CIS Compliant — Permission Security

permguard

Scan. Enforce. Report.

Fleet-wide script permission auditor. Detect dangerous 777, fix permission drift, and harden OpenClaw AI agent scripts. Production-safe automation.

$curl -sL ... | sudo bash

View on GitHub Try Demo

777

Dangerous Detected

000

Missing Execute

OpenClaw Support

Zero

Dependencies

Scan

Detect dangerous 777 permissions, missing execute bits (000), and world-writable files across your fleet.

Enforce

Fix permissions with safe defaults (755 for scripts, 644 for configs). Dry-run mode available.

Report

Generate HTML compliance reports for auditors. CIS, SOC2, ISO27001 ready documentation.

Interactive Terminal

Try permguard commands in your browser. No installation required.

permguard@production-fleet:~

$permguardscan

═══════════════════════════════════════════════════════════════

PERMGUARD SCAN REPORT

2026-03-05 22:50:15

═══════════════════════════════════════════════════════════════

Scanning: /opt /home /usr/local/bin /scripts

Server: production-fleet-01

┌─ Permission Analysis ────────────────────────────────────────┐

! /opt/scripts/backup.sh

MISSING: No permissions (000)

→ Suggested: 755 (owner=rwx, group/others=rx)

✗ /home/app/deploy.sh

DANGER: 777 permissions! (owner=7 group=7 others=7)

→ Suggested: 755 (owner=rwx, group/others=rx)

✓ /usr/local/bin/health-check.sh

Permissions OK: 755

! /opt/openclaw/skills/deploy-agent.sh

WARN: World-writable (others=6)

→ Suggested: 755

└─────────────────────────────────────────────────────────────┘

┌─ Summary ────────────────────────────────────────────────────┐

Total scripts found: 47

Files with issues: 3

Dangerous (777): 1

Missing exec (000): 1

World-writable: 1

└─────────────────────────────────────────────────────────────┘

┌─ OpenClaw AI Agent Scripts ─────────────────────────────────┐

✓ Found 3 OpenClaw-related scripts

! /opt/openclaw/skills/deploy-agent.sh (perms: 776)

└─────────────────────────────────────────────────────────────┘

Quick Commands:

OpenClaw AI Agent Support

Harden Your AI Agents

permguard detects and audits scripts in OpenClaw skill directories.