← Back to Skills Marketplace
473
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install messageguard
Description
Filters outgoing text for sensitive data using regex patterns and configurable actions like masking, blocking, or warning to prevent secret leaks.
Usage Guidance
What to consider before installing/using MessageGuard:
- The skill is coherent: it implements a regex-based outgoing message filter as described. There are no network exfiltration or hidden installers in the provided files.
- Logging risk: if you enable log_detections, detection events (including snippets) are written to disk (default ~/.openclaw/outgoing-filter.jsonl). That file may contain sensitive data. If you enable logging, choose a secure path and file permissions or keep logging disabled.
- Allow-listing bypass: the allow_channels config accepts channel IDs that completely bypass filtering. Only add trusted, secure channels to that list.
- Verify integration: callers must check the script's exit code and handle blocked responses correctly; otherwise blocked content could be accidentally sent. Test the wrapper behavior in your environment before relying on it.
- Review patterns: the built-in pattern library is aggressive (blocks many key formats). Review & tune patterns to reduce false positives (or disable patterns you don't want).
- Source provenance: SKILL.md suggests cloning from an SSH GitHub repo but the bundle contains the code. Because the registry 'Source' is unknown and there is no homepage, if provenance matters for your environment, inspect the included script and configs locally or run in an isolated environment. Consider auditing the code and config files before enabling in production.
- Operational advice: keep default log_detections=false unless you need audits; if you enable logs, secure the log file. Use conservative allow_channels and test with sample messages to confirm behavior.
If you want, I can: (1) point out specific lines in the Python script that write logs or read config files, (2) produce a short checklist to harden configuration, or (3) highlight patterns you might want to disable for your use case.
Capability Analysis
Type: OpenClaw Skill
Name: messageguard
Version: 0.1.0
The OpenClaw AgentSkills 'MessageGuard' skill is designed to filter outgoing messages for sensitive information, acting as a security control. The Python script `scripts/filter_message.py` implements this by using a comprehensive set of regex patterns to detect and then mask, block, or warn about sensitive data like API keys, private keys, and PII. All dependencies are from the Python standard library, and the code is clear and well-documented. While there are theoretical configuration-based vulnerabilities (e.g., ReDoS if a malicious regex is supplied in config, or arbitrary file write if `log_path` is maliciously controlled), these are not indicative of intentional malice within the skill's design. The skill's explicit purpose and implementation are to enhance security, not to compromise it.
Capability Assessment
Purpose & Capability
The name/description (outgoing message filter) match the delivered artifacts: an instruction-only SKILL.md, configuration docs, a built-in pattern library, and a Python filter script that performs regex-based masking/blocking/warning. The patterns focus on API keys, tokens, PEMs, SSNs, credit cards, etc., which align with the stated goal.
Instruction Scope
Runtime instructions are focused on running the provided Python filter before sending messages. The script will read configuration files from the user's home (~/.openclaw/outgoing-filter-config.*) if present, and supports passing a --channel id which can cause allow-listing. This is expected, but it means the skill will read (and can be configured to log) sensitive detections to disk — review and control config & log settings. The integration guide assumes callers check exit codes and treat blocked results as authoritative; misuse (ignoring exit code) could accidentally transmit secrets.
Install Mechanism
There is no automated install spec in the registry bundle (instruction-only). SKILL.md suggests cloning an SSH GitHub repo, but the bundle already contains the Python script and docs. No external downloads or package installs are required; the script only optionally imports pyyaml if present. No high-risk install mechanism detected.
Credentials
The skill requests no environment variables, no external credentials, and no config paths beyond optional per-user config files under ~/.openclaw (documented). The built-in patterns include many third-party key formats (OpenAI, AWS, GitHub, etc.) which is appropriate for a secrets filter. No unrelated credentials or secrets are requested.
Persistence & Privilege
always:false and autonomous invocation is normal. The script can write detection logs to disk (default ~/.openclaw/outgoing-filter.jsonl) if log_detections is enabled; those logs may contain snippets of sensitive values. The skill also supports allow_channels which can bypass filtering for specific channel IDs — this is useful but can be abused to bypass protection. These behaviors are documented and configurable, so they are not inherently malicious but worth caution.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install messageguard - After installation, invoke the skill by name or use
/messageguard - Provide required inputs per the skill's parameter spec and get structured output
Version History
v0.1.0
Initial release of MessageGuard, an outgoing message filter:
- Filters outgoing text to prevent leaks of secrets and sensitive data using pattern-based detection.
- Supports configurable actions: mask sensitive data, block messages, or warn users.
- Allows custom regex patterns and overrides for precise control.
- Offers optional structured JSON logging for monitoring and compliance.
- Simple installation with no external dependencies (standard library only).
Metadata
Frequently Asked Questions
What is MessageGuard?
Filters outgoing text for sensitive data using regex patterns and configurable actions like masking, blocking, or warning to prevent secret leaks. It is an AI Agent Skill for Claude Code / OpenClaw, with 473 downloads so far.
How do I install MessageGuard?
Run "/install messageguard" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is MessageGuard free?
Yes, MessageGuard is completely free (open-source). You can download, install and use it at no cost.
Which platforms does MessageGuard support?
MessageGuard is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created MessageGuard?
It is built and maintained by Andrew (@andrewandrewsen); the current version is v0.1.0.
More Skills