← 返回 Skills 市场

AANA Guardrail Skill

Name: AANA Guardrail Skill
Author: mindbomber

作者 mindbomber · GitHub ↗ · v1.0.0 · MIT-0

cross-platform ⚠ suspicious

总下载

当前安装

版本数

在 OpenClaw 中安装

/install aana-guardrail

功能描述

Monitors agent actions for safety and compliance, preventing violations, private data leaks, or irreversible steps by enforcing predefined decision rules.

使用说明 (SKILL.md)

AANA Guardrail Skill For OpenClaw-Style Agents

Use this skill when a user asks the agent to produce or execute an action that may violate hard constraints, depend on missing evidence, expose private information, or require a safe correction path.

When To Call AANA

Call AANA before:

sending customer-support replies, emails, or messages,
using private account, billing, payment, or personal data,
making refund, eligibility, booking, purchase, or policy promises,
editing, deleting, moving, or publishing user files,
committing or publishing code,
answering from incomplete evidence, citations, or source notes,
doing anything the user cannot easily undo.

Command

Create an event JSON file and run:

python scripts/aana_cli.py agent-check --event path/to/agent_event.json

Event Shape

{
  "event_version": "0.1",
  "event_id": "unique-id",
  "agent": "openclaw",
  "adapter_id": "support_reply",
  "user_request": "The user's request",
  "candidate_action": "The answer or action the agent is about to take",
  "available_evidence": ["Only facts actually available to the agent"],
  "allowed_actions": ["accept", "revise", "ask", "defer", "refuse"]
}

Decision Rule

If gate_decision is pass and recommended_action is accept, proceed.
If recommended_action is revise, use safe_response or revise the plan before acting.
If recommended_action is ask, ask the user for the missing information.
If recommended_action is defer, route to a stronger tool, human review, or verified system.
If recommended_action is refuse, do not execute the candidate action.

Default Adapter Mapping

Customer support, refunds, private account details: support_reply
Travel or booking plans: travel_planning
Food, grocery, allergy, dietary plans: meal_planning
Research briefs, cited summaries, knowledge synthesis: research_summary

If no adapter fits, scaffold one:

python scripts/aana_cli.py scaffold "new workflow name"

安全使用建议

Treat this as a review-required install. The guardrail concept is useful, but ask the publisher to provide the referenced Python CLI, dependency/provenance details, and data-handling guidance before relying on it for safety or compliance decisions.

功能分析

Type: OpenClaw Skill Name: aana Version: 1.0.0 The skill bundle defines a safety guardrail system (AANA) designed to validate agent actions before execution, particularly for sensitive tasks like handling private data or processing refunds. It instructs the agent to use a local CLI tool (scripts/aana_cli.py) to evaluate 'agent_event' JSON objects against safety policies. The instructions are focused on risk mitigation and lack any indicators of malicious intent, data exfiltration, or unauthorized system access.

能力标签

cryptocan-make-purchases

能力评估

⚠ Purpose & Capability

The stated guardrail purpose fits the instructions, but the core checking capability depends on a referenced script that is not included in the reviewed artifact set.

ℹ Instruction Scope

The skill broadly gates many high-impact actions and tells the agent to accept, revise, ask, defer, or refuse based on the AANA result; this is purpose-aligned for a guardrail but can alter normal user-request handling.

⚠ Install Mechanism

There is no install spec and no code files, yet SKILL.md instructs the agent to run `python scripts/aana_cli.py`, creating an unverified helper/provenance gap.

ℹ Credentials

The event file may include private account, billing, payment, or personal data for guardrail review. That is expected for this purpose, but retention, deletion, redaction, and path-safety guidance are not specified.

ℹ Persistence & Privilege

No credentials, background service, or autonomous persistence are declared, but the workflow persists an event JSON file that may contain sensitive context.

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install aana-guardrail
安装完成后，直接呼叫该 Skill 的名称或使用 /aana-guardrail 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v1.0.1

**Integration boundaries clarified and safer usage instructions.** - Added comprehensive guardrail, security, and dependency boundary instructions to SKILL.md. - Emphasized that this skill provides only integration guidance and review metadata; the AANA checker is external. - File operations, checker execution, and tool use now require explicit user or administrator approval. - New review payload best practices: avoid including sensitive data, prefer summaries and redactions. - Updated decision rules: never execute or trust unreviewed local checkers; default to manual review if a trusted interface is unavailable. - Added machine-readable metadata in a new manifest.json for clear package boundaries.

v1.0.0

AANA Guardrail Skill 1.0.0 - Initial Release - Introduces a guardrail system for OpenClaw-style agents to enforce hard constraints and safe decision-making. - Details specific scenarios when to invoke AANA before agent action (e.g., handling sensitive data, customer support, code commits). - Provides command-line usage instructions and JSON event schema for agent checks. - Outlines decision rules for agent actions based on AANA recommendations. - Includes default adapter mappings for common workflows and instructions for scaffolding new adapters.

元数据

Slug aana-guardrail

版本 1.0.0

许可证 MIT-0

累计安装 0

当前安装数 0

历史版本数 2

常见问题