← Back to Skills Marketplace
AOI Prompt Injection Sentinel
by
edmonddantesj
· GitHub ↗
· v0.1.2
808
Downloads
0
Stars
0
Active Installs
3
Versions
Install in OpenClaw
/install aoi-prompt-injection-sentinel
Description
Detects and scores prompt injection attempts in text, outputting severity, action, and matched rules without external calls or secret handling.
README (SKILL.md)
AOI Prompt Injection Sentinel
S-DNA: AOI-2026-0215-SDNA-PG01
What this is
A lightweight, public-safe prompt-injection detector that scores input text and outputs:
severity(0–4)action(allow/log/warn/block)reasons+ matched rule ids
What this is NOT
- No webhook, no outbound calls, no auto-posting.
- No secret handling.
Usage
Analyze text (argument)
node skill.js analyze --text="..."
Analyze stdin
echo "..." | node skill.js analyze --stdin=true
Output
JSON to stdout.
Release governance (public)
We publish AOI skills for free and keep improving them. Every release must pass our Security Gate and include an auditable changelog. We do not ship updates that weaken security or licensing clarity. Repeated violations trigger progressive restrictions (warnings → publish pause → archive).
Support
- Issues / bugs / requests: https://github.com/edmonddantesj/aoi-skills/issues
- Please include the skill slug:
aoi-prompt-injection-sentinel
Links
License
MIT (AOI original).
Usage Guidance
This skill appears internally consistent and implements a local, regex-based prompt-injection detector. Before installing or running, review the included skill.js (it's small and readable) to confirm you trust the author, because running the script executes code on your host. Note the SKILL.md references a GitHub issues URL — you can verify the upstream repo and changelog there. Expect potential false positives (e.g., matches for filenames like .env or phrases like 'curl http'); test with representative inputs. If you require stronger guarantees, run the script in a sandboxed environment or inspect the code line-by-line (there are no hidden network calls or secret exfiltration paths in the provided files).
Capability Analysis
Type: OpenClaw Skill
Name: aoi-prompt-injection-sentinel
Version: 0.1.2
The OpenClaw skill 'aoi-prompt-injection-sentinel' is a self-contained Node.js script designed to detect prompt injection patterns in input text. The `SKILL.md` explicitly states it has 'No webhook, no outbound calls, no auto-posting. No secret handling,' and its instructions are benign. The `skill.js` code uses only standard Node.js modules (like `crypto` for hashing) and contains no external dependencies, network calls, file system writes, or `eval`/`exec` of untrusted input. Its regular expressions are used solely for pattern matching within the provided text, not for executing commands. There is no evidence of malicious intent, data exfiltration, persistence, or any other harmful behavior.
Capability Assessment
Purpose & Capability
Name/description (prompt-injection sentinel) align with the included code and SKILL.md. The code implements local regex-based rules, scoring, and a local fingerprint — nothing in the bundle asks for unrelated capabilities (no cloud creds, no system-level access).
Instruction Scope
SKILL.md instructs running the included node script (analyze via CLI or stdin) and explicitly claims no webhooks/outbound calls or secret handling. The script only reads CLI args/stdin, runs regex checks, computes a local SHA-256 fingerprint, and prints JSON to stdout — scope stays within the stated purpose.
Install Mechanism
No install spec is provided (instruction-only). The package includes a small standalone skill.js with no external dependencies. No network downloads or archive extraction are performed by the skill itself.
Credentials
The skill requests no environment variables, no credentials, and references no config paths to be read at runtime. The regex rules do mention common sensitive filenames (e.g., .env, id_rsa, openclaw.json) for detection purposes — that's consistent with its detection goal and not an access request.
Persistence & Privilege
Flags show always:false and normal model invocation. The skill does not attempt to modify other skills or system configs. It runs only when invoked and has no installation hooks that grant it persistent elevated privileges.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install aoi-prompt-injection-sentinel - After installation, invoke the skill by name or use
/aoi-prompt-injection-sentinel - Provide required inputs per the skill's parameter spec and get structured output
Version History
v0.1.2
Docs: add GitHub Issues support link (aoi-skills).
v0.1.1
Docs: add release governance snippet + ClawHub link. Add MIT LICENSE file.
v0.1.0
Initial public-safe release: offline prompt-injection detection (no outbound/webhooks). MIT.
Metadata
Frequently Asked Questions
What is AOI Prompt Injection Sentinel?
Detects and scores prompt injection attempts in text, outputting severity, action, and matched rules without external calls or secret handling. It is an AI Agent Skill for Claude Code / OpenClaw, with 808 downloads so far.
How do I install AOI Prompt Injection Sentinel?
Run "/install aoi-prompt-injection-sentinel" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is AOI Prompt Injection Sentinel free?
Yes, AOI Prompt Injection Sentinel is completely free (open-source). You can download, install and use it at no cost.
Which platforms does AOI Prompt Injection Sentinel support?
AOI Prompt Injection Sentinel is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created AOI Prompt Injection Sentinel?
It is built and maintained by edmonddantesj (@edmonddantesj); the current version is v0.1.2.
More Skills