← Back to Skills Marketplace
97
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install rules-of-the-claw
Description
A strong, field-tested Guardian baseline for OpenClaw Guardian — 56 deterministic rules protecting against credential theft, data exfiltration, network scann...
Usage Guidance
What to check before installing:
- Verify origin: the package metadata and docs contain inconsistent GitHub URLs and placeholders (YOUR_ORG). Prefer installing only from a trusted repository (e.g., an official GitHub repo) or inspect the files first.
- Inspect rules-of-the-claw.json yourself: open the JSON and look for placeholder values (YOUR_APP, YOUR_ORG, YOUR_USER). Replace placeholders or adjust enabled/disabled flags before deploying to production to avoid accidentally blocking needed actions.
- Note the installer requires Node.js (install.sh checks for node) even though docs mention python3; ensure Node v18+ is present.
- The installer overwrites ~/.openclaw/extensions/guardian/guardian-rules.json but creates a timestamped backup. Keep the backup or merge rules if you have custom rules.
- Because the skill is a security rulepack that can block commands, test in a safe environment first to confirm it doesn't block legitimate workflows you rely on.
- The docs contain an example prompt-injection string; this is explanatory, but avoid running any untrusted automated prompt evaluation that might use those strings without sanitization.
If you are comfortable with the origin after inspection and have tested the rules, the installer flow appears safe to run.
Capability Analysis
Type: OpenClaw Skill
Name: rules-of-the-claw
Version: 1.0.0
The skill is a defensive security bundle providing 56 regex-based rules for the OpenClaw Guardian plugin to restrict dangerous agent behaviors. The rules effectively target credential theft (e.g., blocking access to .env, .ssh, and cloud keys), data exfiltration (e.g., blocking pipes to curl/wget or known webhook sites), and infrastructure destruction. The install.sh script is a standard installer that performs local backups and validation of the rules-of-the-claw.json file without any suspicious remote calls or obfuscation.
Capability Assessment
Purpose & Capability
The skill claims to provide deterministic Guardian rules and includes a rules JSON plus an installer that copies that JSON into ~/.openclaw/extensions/guardian/guardian-rules.json — this matches the stated purpose. Small inconsistencies: SKILL.md/README mention python3 for JSON validation while the installer actually requires Node.js (the script checks for node). The repository/homepage fields contain placeholders and inconsistent upstream URLs (YOUR_ORG vs bahuleyandr), so origin authenticity is unclear.
Instruction Scope
Runtime instructions are limited to installing Guardian rules, backing up any existing rules file, validating JSON/regex, and printing usage. They do not request credentials or exfiltrate data. However, SKILL.md contains a prompt-injection pattern ('ignore-previous-instructions') as part of a discussion about LLM voting bypass; this is a documented example rather than an active exploit, but it triggered the scanner and is worth reviewing.
Install Mechanism
No network downloads or remote code execution: install.sh copies the bundled JSON into the Guardian config directory, performs local validation using Node, and creates a timestamped backup of any existing rules file. There is no extract from arbitrary URLs or third-party package installation.
Credentials
The skill declares no required env vars, credentials, or config paths. The rules themselves are designed to protect credential paths rather than request secrets. Nothing in the files requests unrelated credentials or secret environment variables.
Persistence & Privilege
The skill does write to the Guardian rules file (~/.openclaw/extensions/guardian/guardian-rules.json) which is expected for a ruleset. It does not request always:true or modify other skills' configs. Note: installing will overwrite the existing rules file (the installer makes a backup), so installing replaces any custom rules unless you merge them first.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install rules-of-the-claw - After installation, invoke the skill by name or use
/rules-of-the-claw - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release: 56 deterministic, regex-based Guardian rules for OpenClaw
Covers credential theft, data exfiltration, infrastructure destruction, network scanning, and git poisoning
Zero LLM dependency — rules execute at the tool layer, microsecond latency, no prompt injection attack surface
Works out of the box; three presets (minimal / standard / strict) for different risk tolerances
Per-app and per-org exceptions supported via JSON config
Metadata
Frequently Asked Questions
What is Rules of the Claw?
A strong, field-tested Guardian baseline for OpenClaw Guardian — 56 deterministic rules protecting against credential theft, data exfiltration, network scann... It is an AI Agent Skill for Claude Code / OpenClaw, with 97 downloads so far.
How do I install Rules of the Claw?
Run "/install rules-of-the-claw" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Rules of the Claw free?
Yes, Rules of the Claw is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Rules of the Claw support?
Rules of the Claw is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Rules of the Claw?
It is built and maintained by Bahuleyan (@bahuleyandr); the current version is v1.0.0.
More Skills