Skip to content

Security Guardian

Verified

Automated security auditing for OpenClaw projects. Scans for hardcoded secrets (API keys, tokens) and container vulnerabilities (CVEs) using Trivy. Provides...

325 downloads
$ Add to .claude/skills/

About This Skill

# Security Guardian

System for automated security auditing and credential protection.

Core Workflows

1. Secret Scanning Scan specific project directories for hardcoded credentials. - **Tool**: `scripts/scan_secrets.py` - **Usage**: `python3 $WORKSPACE/skills/security-guardian/scripts/scan_secrets.py <path_to_project>` - **Workflow**: 1. Execute scan on a specific project or directory. 2. If findings are reported (exit code 1): - Review the file and line number. - **Transition**: Move the secret to a secure vault (e.g., using the `mema-vault` skill). - **Redact**: Replace the plaintext secret in the source code with an environment variable or a vault lookup call.

2. Container Vulnerability Scan Analyze Docker images for vulnerabilities prior to deployment. - **Tool**: `scripts/scan_container.sh` - **Usage**: `bash $WORKSPACE/skills/security-guardian/scripts/scan_container.sh <image_name>` - **Logic**: Identify `HIGH` and `CRITICAL` severities. Recommend base image updates or security patches.

Security Guardrails - **Scope Limitation**: Avoid scanning system-level directories. Focus only on relevant project workspaces. - **Credential Isolation**: Hardcoded secrets are considered a high-severity finding. - **Dependencies**: Container scanning requires `trivy` to be installed on the host system.

Integration - **Vaulting**: This skill identifies leaks. Remediation should be performed using a dedicated credential manager like `mema-vault`.

Use Cases

  • Scan code for security vulnerabilities including SQL injection, XSS, and hardcoded secrets
  • Perform structured security audits with severity-based findings reports
  • Review source code for insecure patterns and suggest remediation
  • Generate security audit reports organized by severity level for team review
  • Identify and prioritize security risks before production deployment

Pros & Cons

Pros

  • +Solid adoption with 649+ downloads
  • +Security verified with no dangerous patterns detected in content analysis
  • +API-based architecture allows flexible integration with various platforms
  • +Automates infrastructure operations for consistency and reliability

Cons

  • -Requires API key configuration — not free or self-contained
  • -Requires specific infrastructure setup and tool dependencies
  • -Configuration errors in infrastructure tools can have production impact

FAQ

What does Security Guardian do?
Automated security auditing for OpenClaw projects. Scans for hardcoded secrets (API keys, tokens) and container vulnerabilities (CVEs) using Trivy. Provides...
What platforms support Security Guardian?
Security Guardian is available on Claude Code, OpenClaw.
What are the use cases for Security Guardian?
Scan code for security vulnerabilities including SQL injection, XSS, and hardcoded secrets. Perform structured security audits with severity-based findings reports. Review source code for insecure patterns and suggest remediation.

100+ free AI tools

Writing, PDF, image, and developer tools — all in your browser.

AI Humanizer
Make AI text undetectable
AI Detector
Free, unlimited
PDF Tools
Merge, split, compress
View all plans — from $9.99/mo 3 free uses/day, no signup

Next Step

Use the skill detail page to evaluate fit and install steps. For a direct browser workflow, move into a focused tool route instead of staying in broader support surfaces.

Open Free Tools Try AI Detector