HN Showcase
Back to browse
GitHub Repository

Security auditor, CVE scanner, and skill analyzer for OpenClaw gateways

7 starsTypeScript

OpenClaw Carapace – Security Scanner for OpenClaw

by broskees·Mar 2, 2026·6 points·0 comments
Visit ProjectView on HN

AI Analysis

MidNiche Gem

Hardening scanner for OpenClaw, but only useful if you're already deploying OpenClaw.

Strengths
  • 24 audit rules + 225+ CVE advisories give immediate signal on gateway security posture
  • Auto-fix capability + hardening profiles reduce friction from finding→fixing cycle
  • SARIF output integrates naturally into GitHub Code Scanning and existing CI/CD pipelines
Weaknesses
  • Extremely niche—only relevant to OpenClaw users; no broader security tooling market
  • Completely dependent on OpenClaw adoption and market viability
Category
Security
Target Audience

OpenClaw gateway operators, AI ops engineers securing agentic systems

Similar To

Trivy (container scanning) · Snyk CLI · Semgrep

Post Description

Here's Openclaw Carapace, a CLI security scanner for OpenClaw. It audits your configs, flags CVEs, and scans skill files for vulnerabilities.

A few things it does: - Auto-fix common misconfigurations - Hardening profiles for typical deployment patterns - SARIF output so it drops right into GitHub Code Scanning or your CI/CD pipeline

Would love feedback — especially on what checks or hardening rules you'd want to see next.

Similar Projects

Security●●●Banger

Aidevshield NPM audit for AI coding tool workflows

Scans Cursor/Cline/GitHub Actions for prompt injection and supply chain attacks—aidevshield catches real exploits.

Solve My ProblemBig Brain
GrimLabs
103mo ago