← Back to Skills Marketplace
Meerkat Governance
by
7789996399
· GitHub ↗
· v1.0.4
535
Downloads
0
Stars
0
Active Installs
5
Versions
Install in OpenClaw
/install meerkat-governance
Description
AI governance API with two endpoints. Shield scans untrusted content for prompt injection and threats. Verify checks AI output for hallucinations, numerical...
Usage Guidance
This skill appears coherent: it calls an external governance API and needs one API key. Before installing, verify the endpoint hostname (api.meerkatplatform.com) and TLS certificate, review Meerkat's privacy and data-retention policy, restrict and rotate the API key if possible, and monitor X-Meerkat-Usage/X-Meerkat-Remaining headers for unexpected activity. Because the skill makes outbound requests, avoid sending highly sensitive raw data unless you confirm the vendor's retention and jurisdiction policies. The metadata omission of a declared 'primary credential' is minor but you may want to confirm that MEERKAT_API_KEY is the only secret required and that the key's permissions are limited.
Capability Analysis
Type: OpenClaw Skill
Name: meerkat-governance
Version: 1.0.4
The skill bundle describes an AI governance API with 'shield' and 'verify' endpoints. All API calls are directed to the legitimate domain `https://api.meerkatplatform.com` and require a `MEERKAT_API_KEY`. The `SKILL.md` provides clear instructions for using the API and explicitly states that the skill does not auto-activate or access content unless explicitly called. There is no evidence of prompt injection against the agent, unauthorized data exfiltration, malicious execution, persistence mechanisms, or obfuscation. The content is consistent with a legitimate security tool.
Capability Assessment
Purpose & Capability
Name/description (governance: shield and verify endpoints) align with what the skill asks for: a single MEERKAT_API_KEY and curl-style HTTP calls to api.meerkatplatform.com. Nothing in the metadata or SKILL.md requires unrelated cloud credentials, system binaries, or local configuration.
Instruction Scope
SKILL.md contains explicit curl examples and descriptions of the two API endpoints and does not instruct the agent to read unrelated files, search system state, or exfiltrate other credentials. It states the developer controls which content is sent and that the skill does not auto-activate, which is consistent with an instruction-only API integration.
Install Mechanism
There is no install spec and no code files — the skill is instruction-only and relies on outbound HTTPS requests. That is low-risk compared with download-and-exec install mechanisms.
Credentials
The skill requires a single API key (MEERKAT_API_KEY), which is proportionate for a hosted API service. Minor inconsistency: registry metadata shows no 'primary credential' but the SKILL.md and requirements declare MEERKAT_API_KEY; this is a small metadata omission rather than a security problem.
Persistence & Privilege
always is false and the skill is instruction-only with no install, so it does not request persistent system presence. The normal platform default allowing autonomous invocation remains, but that is expected and not combined with other red flags here.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install meerkat-governance - After installation, invoke the skill by name or use
/meerkat-governance - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.4
- Added _meta.json metadata file.
- Updated egress verify endpoint: status now limited to PASS or FLAG (BLOCK removed), with severity indicated by trust_score and remediation.severity.
- No other functionality or usage changes.
v1.0.3
Rewrite as API reference: remove imperative agent instructions, injection examples, and auto-activation language
v1.0.2
Add security section, clarify developer-controlled activation, privacy link
v1.0.1
Add privacy and data handling statement with link to meerkatplatform.com/privacy
v1.0.0
Initial release: dual-gate ingress shield + egress verify with self-correction, observation mode, usage awareness
Metadata
Frequently Asked Questions
What is Meerkat Governance?
AI governance API with two endpoints. Shield scans untrusted content for prompt injection and threats. Verify checks AI output for hallucinations, numerical... It is an AI Agent Skill for Claude Code / OpenClaw, with 535 downloads so far.
How do I install Meerkat Governance?
Run "/install meerkat-governance" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Meerkat Governance free?
Yes, Meerkat Governance is completely free (open-source). You can download, install and use it at no cost.
Which platforms does Meerkat Governance support?
Meerkat Governance is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Meerkat Governance?
It is built and maintained by 7789996399 (@7789996399); the current version is v1.0.4.
More Skills