← Back to Skills Marketplace

Privacy Guard

Name: Privacy Guard
Author: cq2000419

by cq2000419 · GitHub ↗ · v0.3.0 · MIT-0

cross-platform ✓ Security Clean

Downloads

Stars

Active Installs

Versions

Install in OpenClaw

/install privacy-guard-dami

Description

自动检测OpenClaw日志中的API密钥、密码、身份证等敏感信息泄露，分级报警并支持交互确认和白名单管理。

Usage Guidance

This skill appears to do what it says: locally scan OpenClaw logs and keep a pending-review list and whitelist. Before installing or running it: 1) Inspect the full privacy_guard.py for any network calls (search for 'requests', 'urllib', 'socket', 'http', 'feishu', 'webhook') — the README and config mention an optional Feishu webhook; leave it blank unless you trust the endpoint. 2) Be aware that the tool stores a content_preview (up to ~100 chars) of matched lines in suspicious.json and alert_log.md — those previews can contain secrets; if you want strict non-persistence, modify the code to store only hashes or metadata. 3) Remove any embedded secrets found in the packaged files (alert_log.md contains an sk- key example) before sharing or deploying. 4) Run the script in a controlled environment first and review generated suspicious.json/alert_log.md to confirm the stored data is acceptable. If you want, share the remainder of privacy_guard.py (the truncated portions) and I can re-check specifically for outbound network calls or hidden behaviors.

Capability Analysis

Type: OpenClaw Skill Name: privacy-guard-dami Version: 0.3.0 The skill is a local privacy utility designed to scan OpenClaw log files for sensitive data such as API keys, passwords, and personal identification numbers. It uses a multi-level classification system (CRITICAL, HIGH, SUSPICIOUS) and maintains a local whitelist to reduce false positives. While the script `privacy_guard.py` contains a hardcoded fallback path for a specific user profile ('cq200'), it primarily relies on the 'LOCALAPPDATA' environment variable and lacks any network exfiltration logic or unauthorized persistence mechanisms.

Capability Tags

requires-oauth-token

Capability Assessment

✓ Purpose & Capability

Name/description (detect sensitive data in OpenClaw logs) matches the implemented behavior: the script searches OpenClaw log files for API keys, passwords, IDs, phone numbers, etc. Required resources (none) are proportional to the stated purpose.

ℹ Instruction Scope

SKILL.md only instructs running the included Python script. The script reads log files from a local OpenClaw log directory and persists detection results and user whitelist locally. Be aware the code stores a content_preview (up to ~100 chars) of matched lines in suspicious.json/whitelist files — these previews can include sensitive substrings.

✓ Install Mechanism

No install spec; this is an instruction+script package. No downloads or foreign package installation are present in the provided files.

ℹ Credentials

The skill declares no required environment variables or credentials. It does read os.environ.get('LOCALAPPDATA') to build a default log path; otherwise it doesn't request secrets. The config contains an optional feishu_webhook field and README mentions Feishu notifications if configured — enabling that would send alerts to an external endpoint, so ensure any webhook is trusted and contains only metadata you accept sending.

ℹ Persistence & Privilege

The script persists whitelist.json, suspicious.json, and report/alert files in the skill directory (normal). It is not always:true and does not modify other skills. Consider that persisted previews may include secret fragments and remain on disk until removed.

How to Use

Make sure OpenClaw is installed (local or Docker)
Run the install command in chat: /install privacy-guard-dami
After installation, invoke the skill by name or use /privacy-guard-dami
Provide required inputs per the skill's parameter spec and get structured output

Version History

v0.3.0

Privacy Guard - 敏感信息外泄检测 v0.3.0 introduces major enhancements to sensitive information risk detection: - Added a three-level risk detection system: CRITICAL, HIGH, and SUSPICIOUS. - Introduced error-tolerance: SUSPICIOUS items are not directly alerted, but added to a review list. - Added interactive learning: users can confirm items as safe or risky, manage whitelist, and review suspicious items. - Automated evolution: confirmed items and whitelist update detection rules automatically. - Improved whitelist and suspicious item handling with persistent local storage.

Metadata

Slug privacy-guard-dami

Version 0.3.0

License MIT-0

All-time Installs 0

Active Installs 0

Total Versions 1

Frequently Asked Questions

What is Privacy Guard?

自动检测OpenClaw日志中的API密钥、密码、身份证等敏感信息泄露，分级报警并支持交互确认和白名单管理。 It is an AI Agent Skill for Claude Code / OpenClaw, with 98 downloads so far.

How do I install Privacy Guard?

Run "/install privacy-guard-dami" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Privacy Guard free?

Yes, Privacy Guard is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does Privacy Guard support?

Privacy Guard is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Privacy Guard?

It is built and maintained by cq2000419 (@cq2000419); the current version is v0.3.0.

More Skills