Skip to content

Panda-Intelligence/openclaw-security

BranchesTags

Repository files navigation

OpenClaw Security

CI License: MIT TypeScript

Security audit platform for OpenClaw Cloud deployments. Think Lighthouse + Wappalyzer, but for AI agent infrastructure.

Paste a URL, get a structured security report — no auth required for passive scans, JWT-paired deep scans for full config auditing.

Features

  • 20 security checks — 14 passive (headers, CORS, TLS, endpoints, error disclosure) + 6 active (JWT, agent config, memory injection, skills, schedules, channels)
  • Persistent deep-scan pairing — Store a verified project JWT once in the dashboard and reuse it for later authenticated scans
  • Penalty-based scoring — 0-100 score with per-category caps
  • Multiple interfaces — Web dashboard, CLI tool, browser extension
  • Community reports — Anonymous aggregated security data

Quick start

# Install
bun install

# Run all tests
bun test

# CLI scan
bun run packages/cli/src/index.ts scan https://your-deployment.example.com

# Web dashboard (dev)
cd apps/web && bun run dev:ui

Packages

Package Description
packages/scanner-core Shared scanning engine — types, checks, scoring, HTTP client, report formatter
packages/cli CLI tool — openclaw-security scan <url>
apps/web Cloudflare Worker + React SPA dashboard
apps/extension Browser extension (Manifest V3)

Scan modes

Passive (no auth required)

Probes public-facing endpoints and HTTP headers:

Check What it tests
health-fingerprint OpenClaw detection via /health
version-cve Version matched against known CVEs
security-headers CSP, HSTS, X-Content-Type-Options, etc.
cors-audit Wildcard origins, credential reflection
rate-limit-probe Rate limiting headers presence
oauth-enumeration OAuth provider detection
public-endpoint-scan Protected endpoints accessible without auth
tls-analysis HTTPS, certificate, HTTP→HTTPS redirect
cookie-audit Secure, HttpOnly, SameSite attributes
websocket-exposure Unauthenticated WebSocket access
admin-endpoint-probe Admin endpoints without authentication
error-disclosure Stack traces in error responses
hsts-preload HSTS preload readiness
container-version Web/runtime worker version consistency

Active (JWT required)

Reads agent configuration via authenticated API calls (GET only, read-only):

In the web dashboard, a project can be paired with a verified JWT so later deep scans can reuse the stored credential without re-pasting the token every time.

Check What it tests
jwt-security Algorithm strength, claims, expiration
agent-config-review Failed agents, model exposure, prompt secrets
memory-injection-scan Prompt injection patterns in stored memories
skill-audit Non-bundled skills, insecure sources
schedule-review High-frequency crons, sensitive prompts
channel-credential-status Missing/invalid channel credentials

CLI usage

# Passive scan (default)
openclaw-security scan https://example.com

# Active scan with JWT
openclaw-security scan https://example.com --deep
openclaw-security scan https://example.com --token <jwt>

# Output formats
openclaw-security scan https://example.com --format json
openclaw-security scan https://example.com --format markdown

# Save report
openclaw-security scan https://example.com --output report.json

# View saved report
openclaw-security report report.json

# Upload anonymized results
openclaw-security upload report.json

Scoring

Penalty-based from 100. Deductions per finding:

Severity Per-finding Category cap
Critical -20 -40
High -10 -30
Medium -5 -20
Low -2 -10
Info 0 0

Categories: auth, headers, exposure, config, data, infrastructure

Local development

CLI only (no infra needed)

bun install
bun run scan https://your-deployment.example.com
bun run scan https://example.com --format json --output report.json

Full stack (Web dashboard)

bun install
bun run db:migrate:local     # Create D1 tables
bun run dev:worker &         # API on :8787 (wrangler + D1)
bun run dev                  # UI on :5173 (Vite, proxies /api → :8787)

Open http://localhost:5173

All commands

bun run dev              # Web UI dev server (port 5173)
bun run dev:worker       # API + D1 (port 8787, wrangler)
bun run scan <url>       # CLI scan shortcut
bun test                 # Run all 249 tests
bun run typecheck        # Type check all packages
bun run lint             # Biome lint
bun run ci               # Full CI pipeline
bun run build            # Build all packages

Tech stack

  • Runtime: Bun, Cloudflare Workers, D1, Queues
  • Framework: Hono (API), React (UI)
  • Language: TypeScript (strict mode + noUncheckedIndexedAccess)
  • Testing: bun:test
  • Monorepo: bun workspaces

License

MIT

About

OpenClaw Security Audit Tool

openclawsecurity.io

Resources

Readme

License

MIT license

Code of conduct

Code of conduct

Contributing

Contributing

Security policy

Security policy
Activity
Custom properties

Stars

1 star

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages