OpenClaw](https://openclaw.ai)
+- [Report Issues](https://github.com/clawshield/clawshield/issues)
+
+---
+
+**Made with ❤️ for the OpenClaw community**
+**Don't run insecure AI agents — ClawShield them.**

package/clawshield-web/index.html

@@ -0,0 +1,344 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>ClawShield — OpenClaw Security Monitor</title>
+    <style>
+        * {
+            margin: 0;
+            padding: 0;
+            box-sizing: border-box;
+        }
+        
+        body {
+            font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen, Ubuntu, sans-serif;
+            background: linear-gradient(135deg, #0a0a0a 0%, #1a1a2e 100%);
+            color: #ffffff;
+            min-height: 100vh;
+            padding: 20px;
+        }
+        
+        .container {
+            max-width: 1200px;
+            margin: 0 auto;
+        }
+        
+        header {
+            text-align: center;
+            padding: 40px 0;
+        }
+        
+        .logo {
+            font-size: 48px;
+            margin-bottom: 10px;
+        }
+        
+        h1 {
+            font-size: 32px;
+            color: #00d4ff;
+            margin-bottom: 10px;
+        }
+        
+        .subtitle {
+            color: #888;
+            font-size: 16px;
+        }
+        
+        .hero {
+            background: rgba(255, 255, 255, 0.05);
+            border-radius: 20px;
+            padding: 40px;
+            text-align: center;
+            margin-bottom: 30px;
+            border: 1px solid rgba(255, 255, 255, 0.1);
+        }
+        
+        .hero h2 {
+            font-size: 24px;
+            margin-bottom: 20px;
+        }
+        
+        .terminal-preview {
+            background: #0d0d0d;
+            border-radius: 10px;
+            padding: 20px;
+            font-family: 'Courier New', monospace;
+            text-align: left;
+            margin: 20px auto;
+            max-width: 600px;
+            overflow: hidden;
+        }
+        
+        .terminal-preview .line {
+            color: #00d4ff;
+            margin-bottom: 5px;
+        }
+        
+        .terminal-preview .green {
+            color: #00ff88;
+        }
+        
+        .terminal-preview .yellow {
+            color: #ffcc00;
+        }
+        
+        .terminal-preview .red {
+            color: #ff4444;
+        }
+        
+        .cta-buttons {
+            display: flex;
+            gap: 15px;
+            justify-content: center;
+            margin-top: 30px;
+        }
+        
+        .btn {
+            padding: 15px 30px;
+            border-radius: 10px;
+            font-size: 16px;
+            font-weight: 600;
+            text-decoration: none;
+            transition: all 0.3s;
+            cursor: pointer;
+            border: none;
+        }
+        
+        .btn-primary {
+            background: #00d4ff;
+            color: #0a0a0a;
+        }
+        
+        .btn-primary:hover {
+            background: #00b8e6;
+            transform: translateY(-2px);
+        }
+        
+        .btn-secondary {
+            background: transparent;
+            color: #00d4ff;
+            border: 2px solid #00d4ff;
+        }
+        
+        .btn-secondary:hover {
+            background: rgba(0, 212, 255, 0.1);
+        }
+        
+        .features {
+            display: grid;
+            grid-template-columns: repeat(auto-fit, minmax(300px, 1fr));
+            gap: 20px;
+            margin: 40px 0;
+        }
+        
+        .feature-card {
+            background: rgba(255, 255, 255, 0.05);
+            border-radius: 15px;
+            padding: 30px;
+            border: 1px solid rgba(255, 255, 255, 0.1);
+        }
+        
+        .feature-icon {
+            font-size: 40px;
+            margin-bottom: 15px;
+        }
+        
+        .feature-card h3 {
+            color: #00d4ff;
+            margin-bottom: 10px;
+        }
+        
+        .feature-card p {
+            color: #888;
+            line-height: 1.6;
+        }
+        
+        .pricing {
+            background: rgba(255, 255, 255, 0.05);
+            border-radius: 20px;
+            padding: 40px;
+            margin: 40px 0;
+            text-align: center;
+            border: 1px solid rgba(255, 255, 255, 0.1);
+        }
+        
+        .pricing h2 {
+            font-size: 28px;
+            margin-bottom: 30px;
+        }
+        
+        .pricing-grid {
+            display: grid;
+            grid-template-columns: repeat(auto-fit, minmax(280px, 1fr));
+            gap: 20px;
+            margin-top: 30px;
+        }
+        
+        .price-card {
+            background: rgba(255, 255, 255, 0.05);
+            border-radius: 15px;
+            padding: 30px;
+            border: 1px solid rgba(255, 255, 255, 0.1);
+        }
+        
+        .price-card.featured {
+            border-color: #00d4ff;
+            transform: scale(1.05);
+        }
+        
+        .price-card h3 {
+            font-size: 20px;
+            margin-bottom: 10px;
+        }
+        
+        .price {
+            font-size: 48px;
+            font-weight: 700;
+            color: #00d4ff;
+            margin: 20px 0;
+        }
+        
+        .price span {
+            font-size: 16px;
+            color: #888;
+        }
+        
+        .price-features {
+            list-style: none;
+            text-align: left;
+            margin: 20px 0;
+        }
+        
+        .price-features li {
+            padding: 10px 0;
+            border-bottom: 1px solid rgba(255, 255, 255, 0.1);
+        }
+        
+        .price-features li::before {
+            content: '✓';
+            color: #00ff88;
+            margin-right: 10px;
+        }
+        
+        footer {
+            text-align: center;
+            padding: 40px 0;
+            color: #666;
+        }
+        
+        footer a {
+            color: #00d4ff;
+            text-decoration: none;
+        }
+        
+        @media (max-width: 768px) {
+            .cta-buttons {
+                flex-direction: column;
+            }
+            
+            .btn {
+                width: 100%;
+            }
+        }
+    </style>
+</head>
+<body>
+    <div class="container">
+        <header>
+            <div class="logo">🛡️</div>
+            <h1>ClawShield</h1>
+            <p class="subtitle">OpenClaw Security Monitoring & Hardening Tool</p>
+        </header>
+        
+        <div class="hero">
+            <h2>Secure Your AI Agents</h2>
+            <p style="color: #888; margin-bottom: 20px;">
+                ClawShield scans your OpenClaw deployment for vulnerabilities, 
+                detects malware skills, and provides actionable hardening recommendations.
+            </p>
+            
+            <div class="terminal-preview">
+                <div class="line">╔══════════════════════════════════════════════════╗</div>
+                <div class="line">║        CLAWSHIELD SECURITY REPORT               ║</div>
+                <div class="line">╠══════════════════════════════════════════════════╣</div>
+                <div class="line">║  OpenClaw Version:  <span class="green">2026.5.4</span>                  ║</div>
+                <div class="line">║  Security Score:    <span class="yellow">85/100</span>                      ║</div>
+                <div class="line">╠══════════════════════════════════════════════════╣</div>
+                <div class="line">║  🔴 Critical: 2    🟡 Warnings: 3              ║</div>
+                <div class="line">╚══════════════════════════════════════════════════╝</div>
+            </div>
+            
+            <div class="cta-buttons">
+                <a href="https://github.com/clawshield/clawshield" class="btn btn-primary">
+                    Get Started Free
+                </a>
+                <a href="#pricing" class="btn btn-secondary">
+                    View Pro Plans
+                </a>
+            </div>
+        </div>
+        
+        <div class="features">
+            <div class="feature-card">
+                <div class="feature-icon">🔍</div>
+                <h3>CVE Scanner</h3>
+                <p>Checks against 60+ known OpenClaw vulnerabilities including CVE-2026-25253, CVE-2026-24763, and more.</p>
+            </div>
+            
+            <div class="feature-card">
+                <div class="feature-icon">🦞</div>
+                <h3>Skill Audit</h3>
+                <p>Detects malicious skills including ClawHavoc malware, AMOS stealer patterns, and credential harvesting.</p>
+            </div>
+            
+            <div class="feature-card">
+                <div class="feature-icon">🔒</div>
+                <h3>Config Hardening</h3>
+                <p>Analyzes your openclaw.json for security issues like exposed gateway ports and missing tokens.</p>
+            </div>
+            
+            <div class="feature-card">
+                <div class="feature-icon">👁️</div>
+                <h3>Secret Scanner</h3>
+                <p>Finds exposed API keys and credentials in your workspace before attackers do.</p>
+            </div>
+            
+            <div class="feature-card">
+                <div class="feature-icon">📊</div>
+                <h3>Security Score</h3>
+                <p>Get an instant security score (0-100) with actionable recommendations to improve your posture.</p>
+            </div>
+            
+            <div class="feature-card">
+                <div class="feature-icon">⏰</div>
+                <h3>Continuous Monitoring</h3>
+                <p>Run background monitoring with Discord/Slack alerts when new vulnerabilities are discovered.</p>
+            </div>
+        </div>
+        
+        <div class="pricing">
+            <h2>100% Free & Open Source</h2>
+            <p style="color: #888;">No paid tiers. No hidden fees. Completely free forever.</p>
+            
+            <div class="cta-buttons">
+                <a href="https://github.com/clawshield/clawshield" class="btn btn-primary">
+                    Get Started Free
+                </a>
+            </div>
+        </div>
+        
+        <footer>
+            <p>ClawShield — Don't run insecure AI agents. 🛡️ them.</p>
+            <p style="margin-top: 10px;">
+                <a href="https://github.com/clawshield/clawshield">GitHub</a> · 
+                <a href="https://discord.gg/openclaw">Discord</a> · 
+                <a href="https://clawhub.ai/clawshield">ClawHub</a>
+            </p>
+            <p style="margin-top: 20px; font-size: 12px;">
+                Made with ❤️ for the OpenClaw community
+            </p>
+        </footer>
+    </div>
+</body>
+</html>