Docs

CLI & Automation

SecureClaw ships with a Go CLI that also exposes a local HTTP API. Use these commands and endpoints to automate installs, policy changes, and incident exports.

Common commands

secureclaw watch --skills ~/.clawdbot/skills secureclaw scan --format table secureclaw update --safe-feed-url https://secureyourclaw.ai/safe-feed.json secureclaw dashboard --telegram-bot $BOT --telegram-chat $CHAT

Run secureclaw --help for the full command reference.

Local API

When the watchdog is running with the API enabled (default), it serves JSON underhttp://127.0.0.1:4825/api.

  • /api/health — daemon status, Safe Feed stats.
  • /api/state — allowlist, quarantine, findings, events.
  • /api/config — GET/POST policy toggles.
  • /api/safe-feed — current catalog snapshot.

Automation ideas

  • Push findings to your SOC via a simple cron that polls /api/findings.
  • Mirror allowlist events into Git or Notion for compliance.
  • Trigger SecureClaw scans after every ClawHub install in CI.