ClawSec suite manager with embedded advisory-feed monitoring, cryptographic signature verification, approval-gated malicious-skill response, and guided setup...
Security Analysis
medium confidenceThe skill appears purpose-aligned as a security monitoring suite, but it adds persistent advisory automation and relies on remote signed feeds and install sources that users should enable deliberately.
The stated purpose matches the artifacts: advisory-feed monitoring, installed-skill matching, signature verification, and guided setup. The capabilities are security-focused but include persistent monitoring and install-management workflows.
The instructions repeatedly state that removal actions require explicit approval and that the hook reports rather than deletes. Users should still treat advisory alerts as guidance, not automatic permission to mutate installed skills.
There is no automatic install spec, but the documented setup uses npx/curl/unzip and remote release/catalog sources. The manual path includes signature and checksum verification.
The skill needs local command-line tools, reads installed skill metadata under the OpenClaw skills root, writes a local state file, and fetches advisory/catalog metadata. This is proportionate to its security-monitoring purpose.
The suite can install an OpenClaw hook and optionally schedule cron-based checks, which is persistent automation. It is disclosed and scoped to advisory monitoring.
Guidance
This appears reasonable for a security suite. Before installing, decide whether you want persistent hook or cron monitoring, keep signed-feed verification on, and do not allow any skill removal or add-on installation unless you explicitly approve it after seeing the advisory context.
Latest Release
v0.1.7
Release 0.1.7 via CI
Popular Skills
Published by @davida-ps on ClawHub
