Releases: fire-la/firela-bot
Release list
@firela/billclaw-connect@0.5.5
Patch Changes
-
b2743b0: Fix webhook route mounting to avoid duplicate path prefixes
The webhook routes were incorrectly mounted with duplicate path prefixes
(e.g., /webhook/plaid/plaid instead of /webhook/plaid). This fix corrects
the route mounting in server.ts to use a single /webhook prefix.
@firela/billclaw-openclaw@0.5.4
Patch Changes
-
Fix SKILL.md inconsistencies for OpenClaw security compliance.
Problem: Security scan flagged two inconsistencies:
- Package name mismatch between SKILL.md and registry metadata
- Contradictory "No external code execution" statement
Changes:
- Add @firela/billclaw-openclaw as primary (required) install entry
- Update Security Guarantee to clarify:
- Skill provides installation instructions
- Code execution handled by installed npm packages
- All packages are transparent and auditable
- Add Package Overview section labeling required vs optional
Metadata updates:
- install[0]: @firela/billclaw-openclaw (required)
- install[1]: @firela/billclaw-cli (optional)
- install[2]: @firela/billclaw-connect (optional)
-
Updated dependencies
- @firela/billclaw-core@0.5.4
@firela/billclaw-openclaw@0.5.3
Patch Changes
-
Fix SKILL.md metadata format to match OpenClaw official standard.
Change metadata from single-line JSON string to multi-line YAML
nested JSON object format. This fixes ClawHub registry parsing issues
where metadata (requires.env, install specs) was not properly recognized.Before (single-line JSON):
metadata: { "openclaw": { "requires": { "env": [...] } } }
After (multi-line YAML nested JSON):
homepage: https://github.com/fire-la/billclaw metadata: { "openclaw": { "emoji": "💰", "requires": { "env": [...], "anyBins": [...] }, "primaryEnv": "PLAID_CLIENT_ID", "install": [...], }, }
This matches the format used by official OpenClaw skills and ensures
proper parsing by ClawHub registry. -
Updated dependencies
- @firela/billclaw-core@0.5.3
@firela/billclaw-openclaw@0.5.2
Patch Changes
- SKILL.md security optimization for VirusTotal compliance:
- Add prominent Security Guarantee section
- Remove direct npm install commands (use metadata instead)
- Emphasize all packages are verified npm packages
- Reference documentation for detailed setup
- Clarify skill is documentation-only
- Updated dependencies
- @firela/billclaw-core@0.5.2
@firela/billclaw-openclaw@0.5.1
Patch Changes
- Version bump to 0.5.1 for ClawHub security compliance release
- Updated dependencies
- @firela/billclaw-core@0.5.1
@firela/billclaw-openclaw@0.5.0
Minor Changes
- 0080d71: Add OpenClaw skill metadata for ClawHub security compliance:
- Declare required credentials (PLAID_CLIENT_ID, PLAID_SECRET, GMAIL_CLIENT_ID, GMAIL_CLIENT_SECRET)
- Set disable-model-invocation for sensitive financial data handling
- Add optional install specs for CLI and Connect components
- Update documentation to clarify plugin-based architecture
Patch Changes
@firela/billclaw-core@0.5.4
Patch Changes
-
Fix SKILL.md inconsistencies for OpenClaw security compliance.
Problem: Security scan flagged two inconsistencies:
- Package name mismatch between SKILL.md and registry metadata
- Contradictory "No external code execution" statement
Changes:
- Add @firela/billclaw-openclaw as primary (required) install entry
- Update Security Guarantee to clarify:
- Skill provides installation instructions
- Code execution handled by installed npm packages
- All packages are transparent and auditable
- Add Package Overview section labeling required vs optional
Metadata updates:
- install[0]: @firela/billclaw-openclaw (required)
- install[1]: @firela/billclaw-cli (optional)
- install[2]: @firela/billclaw-connect (optional)
@firela/billclaw-core@0.5.3
Patch Changes
-
Fix SKILL.md metadata format to match OpenClaw official standard.
Change metadata from single-line JSON string to multi-line YAML
nested JSON object format. This fixes ClawHub registry parsing issues
where metadata (requires.env, install specs) was not properly recognized.Before (single-line JSON):
metadata: { "openclaw": { "requires": { "env": [...] } } }
After (multi-line YAML nested JSON):
homepage: https://github.com/fire-la/billclaw metadata: { "openclaw": { "emoji": "💰", "requires": { "env": [...], "anyBins": [...] }, "primaryEnv": "PLAID_CLIENT_ID", "install": [...], }, }
This matches the format used by official OpenClaw skills and ensures
proper parsing by ClawHub registry.
@firela/billclaw-core@0.5.2
Patch Changes
- SKILL.md security optimization for VirusTotal compliance:
- Add prominent Security Guarantee section
- Remove direct npm install commands (use metadata instead)
- Emphasize all packages are verified npm packages
- Reference documentation for detailed setup
- Clarify skill is documentation-only
@firela/billclaw-core@0.5.1
Patch Changes
- Version bump to 0.5.1 for ClawHub security compliance release