firm-advanced-security-pack

Advanced security audit pack covering secrets lifecycle, path canonicalization, exec plan freeze, hook routing, config includes, prototype pollution, safeBins profiles, and group policy defaults. 8 deep security tools.

Safety Notice

This listing is from the official public ClawHub registry. Review SKILL.md and referenced scripts before running.

Copy this and send it to your AI assistant to learn

Install skill "firm-advanced-security-pack" with this command: npx skills add romainsantoli-web/firm-advanced-security-pack

firm-advanced-security-pack

⚠️ Contenu généré par IA — validation humaine requise avant utilisation.

Purpose

Deep security auditing for OpenClaw configurations — covers external secrets lifecycle, channel path canonicalization, execution plan freeze validation, hook session routing, $include directive guards, prototype pollution detection, safeBins profile enforcement, and group policy default audit.

Tools (8)

Tool	Description	Severity
`openclaw_secrets_lifecycle_check`	External Secrets lifecycle audit	CRITICAL
`openclaw_channel_auth_canon_check`	Channel path canonicalization	CRITICAL
`openclaw_exec_approval_freeze_check`	Exec plan freeze validation	CRITICAL
`openclaw_hook_session_routing_check`	Hook session routing audit	HIGH
`openclaw_config_include_check`	`$include` directive guards	HIGH
`openclaw_config_prototype_check`	Prototype pollution detection	HIGH
`openclaw_safe_bins_profile_check`	safeBins profile enforcement	HIGH
`openclaw_group_policy_default_check`	Group policy default audit	HIGH

Usage

skills:
  - firm-advanced-security-pack

# Run full advanced security audit:
openclaw_secrets_lifecycle_check config_path=/path/to/config.json
openclaw_config_prototype_check config_path=/path/to/config.json
openclaw_safe_bins_profile_check config_path=/path/to/config.json

Requirements

mcp-openclaw-extensions >= 3.0.0

Source Transparency

This detail page is rendered from real SKILL.md content. Trust labels are metadata-based hints, not a safety guarantee.

Open Registry Record Open in ClawHub

Related Skills

Related by shared tags or category signals.

Security

S³ Security Audit

Run security audits on codebases using static analysis, dependency scanning, and manual code review patterns. Covers OWASP Top 10, secrets detection, depende...

Registry SourceRecently Updated

2540Profile unavailable

Security

Memory Poison Auditor

Audits OpenClaw memory files for injected instructions, brand bias, hidden steering, and memory poisoning patterns. Use when reviewing MEMORY.md, daily memor...

Registry SourceRecently Updated

2580Profile unavailable

Security

NotaryOS

Seal AI agent actions with Ed25519 cryptographic receipts. Verify what your agent did and prove what it chose not to do.

Registry SourceRecently Updated

2781Profile unavailable

Security

AgentShield Scanner

Scan AI agent skills, MCP servers, and plugins for security vulnerabilities. Use when: user asks to check a skill/plugin for safety, audit security, scan for...

Registry SourceRecently Updated

3130Profile unavailable