Agentguard

### Security

- Auto-scan is now **opt-in** (disabled by default) to address ClawHub security review

- Claude Code: requires `AGENTGUARD_AUTO_SCAN=1` environment variable

- OpenClaw: requires `{ skipAutoScan: false }` when registering the plugin

- Auto-scan now operates in **report-only mode** — scans skills and reports results to stderr, but no longer calls `forceAttest` or modifies the trust registry

- Audit log (`~/.agentguard/audit.jsonl`) no longer records code snippets, evidence details, or scan summaries — only skill name, risk level, and risk tag names

### Removed

- `forceAttest` calls from `auto-scan.js` and `openclaw-plugin.ts`

- `inferCapabilities`, `determineTrustLevel`, `riskToTrustLevel` helpers from OpenClaw plugin (no longer needed)