← 返回 Skills 市场
Agent Defender
作者
caidongyun
· GitHub ↗
· v1.0.0
· MIT-0
94
总下载
0
收藏
1
当前安装
1
版本数
在 OpenClaw 中安装
/install agent-defender
功能描述
Agent Defender - AI智能体安全防护平台。静态扫描+运行时防护+DLP脱敏。触发:(1)扫描Skill (2)启动防护 (3)DLP检测 (4)安全审计
使用说明 (SKILL.md)
Agent Defender
AI智能体安全防护平台 - 静态扫描 + 运行时防护 + DLP脱敏
功能
| 模块 | 功能 |
|---|---|
| 静态扫描 | YARA规则 + AST分析 + 权限检测 |
| 运行时防护 | 系统监控 + 行为拦截 |
| DLP | 敏感数据识别 + 脱敏 + 阻断 |
使用
# 扫描Skill
python3 ~/.openclaw/workspace/skills/agent-defender/scanner/scan.py \x3Cskill_path>
# 运行时防护
python3 ~/.openclaw/workspace/skills/agent-defender/runtime/monitor.py
# DLP检测
python3 ~/.openclaw/workspace/skills/agent-defender/dlp/check.py \x3Cdata>
# 完整扫描
python3 ~/.openclaw/workspace/skills/agent-defender/defender.py scan \x3Cpath>
配置
编辑 config.json 配置规则阈值、敏感数据类型等。
详细说明见各模块目录。
安全使用建议
What to check before installing or running this skill:
- Review network/sync code: open sync_from_lingshun.py, research_daemon.py, integrate_scanner_v4.py and defenderctl.sh and search for outbound network calls (requests, urllib, socket, subprocess calling curl/wget) and any hard-coded endpoints. Confirm whether external credentials or endpoints are required and where they would be stored.
- Inspect persistence scripts: defenderctl.sh and research_daemon.py create PID/state files and can run continuously. Decide whether you want that background behavior; run the service in a sandbox or container first.
- Audit actions with side effects: locate any code that writes, deletes, or executes system commands (os.system, subprocess, open files under /etc or home) and verify they match expected behavior (scanning, logging, backups) — e.g., backup_manager.sh and any 'run-once' scripts.
- Validate DLP/rule behavior: integrated_rules/ contains many rules. Confirm blocking actions are safe (do not auto-delete data or send secrets to remote endpoints). Test the scanner on non-production samples to evaluate false positives/negatives.
- Run in isolation first: execute the tools in an isolated environment (container, VM, or offline machine) and monitor outbound connections and file changes.
- If you plan to enable the auto-research/sync features, require explicit documentation of what remote service (’灵顺 V5’) is, what credentials it needs, and whether synced content is trusted. If undocumented, treat sync as potentially risky.
Because of the mismatch between claimed local-only usage in SKILL.md and the repository’s automatic research/sync components (plus the prompt-injection detection strings present in rules), exercise caution and prefer manual review or sandboxed testing before granting persistent or network-enabled operation.
功能分析
Type: OpenClaw Skill
Name: agent-defender
Version: 1.0.0
The 'agent-defender' skill bundle is a comprehensive security framework designed for AI agents, providing static code scanning, Data Loss Prevention (DLP), and runtime monitoring. The bundle includes a 'research_daemon.py' for automated rule iteration and several integration scripts (e.g., 'integrate_sigma_yara.py') to convert external security signatures into internal formats. While the codebase contains numerous high-risk strings and patterns (such as 'os.system', 'id_rsa', and 'curl|bash'), these are strictly utilized as detection signatures within the 'scanner_v2.py' logic or as part of the extensive test suites and benchmark reports. The execution logic is transparent, well-documented, and entirely consistent with the stated purpose of providing a defensive security layer.
能力标签
能力评估
Purpose & Capability
The name/description (static scan + runtime protection + DLP) align with the repository contents: scanner_v2.py, runtime/monitor.py, dlp/check.py and many rule files. However the project also contains sync_from_lingshun.py, research_daemon.py and orchestration/ROS scripts that claim to auto-sync rules from an external research system (“灵顺 V5”). The SKILL metadata declares no external credentials or endpoints even though the codebase appears designed to sync with/consume external intelligence — this mismatch is notable and worth review.
Instruction Scope
SKILL.md gives only local-launch instructions (run scanner, monitor, dlp scripts) and edit config.json. The repository, however, includes a continuous research daemon, sync scripts, and defenderctl.sh that start background services and automatic sync cycles. The instructions do not call out network behavior, automatic syncing or what external endpoints might be contacted — scope is broader than the SKILL.md usage examples imply.
Install Mechanism
No install spec is declared (instruction-only install). Files are packaged directly in the skill; nothing in the metadata tries to download or execute remote installers. This lowers supply-chain install-risk compared to arbitrary download/install steps. Nevertheless, the shipped scripts themselves may perform network operations at runtime.
Credentials
The skill declares no required environment variables or credentials. Yet the codebase references an external research/sync flow (sync_from_lingshun.py, research_daemon.py, integration scripts) and orchestration guides that imply network access and potential need for endpoints/credentials. Absence of declared env vars for that functionality is an inconsistency: either the sync is local-only (fine) or it will attempt remote connections without documenting required credentials (risk).
Persistence & Privilege
The skill does not set always:true and is user-invocable only. However it includes utilities to run a background daemon (research_daemon.py), defenderctl.sh to start/stop a persistent service and PID/state files. If the user starts those, the skill will persist on the host (normal for this product). Because autonomous model invocation is allowed by default, review of automatic behaviors (what the daemon does, what it syncs, network targets) is recommended before enabling persistent operation.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install agent-defender - 安装完成后,直接呼叫该 Skill 的名称或使用
/agent-defender触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release of Agent Defender – an AI security protection platform.
- Provides static scanning, runtime protection, and DLP (data loss prevention).
- Supports YARA rule scanning, AST analysis, and permission checks.
- Offers system monitoring, behavior interception, and sensitive data masking.
- Includes CLI usage for scanning, real-time protection, DLP checks, and configuration.
元数据
常见问题
Agent Defender 是什么?
Agent Defender - AI智能体安全防护平台。静态扫描+运行时防护+DLP脱敏。触发:(1)扫描Skill (2)启动防护 (3)DLP检测 (4)安全审计. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 94 次。
如何安装 Agent Defender?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install agent-defender」即可一键安装,无需额外配置。
Agent Defender 是免费的吗?
是的,Agent Defender 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
Agent Defender 支持哪些平台?
Agent Defender 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Agent Defender?
由 caidongyun(@caidongyun)开发并维护,当前版本 v1.0.0。
推荐 Skills