Agent security hardening and prompt injection defense for OpenClaw. Protects against ClawHavoc-style attacks including prompt injection, data exfiltration, credential theft, and unauthorized operations. Runtime protection that complements pre-installation skill scanners like Clawdex. Includes security audit checklist, 8 documented attack vector defenses with mitigations, copy-paste AGENTS.md security patterns, credential file protection, browser URL allowlisting, and sensitive operation approval flows. Use when setting up agent security, performing security audits, hardening agent configurations, protecting credentials, preventing data leaks, or defending against indirect prompt injection attacks.

为OpenClaw提供代理安全加固与提示注入防御，抵御类似ClawHavoc的攻击，包括提示注入、数据窃取、凭据盗取和未授权操作。运行时防护机制，与Clawdex等安装前技能扫描工具协同增强安全性。包含安全审计清单、8种经过文档化记载的攻击向量及其缓解措施、可直接复制粘贴的AGENTS.md安全模式、凭据文件保护、浏览器URL白名单机制以及敏感操作审批流程。适用于部署代理安全、执行安全审计、加固代理配置、保护凭据、防止数据泄露及防御间接提示注入攻击的场景。