Axiomata Guard Scanner — Axiomata 防护 扫描器

Axiomata 防护 扫描器

Universal OpenClaw 技能 security 扫描器 Impersonal — works for any 代理

Description

Axiomata 防护 扫描器 保护s OpenClaw 代理s by 扫描ning 技能s for security threats. It uses multiple "vaccines" (检测ion engines) to identify malicious patterns before 安装ation.

Trigger: Before 安装ing any 技能, especially from ClawHub.

Security Layers Layer 1: ClawHub Malicious Pattern 检查 (VAX-001) 检查s for known malicious patterns:

• Malicious binary 下载s (OpenClaw命令行工具.zip)
• RCE via glot.io snippets
• Malware via GitHub releases
• Password-保护ed 归档s

Layer 2: C2 & Data Exfiltration 检测ion (VAX-027) 检测s command & control infrastructure:

• Suspicious DNS lookups
• Discord/Telegram 网页hooks
• Bit.ly / short URL redirects
• Exfiltration patterns

Layer 3: Cross-Vector Attack ChAIn (VAX-028) Correlates findings from other vaccines:

• Multiple attack vectors
• ChAIn escalation patterns
• Combined threat assessment

Layer 4: Rootkit & Bootkit 检测ion (VAX-029) 检测s kernel-level threats:

• 系统 manipulation patterns
• Driver injection
• UEFI threats

Layer 5: Package Eco系统 Attacks (VAX-030) 检测s package-level attacks:

• typosquatting
• dependency confusion
• malicious packages

Usage 扫描 a 技能 file python3 scripts/防护_扫描器.py --file <技能-path>

扫描 技能 code directly python3 scripts/防护_扫描器.py --code "<技能 code>"

JSON 输出 python3 scripts/防护_扫描器.py --file <技能-path> --json

输出 格式化 { "扫描器": "Axiomata 防护 扫描器", "version": "1.0.0", "技能_name": "...", "global_threat_level": "清理 | LOW | MEDIUM | HIGH | CRITICAL", "global_score": 0-300, "decision": "应用ROVE | WARN | NEUTRALIZE | ISOLATE", "triggered_vaccines": [...], "summary": {...} }

Threat Levels Level Score Action 清理 0 应用ROVE LOW 1-19 应用ROVE with 监控ing MEDIUM 20-49 WARN — manual review HIGH 50-79 NEUTRALIZE CRITICAL 80+ ISOLATE immediately

In Altum Per Security. Axiomata 防护 扫描器 v1.0.0