← Back to Skills Marketplace
seojoonkim

HiveFence

by seojoonkim · GitHub ↗ · v1.0.0
cross-platform ⚠ suspicious
1922
Downloads
0
Stars
3
Active Installs
1
Versions
Install in OpenClaw
/install hivefence
Description
Collective immunity network for AI agents. When one agent detects a prompt injection attack, all connected agents become immune. Real-time pattern detection, community voting, and distributed threat intelligence. Built on top of prompt-guard.
README (SKILL.md)

HiveFence v1.0.0

🐝 When one is attacked, all become immune.

Collective prompt injection defense network for AI agents.

What is HiveFence?

HiveFence extends prompt-guard with a distributed immunity system:

  1. Detect — Your agent scans incoming prompts against 15+ attack patterns
  2. Report — New attack patterns are hashed and submitted to the network
  3. Immunize — Community validates the pattern, then every connected agent gets the update

Features

  • 🔍 Real-time Detection — Pattern matching + semantic analysis in \x3C50ms
  • 🌍 Multi-language — EN, KO, JA, ZH attack detection
  • 🗳️ Community Governance — Democratic voting on new patterns
  • 🔐 Privacy-preserving — Only SHA-256 hashes shared, not raw content
  • 📊 Severity Scoring — Risk-based prioritization (0-100)
  • Edge-first — Cloudflare Workers at 300+ locations

Installation

# Via ClawdHub
npx clawhub install hivefence

# Or via npm
npm install hivefence

Quick Start

import { protect, reportThreat } from 'hivefence'

// Scan incoming prompt
const result = await protect(userInput)

if (result.blocked) {
  console.log(`Threat blocked: ${result.category}`)
  // Pattern automatically reported to network
}

Security Stack Recommendation

For maximum protection, use HiveFence with:

  1. ACIP — Advanced Cognitive Inoculation Prompt (behavioral boundaries)
  2. HiveFence — Pattern detection + collective immunity
  3. SkillGuard — Audit skills before installation

As recommended in @VittoStack's Security Guide (34K+ views)

API Endpoints

Method Endpoint Description
POST /api/v1/threats/report Submit new threat pattern
GET /api/v1/threats/pending Get patterns awaiting votes
POST /api/v1/threats/:id/vote Vote on a pattern
GET /api/v1/threats/latest Fetch approved patterns
GET /api/v1/stats Network statistics

Base URL: https://hivefence-api.seojoon-kim.workers.dev

Why HiveFence?

Without protection:

  • 91% injection attack success rate
  • 84% data extraction success rate
  • System prompts leaked on turn 1

(Source: ZeroLeaks Security Assessment)

With HiveFence:

  • Real-time pattern blocking
  • Collective immunity from the network
  • Community-validated patterns (zero false positives)

Links

License

MIT © 2026 Simon Kim (@seojoonkim)

Usage Guidance
Things to check before installing: 1) Verify the package source — confirm the hivefence npm package and GitHub repo match the SKILL.md and inspect the code, install scripts, and license. 2) Confirm the reporting workflow — what exactly is sent to the API, where hashing happens (locally), and whether any raw prompt content or identifiers could be transmitted. 3) Verify authentication and endpoint ownership — the base URL is a personal Cloudflare Workers domain; confirm who controls it and whether anonymous reporting is allowed. 4) Prefer an opt-in model — do not enable automatic reporting of user prompts without explicit consent and local review. 5) If you can't review the upstream package source and code, avoid installing or running the npm instructions recommended in SKILL.md. What would change this assessment: the repo and npm package are published and verifiably authored, the code shows local-only SHA-256 hashing before any network I/O, reports contain no identifiable data, and reporting requires explicit opt-in or authenticated endpoints.
Capability Analysis
Type: OpenClaw Skill Name: hivefence Version: 1.0.0 The skill is classified as suspicious due to its reliance on external network communication to a third-party API (https://hivefence-api.seojoon-kim.workers.dev) for reporting 'threat patterns', as described in SKILL.md. While the documentation claims only SHA-256 hashes are shared, the actual implementation of the `hivefence` package is not provided, preventing verification of this privacy claim. This unverified data transmission to an external endpoint, combined with the supply chain risk introduced by the `npm install hivefence` command, constitutes risky capabilities without full transparency, even if the stated purpose is benign.
Capability Assessment
Purpose & Capability
SKILL.md describes an npm package (import { protect, reportThreat } from 'hivefence') and networked behavior (reporting/voting endpoints), but the registry entry is instruction-only with no code files, no install spec, and 'source: unknown'. A networked community-reporting system would reasonably require authenticated endpoints and/or credentials — none are declared. The package claims to be available on npm/GitHub, but the registry metadata doesn't supply or verify those artifacts.
Instruction Scope
Instructions tell agents to scan incoming prompts and automatically report new patterns to the network. That implies transmitting information derived from user prompts to a remote API. The SKILL.md asserts 'privacy-preserving' (only SHA-256 hashes shared) but gives no concrete hashing workflow, no local-only verification steps, and no restriction against sending raw or partially identifiable data. Automatic reporting of prompt content (even hashed) risks exfiltration or deanonymization and is broader than what a sandboxed, instruction-only skill should assume.
Install Mechanism
There is no install spec in the registry; SKILL.md recommends using npx or npm install. That discrepancy is notable: the skill itself provides no package or code to inspect in the registry, but tells users/agents to fetch code from external registries. Instructing installation from npm when no package was bundled means the agent would download third-party code at runtime — a behavior that requires verification of the actual npm/GitHub package before trusting.
Credentials
The skill declares no required environment variables or credentials, yet its functionality (reporting, voting, fetching approved patterns) implies network interactions that typically require authentication and configuration. The absence of declared credentials is inconsistent with the described capabilities. Additionally, privacy guarantees about only sharing SHA-256 hashes are asserted but not demonstrated or enforced in instructions, leaving sensitive data exposure plausible.
Persistence & Privilege
always is false (good) and model invocation is allowed by default (expected). However, the combination of autonomous invocation and automatic network reporting is risky: an agent could autonomously send (hashed or raw) prompt-derived data to an external personal API endpoint. This is not a direct registry privilege escalation but increases the blast radius if the remote service or reporting logic is malicious.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install hivefence
  3. After installation, invoke the skill by name or use /hivefence
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
- Initial release of HiveFence v1.0.0 - Collective prompt injection defense network for AI agents; immunity spreads to all when one agent detects a threat - Real-time, multi-language attack detection (EN, KO, JA, ZH) with <50ms response - Community voting system for validating new attack patterns - Privacy-preserving threat sharing using SHA-256 hashes - Risk-based prioritization with severity scoring - Fast, edge-first deployment on Cloudflare Workers (300+ locations) - Public API endpoints for threat submission, voting, and statistics
Metadata
Slug hivefence
Version 1.0.0
License
All-time Installs 3
Active Installs 3
Total Versions 1
Frequently Asked Questions

What is HiveFence?

Collective immunity network for AI agents. When one agent detects a prompt injection attack, all connected agents become immune. Real-time pattern detection, community voting, and distributed threat intelligence. Built on top of prompt-guard. It is an AI Agent Skill for Claude Code / OpenClaw, with 1922 downloads so far.

How do I install HiveFence?

Run "/install hivefence" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is HiveFence free?

Yes, HiveFence is completely free (open-source). You can download, install and use it at no cost.

Which platforms does HiveFence support?

HiveFence is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created HiveFence?

It is built and maintained by seojoonkim (@seojoonkim); the current version is v1.0.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments