← Back to Skills Marketplace
84
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install action-gate-bridge-clean
Description
Route risky communications next steps through a typed action-intent bridge so external writes, bookings, settings changes, public posts, and spend decisions...
README (SKILL.md)
Action Gate Bridge
Use this skill when a communications workflow moves from analysis into a possible external action.
Core workflow
- Read
references/action-bridge.mdfirst. - Read
references/approval-matrix.mdbefore proposing any action. - Pick the narrowest typed action that fits the next step.
- Create a proposal or route the write intent through the sidecar.
- Interpret the result as
allowed,needs_approval,blocked, oraccepted. - Decide what to show the user; do not silently execute a risky action.
Helpers
Use the bundled scripts when the host environment supports them:
node scripts/propose-action.js communications send_email [email protected] "Subject" "Summary" "Program"
node scripts/route-http-write.js communications api-target "Summary" /path '{"hello":"world"}' "Program" "credentials-ref"
Safety
- Red actions require explicit user approval.
- Do not send, post, submit, confirm, or spend by default.
- If policy, scope, approval, or reversibility is unclear, escalate instead of acting.
Usage Guidance
This skill is intended to route action proposals through a sidecar; that is a legitimate design. Before installing, verify: (1) which environment variables will be used in your environment—ACTION_GATE_URL and CRABTRAP_HTTP_PROXY_URL are referenced by the scripts but not declared in the registry—ensure they are set only to trusted, internal endpoints (localhost or internal network) and not to arbitrary public URLs; (2) how the sidecar enforces authentication, authorization, and an approval workflow (who can approve actions, what 'credentialsRef' can access); (3) that the agent will not auto-execute risky actions without explicit user approval; and (4) that any credentials referenced are stored and retrieved securely by a controlled secret manager rather than passed in plain text. If you cannot confirm the sidecar's implementation and access controls, treat this skill as high-risk for accidental or intentional exfiltration or unintended external writes.
Capability Analysis
Type: OpenClaw Skill
Name: action-gate-bridge-clean
Version: 0.0.1
The skill bundle implements a safety-oriented 'Action Gate Bridge' designed to prevent the AI agent from performing risky external actions (like sending emails or spending money) without explicit approval. The scripts (propose-action.js and route-http-write.js) are simple utility wrappers that route action proposals and HTTP requests through a local or configured gateway for policy enforcement, and the documentation (SKILL.md, approval-matrix.md) explicitly instructs the agent to avoid silent execution of risky tasks.
Capability Tags
Capability Assessment
Purpose & Capability
The name, description, SKILL.md, reference docs, and scripts are coherent: the skill is explicitly a bridge that converts proposed actions into typed proposals and routes HTTP write-intents through a sidecar. That capability justifies the included scripts and their HTTP endpoints.
Instruction Scope
SKILL.md confines behavior to reading the reference docs, classifying actions, and routing proposals rather than executing risky actions directly. However, the provided helper scripts will POST arbitrary proposal and HTTP-request payloads (including user-supplied bodies) to configured endpoints; that capability goes beyond 'read/classify' and must be carefully constrained by the runtime environment and approval flow.
Install Mechanism
There is no install spec (instruction-only plus small helper scripts). No downloads or package installs are requested, so nothing arbitrary is written to disk by an installer.
Credentials
The scripts read ACTION_GATE_URL and CRABTRAP_HTTP_PROXY_URL environment variables (and allow a credentialsRef to be passed) but the registry metadata declares no required env vars or primary credential. This omission reduces transparency. If these env vars are set to remote endpoints, the skill can transmit arbitrary data and request execution credentials indirectly—so the requested/implicit environment access is under-declared and therefore disproportionate without additional safeguards.
Persistence & Privilege
always:false and default model-invocation settings are used. The skill does not request permanent presence or claim to modify other skills or system-wide settings.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install action-gate-bridge-clean - After installation, invoke the skill by name or use
/action-gate-bridge-clean - Provide required inputs per the skill's parameter spec and get structured output
Version History
v0.0.1
Initial sanitized publish
Metadata
Frequently Asked Questions
What is Action Gate Bridge?
Route risky communications next steps through a typed action-intent bridge so external writes, bookings, settings changes, public posts, and spend decisions... It is an AI Agent Skill for Claude Code / OpenClaw, with 84 downloads so far.
How do I install Action Gate Bridge?
Run "/install action-gate-bridge-clean" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Action Gate Bridge free?
Yes, Action Gate Bridge is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Action Gate Bridge support?
Action Gate Bridge is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Action Gate Bridge?
It is built and maintained by heyalerio (@heyalerio); the current version is v0.0.1.
More Skills