firm-gateway-hardening-pack

Gateway authentication hardening and credentials audit pack. Validates device auth, Baileys credentials, webhook HMAC signatures, log configuration, and workspace integrity. 5 specialized security tools.

Safety Notice

This listing is from the official public ClawHub registry. Review SKILL.md and referenced scripts before running.

Copy this and send it to your AI assistant to learn

Install skill "firm-gateway-hardening-pack" with this command: npx skills add romainsantoli-web/firm-gateway-hardening-pack

firm-gateway-hardening-pack

⚠️ Contenu généré par IA — validation humaine requise avant utilisation.

Purpose

Hardens the OpenClaw Gateway by auditing authentication configuration, credentials storage, webhook signatures, logging, and workspace file integrity.

Tools (5)

ToolDescriptionSeverity
openclaw_gateway_auth_checkValidate Gateway device auth is enabledCRITICAL
openclaw_credentials_checkAudit Baileys credentials storage securityHIGH
openclaw_webhook_sig_checkVerify HMAC signature on webhooksHIGH
openclaw_log_config_checkCheck log configuration (no sensitive data)MEDIUM
openclaw_workspace_integrity_checkVerify workspace file integrityMEDIUM

Usage

skills:
  - firm-gateway-hardening-pack

# Run full gateway hardening audit:
openclaw_gateway_auth_check config_path=/path/to/config.json
openclaw_credentials_check config_path=/path/to/config.json
openclaw_webhook_sig_check config_path=/path/to/config.json

Requirements

  • mcp-openclaw-extensions >= 3.0.0

Source Transparency

This detail page is rendered from real SKILL.md content. Trust labels are metadata-based hints, not a safety guarantee.

Open Registry RecordOpen in ClawHub

Related Skills

Related by shared tags or category signals.

Security

OpenClaw Hardener

Harden OpenClaw (workspace + ~/.openclaw): run openclaw security audit, catch prompt-injection/exfil risks, scan for secrets, and apply safe fixes (chmod/exec-bit cleanup). Includes optional config.patch planning to reduce attack surface.

Registry SourceRecently Updated
2.2K1Profile unavailable
Security

Security Hardener

Audit and harden OpenClaw configuration for security. Scans openclaw.json for vulnerabilities, exposed credentials, insecure gateway settings, overly permiss...

Registry SourceRecently Updated
4570Profile unavailable
Security

Memory Poison Auditor

Audits OpenClaw memory files for injected instructions, brand bias, hidden steering, and memory poisoning patterns. Use when reviewing MEMORY.md, daily memor...

Registry SourceRecently Updated
350Profile unavailable
Security

AgentShield Scanner

Scan AI agent skills, MCP servers, and plugins for security vulnerabilities. Use when: user asks to check a skill/plugin for safety, audit security, scan for...

Registry SourceRecently Updated
710Profile unavailable