← Back to Skills Marketplace
musharsec

raigo agent firewall

by musharsec · GitHub ↗ · v1.0.3 · MIT-0
cross-platform ⚠ suspicious
144
Downloads
0
Stars
0
Active Installs
4
Versions
Install in OpenClaw
/install raigo-af
Description
RAIGO Agent Firewall — comprehensive AI security policy enforcement for OpenClaw agents. Covers all known prompt security attack vectors: prompt injection, j...
Usage Guidance
This SKILL.md appears to be a declarative ruleset for blocking prompt-injection and related attacks and is internally consistent with its description because it requires nothing and installs nothing. However, keep in mind: (1) it's only guidance — it protects you only if the agent actually follows these rules; it does not enforce platform-level or kernel-level protections. (2) The document instructs the agent to inspect and decode external content to detect obfuscation — this is necessary for detection but expands what the agent will parse; verify you are comfortable with that behavior. (3) Because the skill can be invoked autonomously by the agent (the platform default), decide whether you want automatic invocation enabled for this skill. (4) Review the full SKILL.md yourself for any steps that might send data to external endpoints or ask the agent to persist logs outside your control; although none are declared, the prose could include such instructions. If you need stronger guarantees (tamper-proof enforcement, centralized logging, or attestable execution), consider a platform-level guard or the vendor's managed/cloud offering and verify vendor provenance (raigo.ai docs link) before wide deployment.
Capability Assessment
Purpose & Capability
Name and description claim a policy/ruleset for prompt security and the skill is an instruction-only SKILL.md with no binaries, env vars, or installs — that is coherent. The 'upgrade to raigo Cloud' claim merely describes a paid feature and is not required for the local ruleset.
Instruction Scope
The SKILL.md instructs the agent to inspect external content (web pages, files, emails, code comments) and to decode/normalize obfuscated payloads (Base64, hex, Unicode smuggling, etc.) before applying rules. That behavior is consistent with a detector firewall, but it expands the agent's effective read/processing scope (it will parse/decode hidden payloads). Review the full file for any instructions that would additionally collect or transmit the decoded content.
Install Mechanism
No install spec and no code files — lowest risk for arbitrary code being written or executed on the host. The skill is purely prose-driven.
Credentials
No environment variables, credentials, or config paths are requested — proportionate for a ruleset that claims to operate locally in the agent's decision flow.
Persistence & Privilege
always is false and the skill does not request elevated or persistent system-level privileges. It does not attempt to modify other skills or platform settings in the provided content.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install raigo-af
  3. After installation, invoke the skill by name or use /raigo-af
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.3
- Expanded security coverage: now includes protections for indirect prompt injection, multi-agent attacks, supply chain threats, agent identity spoofing, memory poisoning, and more. - Refined rule tiers: DENY (hard block), WARN (require human confirmation), and AUDIT (proceed but log/flag), with clearer escalation. - Major improvements to prompt injection/jailbreak detection—including sophisticated obfuscation, encoded payloads, and persona/authority spoofing. - Policies for blocking credential leaks, system prompt extraction, and blocking destructive or dangerous command execution clarified and strengthened. - Cloud upgrade path now mentioned for custom organisation policies and audit logging. - Out-of-the-box usage remains—no additional setup steps required.
v1.0.2
**Now ships with 7 baseline OWASP LLM Top 10 security rules embedded — instant protection, no setup required.** - Immediate out-of-the-box protection: baseline rules are active on skill install, with no engine, compile step, or extra configuration needed. - Blocks prompt injection, PII leakage, destructive actions, code injection, unverified tool use, financial actions, and AI overreliance. - Full wording and enforcement responses for each rule are included directly in the skill documentation. - Advanced (custom) policy and audit trail options are still available but now clearly separated from default usage.
v1.0.1
- Clarified that all install/setup commands must be run only by the human operator, not the agent. - Updated prerequisites: now explicitly requires curl, node, and npm, and defines the default policy path in metadata. - Split setup instructions into clear options for compiled and engine modes, with explicit guidance for each. - Added a Data Handling section to explain what data is sent and where, especially for cloud mode. - Improved instructions for agent evaluation workflow, emergency fallback behaviors, and policy updates. - Tidied references and links for easier access.
v1.0.0
- Initial release of RAIGO Agent Firewall for OpenClaw agents. - Enforces organizational security policies to block prompt injection, PII leakage, destructive commands, and OWASP LLM Top 10 risks. - Supports two modes: compiled (no engine required, policy embedded in agent) and engine (real-time HTTP evaluation with audit trail). - Clearly defined evaluation triggers: agent checks actions like shell commands, file changes, API calls, and sensitive data handling. - Provides a default safe posture if no explicit policies are configured.
Metadata
Slug raigo-af
Version 1.0.3
License MIT-0
All-time Installs 0
Active Installs 0
Total Versions 4
Frequently Asked Questions

What is raigo agent firewall?

RAIGO Agent Firewall — comprehensive AI security policy enforcement for OpenClaw agents. Covers all known prompt security attack vectors: prompt injection, j... It is an AI Agent Skill for Claude Code / OpenClaw, with 144 downloads so far.

How do I install raigo agent firewall?

Run "/install raigo-af" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is raigo agent firewall free?

Yes, raigo agent firewall is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does raigo agent firewall support?

raigo agent firewall is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created raigo agent firewall?

It is built and maintained by musharsec (@musharsec); the current version is v1.0.3.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments