← Back to Skills Marketplace

SentiClaw

Name: SentiClaw
Author: supertechgod

by SuperTechGod · GitHub ↗ · v1.0.0 · MIT-0

cross-platform ✓ Security Clean

145

Downloads

Stars

Active Installs

Versions

Install in OpenClaw

/install senticlaw

Description

Runtime AI security for OpenClaw agents. Protects against prompt injection, identity spoofing, PII leakage, and runtime abuse. Drop-in 6-layer security middl...

Usage Guidance

SentiClaw appears to do what it says, but check a few operational details before installing: 1) Ensure the host has the 'openclaw' CLI (or update AuditLogger) and that you trust the CLI's configured credentials — alerts use that CLI to send messages. 2) Choose and secure the audit_db_path (default senticlaw_audit.db) and set file permissions to limit access to the stored events. 3) Set alert_channel and alert_channel_id deliberately (avoid exposing alerts to untrusted endpoints). 4) Review the code path that calls subprocess.run (audit._alert) if you need stricter controls on outbound telemetry. 5) Run the included tests locally (tests/run_tests.py) and inspect logs before deploying in production. If you require stricter guarantees, consider running the skill in a sandboxed environment with restricted network access and review any OpenClaw credentials that the host CLI uses.

Capability Analysis

Type: OpenClaw Skill Name: senticlaw Version: 1.0.0 SentiClaw is a comprehensive security middleware for OpenClaw agents designed to mitigate prompt injection, PII leakage, and unauthorized access. The bundle implements a 6-layer defense strategy including identity verification, input sanitization, outbound content gating, PII redaction, rate limiting, and path/URL validation. It features a legitimate auditing system using SQLite and an alerting mechanism that utilizes the 'openclaw' CLI to notify users of detected threats. No evidence of malicious intent, data exfiltration, or unauthorized persistence was found; the code logic is transparent and strictly aligned with its stated purpose of enhancing agent security.

Capability Assessment

ℹ Purpose & Capability

Name/description match the included code: the six layers (identity, sanitizer, outbound gate, redactor, governance, access) are implemented and exercised by tests. Minor mismatch: SKILL.md and code assume an 'openclaw' CLI is available for sending alerts, but the skill's registry metadata/requirements do not declare that binary as required; no environment variables or external credentials are requested.

✓ Instruction Scope

SKILL.md gives concrete install and usage instructions and example code that only read/writes the audit DB and call the library API. The runtime instructions do not ask the agent to read unrelated system config or secret files. Example/test text includes malicious phrases (e.g., 'Ignore all previous instructions') but this is intentional for detection and testing.

✓ Install Mechanism

No remote download/install spec is embedded in the skill bundle (instruction-only install hints + local pip install). A pyproject and source files are included; dependencies are standard. No use of untrusted URLs or archive extraction was found.

ℹ Credentials

The skill requests no environment variables or credentials. However, AuditLogger triggers alerts by invoking the 'openclaw' CLI (subprocess.run), which will use whatever configuration/credentials the host OpenClaw installation has; that implicit dependency can result in networked alert delivery using existing agent credentials. The skill also creates and writes a local SQLite DB (audit log) by default. These behaviors are reasonable for the stated purpose but worth auditing operationally (alert target, DB path, file permissions).

ℹ Persistence & Privilege

always:false and no privileged flags are set. The skill persists an audit DB file (default senticlaw_audit.db) and will write to disk. It does not modify other skills or system-wide configurations. The only external invocation is via the OpenClaw CLI for alerts; this is limited but means alerts can be sent autonomously using the host's OpenClaw context.

How to Use

Make sure OpenClaw is installed (local or Docker)
Run the install command in chat: /install senticlaw
After installation, invoke the skill by name or use /senticlaw
Provide required inputs per the skill's parameter spec and get structured output

Version History

v1.0.0

- Initial release of SentiClaw 1.0.0 — 6-layer runtime AI security middleware for OpenClaw. - Protects agents against prompt injection, identity spoofing, PII leakage, and abuse. - Provides SQLite audit logging, outbound content gating, PII redaction, and instant threat alerts. - Includes detailed configuration options for sender controls, rate limits, spend caps, and alert integration. - Designed for drop-in use with OpenClaw agents. Not a network/firewall security solution.

Metadata

Slug senticlaw

Version 1.0.0

License MIT-0

All-time Installs 0

Active Installs 0

Total Versions 1

Frequently Asked Questions

What is SentiClaw?

Runtime AI security for OpenClaw agents. Protects against prompt injection, identity spoofing, PII leakage, and runtime abuse. Drop-in 6-layer security middl... It is an AI Agent Skill for Claude Code / OpenClaw, with 145 downloads so far.

How do I install SentiClaw?

Run "/install senticlaw" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is SentiClaw free?

Yes, SentiClaw is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does SentiClaw support?

SentiClaw is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created SentiClaw?

It is built and maintained by SuperTechGod (@supertechgod); the current version is v1.0.0.

More Skills