fix: use npx openclaw in all CLI references

openclaw is not typically installed globally, so all CLI commands
now use npx openclaw instead of bare openclaw. Updated across both
READMEs, SKILL.md, skill README, and emergency-response.sh output.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

Author: adversa-ai

README.md

@@ -124,10 +124,10 @@ git clone https://github.com/adversa-ai/secureclaw.git
 cd secureclaw/secureclaw
 npm install
 npm run build
-openclaw plugins install -l .
+npx openclaw plugins install -l .
 ```
 
-The plugin includes the skill. After installing, run `openclaw secureclaw skill install` to deploy the skill files to your agent's workspace.
+The plugin includes the skill. After installing, run `npx openclaw secureclaw skill install` to deploy the skill files to your agent's workspace.
 
 ### Option C: ClawHub
 
@@ -270,10 +270,10 @@ Each finding includes: check ID, severity, OWASP ASI reference, evidence string,
 Run via CLI:
 
 ```sh
-openclaw secureclaw audit            # Standard audit
-openclaw secureclaw audit --deep     # Includes active TCP port probing
-openclaw secureclaw audit --json     # Machine-readable JSON output
-openclaw secureclaw audit --fix      # Auto-apply fixes after audit
+npx openclaw secureclaw audit            # Standard audit
+npx openclaw secureclaw audit --deep     # Includes active TCP port probing
+npx openclaw secureclaw audit --json     # Machine-readable JSON output
+npx openclaw secureclaw audit --fix      # Auto-apply fixes after audit
 ```
 
 ---
@@ -301,8 +301,8 @@ Every destructive change creates a timestamped backup first. The gateway config
 The plugin provides 5 hardening modules with backup/rollback:
 
 ```sh
-openclaw secureclaw harden --full       # Apply all modules
-openclaw secureclaw harden --rollback   # Revert to last backup
+npx openclaw secureclaw harden --full       # Apply all modules
+npx openclaw secureclaw harden --rollback   # Revert to last backup
 ```
 
 Modules run in priority order: gateway, credentials, config, Docker, network. A manifest file records exactly what was changed and when.
@@ -623,7 +623,7 @@ SecureClaw maps to all 10 categories of the [OWASP Agentic Security Initiative](
 
 When the full plugin is installed, these commands are available:
 
-### openclaw secureclaw audit
+### npx openclaw secureclaw audit
 
 Run the 51-check security audit.
 
@@ -633,7 +633,7 @@ Run the 51-check security audit.
 | `--deep` | Enable active network probes (TCP port scanning) |
 | `--fix` | Automatically apply fixes after the audit completes |
 
-### openclaw secureclaw harden
+### npx openclaw secureclaw harden
 
 Apply hardening across 5 modules (gateway, credentials, config, Docker, network).
 
@@ -642,27 +642,27 @@ Apply hardening across 5 modules (gateway, credentials, config, Docker, network)
 | `--full` | Apply all modules without interactive prompts |
 | `--rollback [timestamp]` | Revert to a previous backup. If no timestamp is given, reverts to the most recent backup. |
 
-### openclaw secureclaw status
+### npx openclaw secureclaw status
 
 Display current security posture: score, monitor status (credential watch, memory integrity, cost tracking), and recent alert count.
 
-### openclaw secureclaw scan-skill \<name\>
+### npx openclaw secureclaw scan-skill \<name\>
 
 Scan a specific skill for malicious patterns before installation. Checks for dynamic execution, credential access, exfiltration endpoints, IOC hash matches, and typosquatting.
 
-### openclaw secureclaw cost-report
+### npx openclaw secureclaw cost-report
 
 Display cost monitoring data: hourly/daily/monthly spend, projections, and whether the circuit breaker has tripped.
 
-### openclaw secureclaw skill install
+### npx openclaw secureclaw skill install
 
 Install the SecureClaw skill to your agent's skills directory. Equivalent to running `install.sh` manually.
 
-### openclaw secureclaw skill update
+### npx openclaw secureclaw skill update
 
 Re-run the skill installer to update to the latest version. Backs up the existing installation.
 
-### openclaw secureclaw skill uninstall
+### npx openclaw secureclaw skill uninstall
 
 Remove the SecureClaw skill. Performs a dry run by default; prompts for confirmation before deletion.
 
@@ -823,7 +823,7 @@ After uninstalling, manually edit `SOUL.md` to remove the `## SecureClaw Privacy
 ### Remove the plugin
 
 ```sh
-openclaw plugins uninstall secureclaw
+npx openclaw plugins uninstall secureclaw
 ```
 
 ### Remove both

secureclaw/README.md

@@ -124,10 +124,10 @@ git clone https://github.com/adversa-ai/secureclaw.git
 cd secureclaw/secureclaw
 npm install
 npm run build
-openclaw plugins install -l .
+npx openclaw plugins install -l .
 ```
 
-The plugin includes the skill. After installing, run `openclaw secureclaw skill install` to deploy the skill files to your agent's workspace.
+The plugin includes the skill. After installing, run `npx openclaw secureclaw skill install` to deploy the skill files to your agent's workspace.
 
 ### Option C: ClawHub
 
@@ -270,10 +270,10 @@ Each finding includes: check ID, severity, OWASP ASI reference, evidence string,
 Run via CLI:
 
 ```sh
-openclaw secureclaw audit            # Standard audit
-openclaw secureclaw audit --deep     # Includes active TCP port probing
-openclaw secureclaw audit --json     # Machine-readable JSON output
-openclaw secureclaw audit --fix      # Auto-apply fixes after audit
+npx openclaw secureclaw audit            # Standard audit
+npx openclaw secureclaw audit --deep     # Includes active TCP port probing
+npx openclaw secureclaw audit --json     # Machine-readable JSON output
+npx openclaw secureclaw audit --fix      # Auto-apply fixes after audit
 ```
 
 ---
@@ -301,8 +301,8 @@ Every destructive change creates a timestamped backup first. The gateway config
 The plugin provides 5 hardening modules with backup/rollback:
 
 ```sh
-openclaw secureclaw harden --full       # Apply all modules
-openclaw secureclaw harden --rollback   # Revert to last backup
+npx openclaw secureclaw harden --full       # Apply all modules
+npx openclaw secureclaw harden --rollback   # Revert to last backup
 ```
 
 Modules run in priority order: gateway, credentials, config, Docker, network. A manifest file records exactly what was changed and when.
@@ -623,7 +623,7 @@ SecureClaw maps to all 10 categories of the [OWASP Agentic Security Initiative](
 
 When the full plugin is installed, these commands are available:
 
-### openclaw secureclaw audit
+### npx openclaw secureclaw audit
 
 Run the 51-check security audit.
 
@@ -633,7 +633,7 @@ Run the 51-check security audit.
 | `--deep` | Enable active network probes (TCP port scanning) |
 | `--fix` | Automatically apply fixes after the audit completes |
 
-### openclaw secureclaw harden
+### npx openclaw secureclaw harden
 
 Apply hardening across 5 modules (gateway, credentials, config, Docker, network).
 
@@ -642,27 +642,27 @@ Apply hardening across 5 modules (gateway, credentials, config, Docker, network)
 | `--full` | Apply all modules without interactive prompts |
 | `--rollback [timestamp]` | Revert to a previous backup. If no timestamp is given, reverts to the most recent backup. |
 
-### openclaw secureclaw status
+### npx openclaw secureclaw status
 
 Display current security posture: score, monitor status (credential watch, memory integrity, cost tracking), and recent alert count.
 
-### openclaw secureclaw scan-skill \<name\>
+### npx openclaw secureclaw scan-skill \<name\>
 
 Scan a specific skill for malicious patterns before installation. Checks for dynamic execution, credential access, exfiltration endpoints, IOC hash matches, and typosquatting.
 
-### openclaw secureclaw cost-report
+### npx openclaw secureclaw cost-report
 
 Display cost monitoring data: hourly/daily/monthly spend, projections, and whether the circuit breaker has tripped.
 
-### openclaw secureclaw skill install
+### npx openclaw secureclaw skill install
 
 Install the SecureClaw skill to your agent's skills directory. Equivalent to running `install.sh` manually.
 
-### openclaw secureclaw skill update
+### npx openclaw secureclaw skill update
 
 Re-run the skill installer to update to the latest version. Backs up the existing installation.
 
-### openclaw secureclaw skill uninstall
+### npx openclaw secureclaw skill uninstall
 
 Remove the SecureClaw skill. Performs a dry run by default; prompts for confirmation before deletion.
 
@@ -823,7 +823,7 @@ After uninstalling, manually edit `SOUL.md` to remove the `## SecureClaw Privacy
 ### Remove the plugin
 
 ```sh
-openclaw plugins uninstall secureclaw
+npx openclaw plugins uninstall secureclaw
 ```
 
 ### Remove both

secureclaw/skill/README.md

@@ -50,7 +50,7 @@ Re-run the installer — it detects the existing version, backs up, and overwrit
 bash skill/scripts/install.sh
 ```
 
-Or via plugin CLI: `openclaw secureclaw skill update`
+Or via plugin CLI: `npx openclaw secureclaw skill update`
 
 ## Uninstall
 
@@ -66,7 +66,7 @@ Actually remove:
 bash ~/.openclaw/skills/secureclaw/scripts/uninstall.sh --force
 ```
 
-Or via plugin CLI: `openclaw secureclaw skill uninstall`
+Or via plugin CLI: `npx openclaw secureclaw skill uninstall`
 
 ## Quick Start
 

secureclaw/skill/SKILL.md

@@ -93,6 +93,6 @@ Replace SKILL_DIR with the actual path to this skill:
 - If part of plugin: `~/.openclaw/extensions/secureclaw/skill`
 
 If the SecureClaw plugin is installed, prefer plugin commands:
-- `openclaw secureclaw audit` instead of quick-audit.sh
-- `openclaw secureclaw harden` instead of quick-harden.sh
-- `openclaw secureclaw emergency` instead of emergency-response.sh
+- `npx openclaw secureclaw audit` instead of quick-audit.sh
+- `npx openclaw secureclaw harden` instead of quick-harden.sh
+- `npx openclaw secureclaw emergency` instead of emergency-response.sh

secureclaw/skill/checksums.json

@@ -1,6 +1,6 @@
 {
-  "README.md": "cb1ed95ccdd647c30f6e120a46d7b4e8514c59decf4eb24a3e16b9cef55ffe5e",
-  "SKILL.md": "5469d7eb14cdeabe1492b527c7e3edd08850c3c4045c63083557e62ef1fa2a57",
+  "README.md": "d99bdd8036a75e350fbba16e0b3969945ae2253c25414ca23edd6aff93c6dd4d",
+  "SKILL.md": "c113317610d0b19fbfa92c552f796d7c4129dca58ded54edc1ca5f54002237f0",
   "skill.json": "5b1244a30f2cf83e736b4975186291b29b50cabcb9a4623fc535d5fc1035afbc",
   "configs/dangerous-commands.json": "b9c0be69df0ddb7bd2e9eade54e37212f62f15a9f9a28777998e9e07cf1d6f7e",
   "configs/injection-patterns.json": "a8e6391d793861280a704ccdcd4a8fea1ae8439b558768535c7753549429753c",
@@ -9,7 +9,7 @@
   "scripts/check-advisories.sh": "a25dbaa762e0e38a1907f17ed57d820cbb854cdee1da306eb594083057d10d54",
   "scripts/check-integrity.sh": "d0278ca3ca5bcd8312218590d335b7c99401a2e01052733fd065f998838674ee",
   "scripts/check-privacy.sh": "c9943e7edb11b01c1907278443032197a778d2db0734908741c2d1d019fcf4ca",
-  "scripts/emergency-response.sh": "e56c3d014584140089a4d4e8fd2d856bff207f6dc2d1e6bf36e241c127429af0",
+  "scripts/emergency-response.sh": "92767a4e252ea5fe7948db1cef52220a980d091bf62355382db69bf22377eb2a",
   "scripts/install.sh": "d5510b6d4b13c31e2f3d9688682e26e56574f70cbded3d75c95ed623ce8bd4e5",
   "scripts/quick-audit.sh": "aaf19fedbbe2489a40da10c01b7fbcecceab1bda934c6f1377f2bcf8ca182901",
   "scripts/quick-harden.sh": "96a747ac3a026a72e40e3bd1de50e92c62b7bb445a8a000f8735910d06f8efc5",

secureclaw/skill/scripts/emergency-response.sh

@@ -76,5 +76,5 @@ echo "  5. Review installed skills for unfamiliar entries"
 echo "  6. Check if gateway was exposed: netstat -an | grep 18789"
 echo ""
 echo "  For automated incident response, install the full plugin:"
-echo "    openclaw plugins install secureclaw"
-echo "    openclaw secureclaw audit"
+echo "    npx openclaw plugins install secureclaw"
+echo "    npx openclaw secureclaw audit"