openclaw-self-guard
OpenClaw Security Vulnerability Monitor - Checks for OpenClaw security vulnerabilities from NVD CVE database and GitHub Security Advisories. Compares local OpenClaw version against known CVEs, outputs vulnerability details and remediation if found, otherwise runs silently. Auto-installs daily cron job. Data sources: NVD (nist.gov), GitHub Security Advisories.
Best use case
openclaw-self-guard is best used when you need a repeatable AI agent workflow instead of a one-off prompt.
OpenClaw Security Vulnerability Monitor - Checks for OpenClaw security vulnerabilities from NVD CVE database and GitHub Security Advisories. Compares local OpenClaw version against known CVEs, outputs vulnerability details and remediation if found, otherwise runs silently. Auto-installs daily cron job. Data sources: NVD (nist.gov), GitHub Security Advisories.
Teams using openclaw-self-guard should expect a more consistent output, faster repeated execution, less prompt rewriting.
When to use this skill
- You want a reusable workflow that can be run more than once with consistent structure.
When not to use this skill
- You only need a quick one-off answer and do not need a reusable workflow.
- You cannot install or maintain the underlying files, dependencies, or repository context.
Installation
Claude Code / Cursor / Codex
Manual Installation
- Download SKILL.md from GitHub
- Place it in
.claude/skills/openclaw-self-guard/SKILL.mdinside your project - Restart your AI agent — it will auto-discover the skill
How openclaw-self-guard Compares
| Feature / Agent | openclaw-self-guard | Standard Approach |
|---|---|---|
| Platform Support | Not specified | Limited / Varies |
| Context Awareness | High | Baseline |
| Installation Complexity | Unknown | N/A |
Frequently Asked Questions
What does this skill do?
OpenClaw Security Vulnerability Monitor - Checks for OpenClaw security vulnerabilities from NVD CVE database and GitHub Security Advisories. Compares local OpenClaw version against known CVEs, outputs vulnerability details and remediation if found, otherwise runs silently. Auto-installs daily cron job. Data sources: NVD (nist.gov), GitHub Security Advisories.
Where can I find the source code?
You can find the source code on GitHub using the link provided at the top of the page.
Related Guides
AI Agents for Marketing
Discover AI agents for marketing workflows, from SEO and content production to campaign research, outreach, and analytics.
AI Agents for Startups
Explore AI agent skills for startup validation, product research, growth experiments, documentation, and fast execution with small teams.
AI Agents for Coding
Browse AI agent skills for coding, debugging, testing, refactoring, code review, and developer workflows across Claude, Cursor, and Codex.
SKILL.md Source
# OpenClaw Self Guard - Security Vulnerability Monitor
Monitors OpenClaw for known security vulnerabilities by checking multiple threat intelligence sources.
## Features
- **Version Detection**: Automatically detects local OpenClaw version
- **CVE Monitoring**: Checks NVD, GitHub Security Advisories for OpenClaw-related CVEs
- **Smart Alerting**: Outputs vulnerability details + remediation if found
- **Silent Mode**: Runs silently if no vulnerabilities found
- **Auto Cron**: Installs daily cron job (06:00 Beijing time) during skill setup
## Data Sources
| Source | URL | Description |
|--------|-----|-------------|
| **NVD** | `services.nvd.nist.gov` | NIST National Vulnerability Database |
| **GitHub Advisories** | `api.github.com/advisories` | GitHub Security Advisory Database |
## Usage
### Run Manual Check
```
/openclaw 安全检查
/openclaw-self-guard check
```
### View Current Version
```
/openclaw-self-guard version
```
## Cron Job
Installed automatically during skill setup:
- **Schedule**: Daily at 06:00 (Beijing time)
- **Behavior**: Checks for vulnerabilities, reports if found
- **Delivery**: Console output only (no external channel by default)
To customize delivery channel, edit `~/.openclaw/cron/jobs.json` after installation:
```json
"delivery": {
"mode": "announce",
"channel": "feishu" // or "telegram", etc.
}
```
## Output Format
When vulnerabilities found:
```
# 🔒 OpenClaw 安全漏洞报告
**检查时间**: 2026-03-31
**本地版本**: x.x.x
**检测到漏洞**: X 个
## 漏洞详情
| CVE ID | 严重性 | 描述 | 受影响版本 | 补救方案 |
```
When no vulnerabilities:
```
✅ OpenClaw v{x.x.x} - 未检测到安全漏洞
```
## Skill Structure
```
openclaw-self-guard/
├── SKILL.md
├── scripts/
│ ├── check_vulns.py # Main vulnerability check
│ ├── fetch_nvd.py # Fetch CVE from NVD
│ ├── fetch_github.py # Fetch from GitHub
│ ├── get_version.py # Get local version
│ └── setup_cron.sh # Cron auto-installation
└── references/
└── requirements.txt
```
## Notes
- Requires Python packages: `requests`, `beautifulsoup4`, `lxml`
- Cron job auto-installs during skill setup
- No external channel by default - user configurableRelated Skills
self-improvement
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Claude ('No, that's wrong...', 'Actually...'), (3) User requests a capability that doesn't exist, (4) An external API or tool fails, (5) Claude realizes its knowledge is outdated or incorrect, (6) A better approach is discovered for a recurring task. Also review learnings before major tasks.
openclaw-youtube
YouTube SERP Scout for agents. Search top-ranking videos, channels, and trends for content research and competitor tracking.
openclaw-search
Intelligent search for agents. Multi-source retrieval with confidence scoring - web, academic, and Tavily in one unified API.
openclaw-media-gen
Generate images & videos with AIsa. Gemini 3 Pro Image (image) + Qwen Wan 2.6 (video) via one API key.
OpenClaw Mastery — The Complete Agent Engineering & Operations System
> Built by AfrexAI — the team that runs 9+ production agents 24/7 on OpenClaw.
security-guardian
Automated security auditing for OpenClaw projects. Scans for hardcoded secrets (API keys, tokens) and container vulnerabilities (CVEs) using Trivy. Provides structured reports to help maintain a clean and secure codebase.
guardian-wall
Mitigate prompt injection attacks, especially indirect ones from external web content or files. Use this skill when processing untrusted text from the internet, user-uploaded files, or any external source to sanitize content and detect malicious instructions (e.g., "ignore previous instructions", "system override").
openclaw-safe-change-flow
Safe OpenClaw config change workflow with backup, minimal edits, validation, health checks, and rollback. Single-instance first; secondary instance optional.
jqopenclaw-node-invoker
统一通过 Gateway 的 node.invoke 调用 JQOpenClawNode 能力(file.read、file.write、process.exec、process.manage、system.run、process.which、system.info、system.screenshot、system.notify、system.clipboard、system.input、node.selfUpdate)。当用户需要远程文件读写、文件移动/删除、目录创建/删除、进程管理(列表/搜索/终止)、远程进程执行、命令可执行性探测、系统信息采集、截图采集、系统弹窗、系统剪贴板读写、输入控制(鼠标/键盘)、节点自更新、节点命令可用性排查或修复 node.invoke 参数错误时使用。
session-guardian
Never lose a conversation again. Auto-backup, smart recovery, and health monitoring for OpenClaw sessions. Protects against gateway crashes, model disconnections, and token overflow. Use this skill when: - User worries about losing conversations after gateway restart or model crash - User mentions session backup, conversation recovery, session protection, or data loss - User's agent is slow or timing out (likely token overflow from large sessions) - User runs multiple agents and needs to track collaboration across sessions - User asks about session health, backup strategy, or disaster recovery - User mentions "对话丢失", "会话备份", "上下文溢出", "token超限", "Gateway重启后记忆丢失" - Even if user just says "my agent lost everything after a restart" — this is the skill
openclaw-stock-skill
使用 data.diemeng.chat 提供的接口查询股票日线、分钟线、财务指标等数据,支持 A 股等市场。
self-xyz
Integrate Self (self.xyz) — a privacy-first identity protocol using zero-knowledge proofs to verify passports and ID cards. Use when the user mentions Self protocol, Self identity, self.xyz, passport verification, zero-knowledge identity verification, SelfAppBuilder, SelfBackendVerifier, SelfVerificationRoot, or wants to add privacy-preserving KYC, age verification, nationality checks, OFAC screening, or Sybil resistance using real-world identity documents. Covers frontend QR code integration, backend proof verification, and on-chain smart contract verification on Celo.