Performs security hardening and risk-tolerance configuration for claw-python deployments. Use when: running a security audit, hardening firewall or SSH settings, or checking for available updates. NOT for: application-level debugging or runtime monitoring.