← Back to Skills Marketplace
Soul Petition Gate
by
waitinchen
· GitHub ↗
· v1.0.0
· MIT-0
94
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install soul-petition-gate
Description
Gives your AI agent a formal channel to propose changes to its own soul files (SOUL.md, IDENTITY.md, or any protected workspace file) — without ever letting...
Usage Guidance
This skill implements what it claims, but do not deploy it as-is on a public or untrusted server. Before installing or running: (1) Ensure the Flask blueprint is only reachable by authorized humans — bind it to localhost or an internal network interface, or put it behind an authenticated admin UI or reverse proxy (OAuth, basic auth over TLS, mTLS, or an API key). (2) Add authentication/authorization checks to the approve/reject/rollback routes (require a reviewer identity, validate tokens, log remote IPs). (3) Consider adding CSRF protections and rate-limiting. (4) Review and test backups and rollback behavior in a safe sandbox to ensure edits are atomic and recoverable. (5) Note the small metadata mismatch: HOOK.md declares node in requirements but the registry metadata lists no required binaries — confirm your environment can run the hook if you enable it. If you cannot secure the endpoints or do not trust the hosting environment, do not run the blueprint; instead run an offline/manual review process where approvals are executed locally by a human operator.
Capability Analysis
Type: OpenClaw Skill
Name: soul-petition-gate
Version: 1.0.0
The skill implements a 'Human-in-the-Loop' framework allowing AI agents to propose changes to their own identity files (e.g., SOUL.md) via a structured petition process. The Python backend (soul_petition_routes.py) includes security best practices such as file whitelisting, path traversal prevention using .name, and automatic backups before applying changes. While the Flask blueprint lacks built-in authentication for the approval routes, this is a common characteristic of local development templates and does not indicate malicious intent; the overall design is focused on safety and human oversight.
Capability Assessment
Purpose & Capability
The name/description (agent petitions to change soul files) align with the code and instructions: a bootstrap hook to advertise the channel, a petitions JSON store, and a Flask blueprint that records, approves, rejects, and rolls back petitions for protected files. No unrelated binaries or credentials are requested.
Instruction Scope
SKILL.md instructs you to mount the Flask blueprint and create the petition store, and the code will modify SOUL.md/IDENTITY.md on approval. However, the blueprint exposes POST endpoints that perform approvals/rollbacks without any authentication or authorization checks and SKILL.md does not instruct how to lock them down (bind to localhost, require auth, or place behind a protected admin interface). This is a significant scope gap: the implementation grants the ability to modify protected files but provides no built-in control to ensure only an authorized human can call those routes.
Install Mechanism
There is no install spec (instruction-only with included code files). Nothing is downloaded from untrusted URLs and no installers run automatically. The only filesystem writes occur at runtime if you run the Flask blueprint or enable the hook.
Credentials
The skill declares no required credentials (which is appropriate), and configurable env variables exist for file paths. However, no environment or credential is requested for protecting the API endpoints (no API key, admin token, or auth hints). Also HOOK.md indicates 'node' in its require list while the registry metadata reported no required binaries — a minor inconsistency in declared requirements.
Persistence & Privilege
The skill is not always-enabled and does not request elevated platform privileges; it writes backups and modifies protected files when approve is called, which is the intended behavior. The risk here arises from the unsecured endpoints rather than privileged installation flags.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install soul-petition-gate - After installation, invoke the skill by name or use
/soul-petition-gate - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release of soul-petition-gate.
Provides a secure, human-in-the-loop workflow for AI agents to propose, but not self-apply, changes to protected identity files.
- Agents submit structured petitions (what, where, why, and intended outcome) for changes to SOUL.md, IDENTITY.md, or other protected files.
- Humans review, approve, or reject petitions; approved changes are auto-applied with a complete backup and audit trail.
- Six required petition fields enforce agent reflection and maturity.
- Full API and ready-to-mount Flask blueprint included.
- Designed for safety: agents cannot self-approve or directly edit their own 'soul' files; all edits require explicit human consent.
- Complete audit history of all proposals, approvals, and rejections.
Metadata
Frequently Asked Questions
What is Soul Petition Gate?
Gives your AI agent a formal channel to propose changes to its own soul files (SOUL.md, IDENTITY.md, or any protected workspace file) — without ever letting... It is an AI Agent Skill for Claude Code / OpenClaw, with 94 downloads so far.
How do I install Soul Petition Gate?
Run "/install soul-petition-gate" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Soul Petition Gate free?
Yes, Soul Petition Gate is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Soul Petition Gate support?
Soul Petition Gate is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Soul Petition Gate?
It is built and maintained by waitinchen (@waitinchen); the current version is v1.0.0.
More Skills