Files
wehub-resource-sync 6d978fe483
Build / Frontend Build (push) Waiting to run
Build / Backend Build (push) Waiting to run
Build / Docker Build (push) Blocked by required conditions
Build / Kubernetes Deploy Smoke Test (push) Blocked by required conditions
chore: import upstream snapshot with attribution
2026-07-13 12:35:24 +08:00

1.2 KiB

Security / Skill Scanner Guide

Security Center is the review and scanning surface for skill assets in ClawManager. It works with skill-scanner to help teams understand asset coverage, risk posture, and scanning status before skills are reused across workspaces.

What It Covers

  • skill asset inventory across the platform
  • scan status, coverage, and recent scan jobs
  • risk-level distribution for discovered and uploaded skills
  • scanner configuration, including external analysis integrations where configured

Main Workflows

  1. Review the asset inventory and identify high-risk or unscanned skills.
  2. Start incremental or full scans from Security Center.
  3. Inspect recent scan jobs and detailed outcomes.
  4. Tune scanner configuration and analysis integrations.
  5. Feed scanning results back into skill approval and workspace rollout decisions.

Why It Matters

  • keeps reusable skills visible and reviewable
  • adds a security checkpoint to the resource supply chain
  • supports scale by replacing ad hoc per-instance trust decisions with centralized scanning workflows