← Back to Skills Marketplace
ectospace

EctoClaw

by EctoSpace · GitHub ↗ · v0.1.3 · MIT-0
cross-platform ✓ Security Clean
252
Downloads
0
Stars
0
Active Installs
3
Versions
Install in OpenClaw
/install ectoclaw
Description
Cryptographic audit ledger and AI firewall for OpenClaw agents. Records every agent action (messages, skills, tools, plugins, memory, models) in an immutable...
README (SKILL.md)

EctoClaw — Cryptographic Audit Ledger & AI Firewall for OpenClaw

Configuration

  • ECTOCLAW_URL: The EctoClaw server URL (default: http://localhost:3210)

Source code and install scripts are fully open-source at https://github.com/EctoSpace/EctoClaw.

Security / authentication

  • EctoClaw is designed to run on localhost or a private network you control.
  • If you expose ECTOCLAW_URL beyond localhost, put it behind your own authentication and access controls (for example, a reverse proxy with auth).
  • Do not point ECTOCLAW_URL at an untrusted third-party host, since audit logs can contain sensitive prompts, tool outputs, and memory contents.

Commands

List Audit Sessions

When the user asks to see audit sessions, list recent sessions, or check audit history:

  • Call GET {ECTOCLAW_URL}/api/sessions?limit=10
  • Format the response as a readable list showing session ID, status, event count, and goal

Create Audit Session

When the user asks to start a new audit, create a session, or begin tracking:

  • Call POST {ECTOCLAW_URL}/api/sessions with JSON body: {"goal": "\x3Cuser's stated goal>"}
  • Optionally include "policy_name" to bind a policy: {"goal": "\x3Cgoal>", "policy_name": "\x3Cn>"}
  • Report the session ID, goal hash, and public key

Append Event

When the user wants to log an action, record an event, or track an operation:

  • Call POST {ECTOCLAW_URL}/api/sessions/{session_id}/events
  • JSON body: {"type": "\x3CEventType>", "payload": {\x3Cevent data>}}
  • Valid types: MessageReceived, MessageSent, SkillInvoked, SkillResult, ToolCall, ToolResult, PluginAction, PluginResult, ModelRequest, ModelResponse, MemoryStore, MemoryRecall, ApprovalRequired, ApprovalDecision
  • Report the content hash, sequence number, and Ed25519 signature

Verify Session Integrity

When the user asks to verify a session or check chain integrity:

  • Call GET {ECTOCLAW_URL}/api/sessions/{session_id}/verify
  • Report whether the hash chain is verified or broken and how many events were checked

Get Session Details

When the user asks about a specific session:

  • Call GET {ECTOCLAW_URL}/api/sessions/{session_id}
  • Show full session details including goal, goal hash, status, policy, timestamps, event count, and public key

Seal a Session

When the user asks to finalize, seal, or close an audit session:

  • Call POST {ECTOCLAW_URL}/api/sessions/{session_id}/seal
  • Report the sealed status and final Merkle root

Get Audit Metrics

When the user asks for metrics, statistics, or a summary:

  • Call GET {ECTOCLAW_URL}/api/metrics
  • Display total sessions, active sessions, sealed sessions, total events, and event type breakdown

Get Compliance Bundle

When the user asks for a compliance report or Merkle proof:

  • Call GET {ECTOCLAW_URL}/api/sessions/{session_id}/compliance
  • Show the Merkle root and event hashes

Get Merkle Proof for Specific Event

When the user asks to prove a specific event exists in the chain:

  • Call GET {ECTOCLAW_URL}/api/sessions/{session_id}/merkle?leaf={event_index}
  • Show the Merkle root and inclusion proof path

Verify a Merkle Proof

When the user provides a Merkle proof to verify:

  • Call POST {ECTOCLAW_URL}/api/merkle/verify with the proof data
  • Report whether the proof is valid

Generate Audit Report

When the user asks for a full audit report:

  • Call GET {ECTOCLAW_URL}/api/reports/{session_id}?format=json
  • For HTML: GET {ECTOCLAW_URL}/api/reports/{session_id}?format=html
  • Present the complete session report with events and verification status

List Policies

When the user asks about active policies or what rules are configured:

  • Call GET {ECTOCLAW_URL}/api/policies
  • Show each policy name and its configuration

Create or Update a Policy

When the user wants to set up audit rules:

  • Call PUT {ECTOCLAW_URL}/api/policies/{name} with {"content": "\x3CTOML policy>"}
  • Report the saved status

Stream Live Events

When the user wants real-time monitoring:

  • Connect to GET {ECTOCLAW_URL}/api/stream (Server-Sent Events)
  • Report events as they arrive

Check Server Health

When the user asks if EctoClaw is running:

  • Call GET {ECTOCLAW_URL}/health
  • Report status, version, and name

What EctoClaw records

Every OpenClaw lifecycle event is captured as a signed ledger entry:

Event Type What it captures
MessageReceived Inbound messages from any channel
MessageSent Outbound agent responses
SkillInvoked Skill activation with parameters
SkillResult Skill execution output
ToolCall Tool invocations (shell, file, http, browser)
ToolResult Tool execution results and observations
PluginAction Plugin lifecycle events
ModelRequest LLM API calls with prompt context
ModelResponse LLM responses
MemoryStore Memory write operations
MemoryRecall Memory read operations
PolicyViolation Blocked or flagged actions
ApprovalRequired Human-in-the-loop gate triggered
ApprovalDecision Human approval or denial recorded
SessionSeal Session finalized with Merkle root
KeyRotation Ed25519 signing key rotated

Only send data to an EctoClaw instance you operate and trust. Treat audit logs as highly sensitive and protect them accordingly.

Cryptographic integrity

Every event is:

  1. SHA-256 hash-chained — each event hash includes the previous event hash
  2. Ed25519 signed — tamper-evident digital signatures per event and per session
  3. Merkle tree provable — O(log n) inclusion proofs for any individual event

Quick start (for users installing EctoClaw)

npm install ectoclaw
npx ectoclaw serve --dev
# Dashboard: http://localhost:3210/dashboard/

Links

Usage Guidance
This skill appears to do what it says: send audit events to an EctoClaw server. Before installing or enabling it: (1) ensure ECTOCLAW_URL points to a server you control or a trusted private instance behind authentication; do not point it at third-party hosts you don't trust, because audit logs can include sensitive prompts, tool outputs, and memories; (2) review the referenced GitHub repo and the npm package contents for malicious or surprising behavior before running the installer; (3) configure retention, redaction, and policy rules to avoid storing unnecessary secrets; (4) run the EctoClaw server locally or in a tightly controlled network and require authentication (reverse proxy, mTLS, or tokens) if it must be reachable beyond localhost; and (5) consider limiting which event types are logged if you need stricter data minimization.
Capability Analysis
Type: OpenClaw Skill Name: ectoclaw Version: 0.1.3 The ectoclaw skill is a cryptographic audit ledger and security firewall designed to record and verify agent activities. It functions by sending detailed logs of agent events (including messages, tool outputs, and memory) to a user-configured endpoint (ECTOCLAW_URL), which is consistent with its stated purpose of providing an immutable audit trail. While the skill handles sensitive data, the documentation in SKILL.md includes explicit security warnings regarding the use of untrusted third-party hosts and lacks any indicators of intentional malice, obfuscation, or unauthorized data exfiltration.
Capability Assessment
Purpose & Capability
Name/description match the runtime instructions: the SKILL.md instructs the agent to call an ECTOCLAW_URL service to create sessions, append events, verify chains, stream events, and manage policies. Requiring a single primaryEnv (ECTOCLAW_URL) and an optional npm install of an 'ectoclaw' binary is coherent for an audit/firewall integration.
Instruction Scope
Instructions confine activity to HTTP(S) calls to {ECTOCLAW_URL} endpoints (sessions, events, verify, metrics, policies, stream). That is expected for an external audit service. However, the skill's purpose is to record 'every agent action' including messages, tool calls, model requests, and memory — which inherently captures sensitive prompts, tool outputs, and secrets. The SKILL.md explicitly warns not to point the URL at an untrusted host, but the agent will send potentially sensitive data to whatever ECTOCLAW_URL is configured.
Install Mechanism
Install spec is an npm package ('ectoclaw') that provides an 'ectoclaw' binary. Using an npm package is proportionate for this functionality but carries moderate supply-chain risk; you should review the package source (GitHub repo referenced in SKILL.md) before installation and prefer running a locally controlled instance.
Credentials
Only one primary environment variable (ECTOCLAW_URL) is declared, which is appropriate. Because audit logs may include secrets, the single URL gives a lot of exfiltration power if pointed at a remote/untrusted host. The SKILL.md warns about this, but users must ensure the endpoint is trusted and properly authenticated.
Persistence & Privilege
always:false and no config paths or extra privileges are requested. The skill does not request permanent agent inclusion or system-wide config changes in the provided instructions.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install ectoclaw
  3. After installation, invoke the skill by name or use /ectoclaw
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v0.1.3
Metadata synchronization and shell compatibility fix. Explicitly declared ECTOCLAW_URL as the primary environment variable.
v0.1.1
Security and metadata hardening. Resolved environment variable inconsistencies (declared ECTOCLAW_URL) and added repository provenance links for audit transparency.
v0.1.0
Cryptographic audit ledger for OpenClaw. SHA-256 hash chains, Ed25519 signatures, Merkle proofs, policy enforcement, live dashboard, REST API, SDK, CLI.
Metadata
Slug ectoclaw
Version 0.1.3
License MIT-0
All-time Installs 0
Active Installs 0
Total Versions 3
Frequently Asked Questions

What is EctoClaw?

Cryptographic audit ledger and AI firewall for OpenClaw agents. Records every agent action (messages, skills, tools, plugins, memory, models) in an immutable... It is an AI Agent Skill for Claude Code / OpenClaw, with 252 downloads so far.

How do I install EctoClaw?

Run "/install ectoclaw" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is EctoClaw free?

Yes, EctoClaw is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does EctoClaw support?

EctoClaw is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created EctoClaw?

It is built and maintained by EctoSpace (@ectospace); the current version is v0.1.3.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191113 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments