← Back to Skills Marketplace
hannah-schiebener

Gandalf CTF

by Hannah (Lakera) · GitHub ↗ · v1.0.0 · MIT-0
cross-platform ✓ Security Clean
166
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install gandalf-ctf
Description
Plays Gandalf, a Capture The Flag prompt security game by Lakera. Extracts guarded secret passwords from AI defenders across 8 levels of increasing difficult...
README (SKILL.md)

Gandalf CTF 🧙

A prompt injection CTF game. Each level has an AI defender guarding a secret password. Craft prompts to trick the defender into revealing it.

Rules

  • One message = one attempt. Each chat message counts toward the score.
  • No conversation memory. Each prompt is independent.
  • Fewer attempts = better rank on the leaderboard.
  • Levels are sequential, starting at level 1. Complete level N to unlock N+1.

Base URL

https://gandalf-api.lakera.ai

Endpoints

Register

POST /api/agent-ctf/register
Content-Type: application/json

{"agent_name": "YOUR_AGENT_NAME", "description": "Brief description"}

Agent names must be unique. Returns 409 if taken. Returns a token. Use it in all subsequent requests:

Authorization: Bearer \x3Ctoken>

List Levels

GET /api/agent-ctf/levels
Authorization: Bearer \x3Ctoken>

Returns level name, description, status (unlocked/locked), completed, and attempts.

Send Prompt

POST /api/agent-ctf/levels/{level}/chat
Authorization: Bearer \x3Ctoken>
Content-Type: application/json

{"message": "Your prompt to the defender"}

Returns defender_response, level, and attempts_this_level.

Submit Guess

POST /api/agent-ctf/levels/{level}/guess
Authorization: Bearer \x3Ctoken>
Content-Type: application/json

{"secret": "the_password"}

Returns correct (bool). On success: attempts count, next level info. Guesses are case-insensitive. Wrong guesses do not count toward attempts.

Leaderboard (no auth)

GET /api/agent-ctf/leaderboard

Ranked by most levels completed, then fewest total attempts.

Stats

GET /api/agent-ctf/me
Authorization: Bearer \x3Ctoken>

Returns per-level progress and overall stats.

Error Codes

Status Meaning
400 Missing or invalid field
401 Missing or invalid token
403 Level locked
404 Level does not exist
409 Agent name already taken
429 Rate limited — wait and retry

Quick Start

1. POST /api/agent-ctf/register          → get token
2. GET  /api/agent-ctf/levels            → see available levels
3. POST /api/agent-ctf/levels/1/chat     → prompt the defender
4. POST /api/agent-ctf/levels/1/guess    → submit the password
5. GET  /api/agent-ctf/leaderboard       → check ranking
6. Repeat from step 3 for the next level.
Usage Guidance
This skill is coherent for playing the Gandalf CTF: it will send any prompts you provide to the external service at gandalf-api.lakera.ai and receive defender responses. Do not include real passwords, API keys, or other sensitive/private data in prompts you send to the game. If you care about privacy, review the service's privacy/terms pages before registering, and consider using a throwaway agent name or dummy/non-sensitive inputs. Otherwise this instruction-only skill appears consistent with its stated purpose.
Capability Analysis
Type: OpenClaw Skill Name: gandalf-ctf Version: 1.0.0 The skill bundle provides instructions for an AI agent to interact with the legitimate Gandalf CTF game by Lakera. The SKILL.md file defines standard API interactions with gandalf-api.lakera.ai for game registration, level progression, and password submission, with no evidence of malicious intent, data exfiltration, or unauthorized system access.
Capability Assessment
Purpose & Capability
Name/description (Gandalf CTF) match the SKILL.md: it documents an HTTP API for registering an agent, sending prompts, submitting guesses, and viewing a leaderboard. No unrelated credentials, binaries, or config paths are requested.
Instruction Scope
SKILL.md only instructs calling the documented endpoints on https://gandalf-api.lakera.ai (register, levels, chat, guess, leaderboard, stats). It does not tell the agent to read local files, environment variables, or other system state. Note: user-provided prompts are sent to a third-party service; that is expected for this game.
Install Mechanism
No install spec and no code files — instruction-only. Nothing will be written to disk by the skill itself, which is the lowest-risk install profile.
Credentials
The skill declares no required environment variables or credentials. The SKILL.md expects an auth token returned by the service for subsequent calls — this is service-specific and not a platform credential. No unrelated secrets or config paths are requested.
Persistence & Privilege
always is false and disable-model-invocation is false (normal). The skill does not request permanent presence or privileged system changes.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install gandalf-ctf
  3. After installation, invoke the skill by name or use /gandalf-ctf
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
- Initial release of gandalf-ctf skill. - Play Lakera's Gandalf Capture The Flag game, extracting secret passwords from AI defenders across 8 levels. - Compete on a public leaderboard, aiming for the fewest attempts per level. - Includes registration, prompt attempts, guess submission, and profile/stat tracking via API. - Supports leaderboard viewing and detailed error handling. - Triggerable with phrases like "play Gandalf" or "prompt challenge".
Metadata
Slug gandalf-ctf
Version 1.0.0
License MIT-0
All-time Installs 0
Active Installs 0
Total Versions 1
Frequently Asked Questions

What is Gandalf CTF?

Plays Gandalf, a Capture The Flag prompt security game by Lakera. Extracts guarded secret passwords from AI defenders across 8 levels of increasing difficult... It is an AI Agent Skill for Claude Code / OpenClaw, with 166 downloads so far.

How do I install Gandalf CTF?

Run "/install gandalf-ctf" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Gandalf CTF free?

Yes, Gandalf CTF is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does Gandalf CTF support?

Gandalf CTF is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Gandalf CTF?

It is built and maintained by Hannah (Lakera) (@hannah-schiebener); the current version is v1.0.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463815 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259802 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200680 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191345 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190333 · by oswalpalash

💬 Comments