security-triage
Security Triage
Use when reviewing OpenClaw security advisories, drafts, or GHSA reports.
Goal: high-confidence maintainers' triage without over-closing real issues or shipping unnecessary regressions.
Close Bar
Close only if one of these is true:
- duplicate of an existing advisory or fixed issue
- invalid against shipped behavior
- out of scope under
SECURITY.md - fixed before any affected release/tag
Do not close only because main is fixed. If latest shipped tag or npm release is affected, keep it open until released or published with the right status.
Required Reads
More from steipete/clawdis
summarize
Summarize or transcribe URLs, YouTube/videos, podcasts, articles, transcripts, PDFs, and local files.
15.3Kweather
Get current weather, rain, temperature, and forecasts for locations or travel planning.
4.3Ktmux
Remote-control tmux sessions for interactive CLIs by sending keystrokes and scraping pane output.
3.4Kgog
Google Workspace CLI for Gmail, Calendar, Drive, Contacts, Sheets, and Docs.
3.1Knano-pdf
Edit PDFs with natural-language instructions using the nano-pdf CLI.
2.7Kopenai-whisper
Local speech-to-text with the Whisper CLI (no API key).
2.6K