npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

openclaw-sentinel

v2026.3.5

Published

Real-time endpoint security monitoring plugin for OpenClaw

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

sunil-libralabssunil-libralabs

Keywords

openclawopenclaw-pluginsecurityendpoint-securityedrosquerymacosmonitoring

Readme

🛡️ OpenClaw Sentinel

npm version License: MIT Node.js OpenClaw Plugin Powered by osquery

OpenClaw agents run with elevated privileges on your machine — shell access, file operations, network connections. Sentinel continuously monitors for unauthorized access, suspicious processes, privilege escalation, and system anomalies, alerting you in real-time through any OpenClaw channel.

A security monitoring plugin for OpenClaw, powered by osquery.

What it does

Sentinel watches your machine for suspicious activity and alerts you in real-time:

  • 🔍 Process monitoring — unsigned binaries, privilege escalation, suspicious commands
  • 🔐 SSH monitoring — logins from unknown hosts, brute force attempts
  • 🌐 Network monitoring — new listening ports, unexpected services
  • 📁 File integrity — changes to critical system files, new persistence mechanisms (LaunchDaemons, cron)
  • 🚨 Smart alerting — learns your baseline (known hosts, ports) and only alerts on anomalies

Architecture

osqueryd (root daemon)
    ↓ writes JSON results
~/.openclaw/sentinel/logs/osquery/osqueryd.results.log
    ↓ tailed by
Sentinel watcher (fs.watch + poll fallback)
    ↓ parsed results
Analyzer (detection rules)
    ↓ high/critical events
OpenClaw → Signal/Slack/Telegram alert

Sentinel does not run osqueryd itself (it requires root). You start osqueryd separately via sudo or launchd, and Sentinel tails its result logs.

Prerequisites

  • macOS (Apple Silicon or Intel) or Linux (systemd-based)
  • osquery installed
  • OpenClaw running

Install osquery

macOS (Homebrew):

brew install --cask osquery

macOS (manual):

# Download the official .pkg from https://osquery.io/downloads

Note: osquery needs Full Disk Access on macOS for the Endpoint Security framework. Grant it to /opt/osquery/lib/osquery.app/Contents/MacOS/osqueryd in System Settings → Privacy & Security → Full Disk Access.

Linux (Debian/Ubuntu):

wget -qO - https://pkg.osquery.io/deb/pubkey.gpg | sudo gpg --dearmor -o /usr/share/keyrings/osquery-archive-keyring.gpg
echo "deb [signed-by=/usr/share/keyrings/osquery-archive-keyring.gpg] https://pkg.osquery.io/deb deb main" | sudo tee /etc/apt/sources.list.d/osquery.list
sudo apt-get update && sudo apt-get install osquery

Linux (RHEL/CentOS):

curl -L https://pkg.osquery.io/rpm/GPG | sudo tee /etc/pki/rpm-gpg/RPM-GPG-KEY-osquery
sudo yum-config-manager --add-repo https://pkg.osquery.io/rpm/osquery-s3-rpm.repo
sudo yum install osquery

Installation

Using OpenClaw CLI (recommended)

openclaw plugins install openclaw-sentinel

This pulls the package from npm, installs it into ~/.openclaw/extensions/sentinel/, and registers it in your config automatically.

Then configure and restart:

openclaw gateway restart

You can also manage it with:

openclaw plugins list        # See installed plugins
openclaw plugins info sentinel  # Plugin details
openclaw plugins update      # Update all npm-installed plugins
openclaw plugins uninstall sentinel  # Remove

From npm (manual)

If you prefer manual setup:

npm install -g openclaw-sentinel

Then add the plugin to your ~/.openclaw/openclaw.json:

{
  "plugins": {
    "entries": {
      "sentinel": {
        "enabled": true,
        "module": "openclaw-sentinel",
        "config": {
          "alertChannel": "signal",
          "alertTo": "+1234567890",
          "alertSeverity": "high"
        }
      }
    }
  }
}

Restart your gateway:

openclaw gateway restart

From source (development)

git clone https://github.com/sunil-sadasivan/openclaw-sentinel.git
cd openclaw-sentinel
npm install && npm run build
openclaw plugins install .
openclaw gateway restart

Configuration

Add to your ~/.openclaw/openclaw.json under plugins.entries:

{
  "plugins": {
    "entries": {
      "sentinel": {
        "enabled": true,
        "config": {
          "osqueryPath": "/opt/osquery/lib/osquery.app/Contents/MacOS/osqueryi",
          "logPath": "~/.openclaw/sentinel",
          "alertChannel": "signal",
          "alertTo": "+1234567890",
          "alertSeverity": "high"
        }
      }
    }
  }
}

Config options

| Option | Type | Default | Description | |--------|------|---------|-------------| | osqueryPath | string | auto-detect | Path to osqueryi binary | | logPath | string | ~/.openclaw/sentinel | Directory for sentinel data and osquery logs | | alertChannel | string | — | Channel for alerts (signal, slack, telegram, etc.) | | alertTo | string | — | Alert target (phone number, channel ID, etc.) | | alertSeverity | string | high | Minimum severity to alert: critical, high, medium, low, info | | trustedSigningIds | string[] | [] | Code signing IDs to skip (e.g. com.apple) | | trustedPaths | string[] | [] | Binary paths to skip (e.g. /usr/bin, /opt/homebrew/bin) | | watchPaths | string[] | [] | File paths to monitor for integrity changes | | enableProcessMonitor | boolean | true | Monitor process execution events | | enableFileIntegrity | boolean | true | Monitor file integrity events | | enableNetworkMonitor | boolean | true | Monitor network connections | | pollIntervalMs | number | 30000 | Fallback poll interval (ms) if fs.watch misses events |

Starting osqueryd

Sentinel watches osqueryd's output — you need to start osqueryd separately. The included setup script handles everything.

Automated setup (recommended)

sudo ./scripts/setup-daemon.sh

The script auto-detects your OS and will:

  1. Find your osqueryd binary
  2. Create the sentinel directory structure (~/.openclaw/sentinel/)
  3. Generate a default osquery config if none exists
  4. Install a system daemon:
    • macOS: LaunchDaemon (/Library/LaunchDaemons/com.openclaw.osqueryd.plist)
    • Linux: systemd unit (/etc/systemd/system/openclaw-osqueryd.service)
  5. Start osqueryd — auto-starts on boot and restarts on crash
# macOS
sudo launchctl list com.openclaw.osqueryd

# Linux
sudo systemctl status openclaw-osqueryd

# Uninstall (both)
sudo ./scripts/setup-daemon.sh --uninstall

Manual start (for testing)

SENTINEL_DIR=~/.openclaw/sentinel

sudo osqueryd \
  --config_path=$SENTINEL_DIR/config/osquery.conf \
  --database_path=$SENTINEL_DIR/db \
  --logger_path=$SENTINEL_DIR/logs/osquery \
  --pidfile=$SENTINEL_DIR/osqueryd.pid \
  --logger_plugin=filesystem \
  --disable_events=false \
  --events_expiry=3600 \
  --daemonize \
  --force

Full Disk Access

For Endpoint Security framework support (process events, file events), grant Full Disk Access:

System Settings → Privacy & Security → Full Disk Access → Add osqueryd

The path is typically /opt/osquery/lib/osquery.app/Contents/MacOS/osqueryd.

Agent tools

Sentinel registers three tools your OpenClaw agent can use:

sentinel_status

Get monitoring status — daemon state, event counts, known baseline.

sentinel_query

Run ad-hoc osquery SQL for security investigation:

"Show me all listening ports"
→ sentinel_query: SELECT * FROM listening_ports WHERE port > 0;

"What processes are running as root?"
→ sentinel_query: SELECT name, path, cmdline FROM processes WHERE uid = 0;

"Any SSH keys on this machine?"
→ sentinel_query: SELECT * FROM user_ssh_keys;

sentinel_events

Get recent security events, filterable by severity or category:

"Show me critical events"
→ sentinel_events: { severity: "critical" }

"Any SSH-related events?"
→ sentinel_events: { category: "ssh_login" }

Usage examples

Just ask your agent in natural language through any OpenClaw channel (Signal, Slack, Discord, etc.):

System overview:

"How's my machine looking security-wise?" "Any security alerts today?" "What's the sentinel status?"

Network investigation:

"What ports are open on this machine?" "Show me all outbound connections" "Is anything phoning home to an IP I don't recognize?" "What's listening on port 5432?"

Process investigation:

"What's running as root right now?" "Any unsigned binaries running?" "Show me recently started processes" "What launched in the last hour?"

SSH & access:

"Who's logged into this machine?" "Any failed SSH attempts?" "Has anyone tried to brute force SSH?" "Show me all SSH keys on the system"

Persistence & malware hunting:

"Are there any new LaunchDaemons I should know about?" "Show me all cron jobs" "Any changes to /etc/hosts or sudoers?" "What browser extensions are installed?"

Forensics:

"What happened on this machine between 2am and 5am?" "Show me all shell history with sudo commands" "Which processes have the most open file descriptors?" "What DNS queries were made in the last hour?"

The agent translates these into osquery SQL, runs them through sentinel_query, and explains the results in plain English.

Detection rules

| Category | Severity | Trigger | |----------|----------|---------| | Unsigned binary | high | Process executed without valid code signature | | Privilege escalation | critical | sudo, su, doas with unexpected targets | | Suspicious command | high | curl \| sh, base64 -d, nc -l, reverse shells | | Unknown SSH login | high | SSH from IP not in baseline | | SSH brute force | critical | 5+ failed auth attempts in short window | | New listening port | medium | Port not seen during baseline scan | | File integrity | high | Changes to watched paths | | Persistence | high | New LaunchDaemon, LaunchAgent, or cron entry |

How baseline works

On startup, Sentinel snapshots:

  • All currently logged-in remote hosts → known hosts
  • All currently listening ports → known ports

Future events are compared against this baseline. Only anomalies trigger alerts. The baseline refreshes each time the gateway restarts.

Example alerts

🚨 SECURITY ALERT
Severity: HIGH
Category: ssh_login
Time: 2026-02-21 10:15:00

Unknown SSH login from 203.0.113.42
User: root | TTY: ttys003

This host is not in the known baseline.
🔴 SECURITY ALERT
Severity: CRITICAL
Category: privilege_escalation
Time: 2026-02-21 14:30:00

Privilege escalation detected
User: www → root | PID: 54321
Command: sudo /bin/bash

Development

git clone https://github.com/sunil-sadasivan/openclaw-sentinel.git
cd openclaw-sentinel
npm install
npm run build          # Compile TypeScript
npm run dev            # Watch mode
npm test               # Run tests (60 tests)

Project structure

src/
├── index.ts       # Plugin entry point — tool registration, watcher startup
├── config.ts      # SentinelConfig interface, defaults, SecurityEvent types
├── osquery.ts     # osquery binary discovery, SQL execution, config generation
├── analyzer.ts    # Detection rules — processes, SSH, ports, files, persistence
└── watcher.ts     # Event-driven log tailer (fs.watch + poll fallback)

License

MIT