← 返回 Skills 市场

A2WF — Agent-to-Web Framework

Name: A2WF — Agent-to-Web Framework
Author: wolfuser45

作者 Wolfuser45 · GitHub ↗ · v1.0.1 · MIT-0

cross-platform ⚠ suspicious

151

总下载

当前安装

版本数

在 OpenClaw 中安装

/install a2wf

功能描述

Validate, generate, and audit A2WF siteai.json files — the open standard for AI agent governance on websites. Use when working with siteai.json policies, che...

使用说明 (SKILL.md)

A2WF — Agent-to-Web Framework

A2WF is an open standard that defines what AI agents can and cannot do on a website via a machine-readable siteai.json file at the site root. Think of it as a legally actionable robots.txt for AI agents.

Spec: \x3Chttps://a2wf.org/specification/>
GitHub: \x3Chttps://github.com/a2wf/spec>
Schema: \x3Chttps://a2wf.org/schema/core-v1.0.json>

Commands

1. Validate — Check a siteai.json

Validate a siteai.json file against the A2WF v1.0 spec. The validator is local-only (no network requests).

# Validate a local file
node {baseDir}/scripts/validate.mjs /path/to/siteai.json

# Validate from stdin
echo '{"specVersion":"1.0",...}' | node {baseDir}/scripts/validate.mjs --stdin

To validate a live website: Use web_fetch to download https://example.com/siteai.json, save to a temp file, then validate it.

Output: errors (must fix), warnings (should fix), info (suggestions). Exit 0 = valid, exit 1 = invalid.

If the user pastes raw JSON instead of a file path, save it to a temp file first, then validate.

2. Generate — Create a siteai.json

Build a spec-compliant siteai.json interactively or from parameters.

node {baseDir}/scripts/generate.mjs \
  --domain "https://example.com" \
  --name "Example Store" \
  --language "en" \
  --category "e-commerce" \
  --jurisdiction "EU"

When used interactively (no flags), ask the user:

Domain and site name
Category (e-commerce, news, healthcare, banking, restaurant, saas, other)
Jurisdiction and applicable laws
For each permission group (read/action/data): which operations to allow/deny
Rate limits, agent identification requirements, scraping policy

Output is a complete, validated siteai.json ready to deploy at the site root.

3. Audit — Analyze a website's A2WF posture

node {baseDir}/scripts/validate.mjs https://example.com --audit

Performs:

Discovery check: Does /siteai.json exist? Correct content-type?
Schema validation against core v1.0
Permission completeness: Are critical permissions (scraping, account creation, data access) explicitly set?
Legal coverage: Are jurisdiction and applicable laws declared?
Extension check: Are companion extensions present and valid?

Outputs a structured report with a compliance score (0–100).

Quick Reference

siteai.json structure (v1.0)

{
  "specVersion": "1.0",
  "identity": {
    "domain": "https://example.com",
    "name": "Site Name",
    "inLanguage": "en",
    "jurisdiction": "EU",
    "applicableLaw": ["GDPR", "EU AI Act"]
  },
  "permissions": {
    "read":   { "productCatalog": {"allowed": true, "rateLimit": 60} },
    "action": { "createAccount":  {"allowed": false} },
    "data":   { "customerRecords": {"allowed": false} }
  }
}

Permission groups

Group	Controls	Key examples
`read`	What agents can read	productCatalog, pricing, reviews, faq, contactInfo
`action`	What agents can do	search, addToCart, checkout, createAccount, submitContactForm
`data`	What data agents can access	customerRecords, orderHistory, paymentInfo, employeeData

Category templates

Use --category with generate to start from a template: ecommerce, banking, healthcare, news-media, restaurant, saas.

For agent developers

When browsing a website, check for siteai.json at the domain root before taking actions. Respect the declared permissions — violations are documented and legally actionable under the declared jurisdiction.

See the full Agent Implementer Guide: {baseDir}/references/implementer-guide.md

安全使用建议

This skill appears to implement what it claims (siteai.json generation/validation/audit) and contains only small Node.js scripts that use built-in APIs. Before installing/using it: - Confirm you (or the agent) have a Node.js 20+ runtime available; the registry lists no required binaries but the scripts are node modules (shebang + use of node: builtins). - The SKILL.md expects the agent to have the exec tool (to run node) and web_fetch (to fetch live /siteai.json). Verify your agent's exec permission scope — granting exec lets the skill run arbitrary commands, so limit it if you don't trust the skill. - Review the included scripts locally (they are short and readable); they perform only JSON parsing/validation and do not phone home. Running them will read whatever file or stdin you provide and may write an output file if you pass --output. - Be cautious when validating private or sensitive site content: piping sensitive documents into the validator will expose them to whatever environment executes the script (stdout/stderr, logs). Run in a sandbox if unsure. - If you need assurance, ask the publisher to update registry metadata to declare Node as a required runtime and to include an explicit tool/permission list; that would remove the main inconsistency observed here.

功能分析

Type: OpenClaw Skill Name: a2wf Version: 1.0.1 The skill bundle provides legitimate tools for the A2WF (Agent-to-Web Framework) standard, including scripts for validating, generating, and auditing 'siteai.json' governance files. The Node.js scripts (validate.mjs and generate.mjs) use standard file I/O and logic to process JSON data according to the A2WF specification, with no evidence of malicious intent, data exfiltration, or unauthorized command execution. The documentation and SKILL.md instructions are consistent with the stated purpose and do not contain prompt-injection attacks or hidden malicious payloads.

能力评估

ℹ Purpose & Capability

The name/description match the included files: generate.mjs and validate.mjs implement generation, local validation, and an audit mode for siteai.json files. However, the registry lists no required binaries while the runtime scripts are Node.js modules (#!/usr/bin/env node) — the skill implicitly requires a Node 20+ runtime and the agent's ability to exec commands. SKILL.md metadata also declares dependence on agent tools (web_fetch, exec) while the registry's required-binaries section is empty. This is an inconsistency the user should be aware of.

✓ Instruction Scope

SKILL.md instructions and the included scripts stay on task: discovering/fetching siteai.json (via web_fetch), validating against schema, generating template documents, and producing an audit report. The validator is explicit about local-only validation and the generator writes to stdout or an output file. There are no instructions to read unrelated system files, access environment variables, or transmit collected data to hidden endpoints. The only external activity recommended is using web_fetch to download a site's /siteai.json, which is appropriate for the stated purpose.

✓ Install Mechanism

No install spec; this is instruction-only with small reference scripts included. Nothing is downloaded or written by an installer. The risk surface is limited to executing the included scripts locally (they use only Node builtins). The main operational dependency (Node runtime) is not declared in the registry metadata — not an installation risk per se, but a packaging/documentation omission.

✓ Credentials

The skill requests no environment variables, credentials, or config paths. That aligns with its purpose: validating/generating JSON policies does not require secrets. The SKILL.md does expect agent tools (web_fetch and exec) but these are agent tool permissions rather than environment credentials; they are proportional to enabling live-site validation and running the provided Node scripts.

✓ Persistence & Privilege

always:false and user-invocable:true. The skill does not request persistent system presence or modify other skills. Its actions are local (running Node scripts, optionally writing an output file) and do not alter agent configuration or persist credentials.

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install a2wf
安装完成后，直接呼叫该 Skill 的名称或使用 /a2wf 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v1.0.1

v1.0.1: Validator is now local-only (no network requests). Use web_fetch for live website checks.

v1.0.0

Initial release

元数据

Slug a2wf

版本 1.0.1

许可证 MIT-0

累计安装 0

当前安装数 0

历史版本数 2

常见问题