← 返回 Skills 市场

AgentSentinel Safety Layer

Name: AgentSentinel Safety Layer
Author: jimmystacks

作者 jimmystacks · GitHub ↗ · v0.1.2 · MIT-0

cross-platform ✓ 安全检测通过

2817

总下载

当前安装

版本数

在 OpenClaw 中安装

/install agent-sentinel

功能描述

Local-first budget and policy guardrails for agent actions, with optional remote sync to AgentSentinel.

使用说明 (SKILL.md)

AgentSentinel Protection Layer

Use this skill when you want a local policy gate before an agent performs a costly or risky action.

This OpenClaw skill is the lightweight entry point to the broader AgentSentinel product:

this skill for local-first OpenClaw guardrails
AgentSentinel SDK for deeper Python agent instrumentation
AgentSentinel platform for centralized monitoring, dashboards, and approval workflows

AgentSentinel is local-first by default:

Policy checks run locally.
Budget tracking runs locally.
No remote sync is attempted unless the operator runs sync with an API key configured.

When To Use It

Use AgentSentinel before:

expensive model or API calls
file deletion or destructive shell commands
high-volume automation loops
actions that should be blocked by policy or capped by budget

Commands

`check`

Check whether a proposed action is allowed under the current local policy and budget.

python3 sentinel_wrapper.py check --cmd "rm -rf build" --cost 0.05

`status`

Show the current local status, including budget usage and whether optional remote sync is enabled.

python3 sentinel_wrapper.py status

`sync`

Upload locally recorded events to AgentSentinel cloud when AGENT_SENTINEL_API_KEY is set.

python3 sentinel_wrapper.py sync

`bootstrap`

Create a default callguard.yaml in the current workspace if one does not already exist.

python3 sentinel_wrapper.py --bootstrap

`reset`

Reset local tracked spend for the current run, or for the entire local session state.

python3 sentinel_wrapper.py reset --scope run
python3 sentinel_wrapper.py reset --scope all

Configuration

Policy is loaded from callguard.yaml in the current workspace when present.

Optional cloud mode is enabled by setting:

AGENT_SENTINEL_API_KEY

If the API key is not present, the skill remains local-only. Locally recorded events stay on-machine until sync is run.

AgentSentinel Product Path

Use this skill if you want fast local guardrails inside OpenClaw.

Use the AgentSentinel SDK when you want:

richer Python integrations
broader policy and telemetry coverage
framework-level instrumentation outside OpenClaw

Use the AgentSentinel platform when you want:

centralized visibility across agents
dashboards and historical analysis
human approval workflows and operational review

External Endpoints

Endpoint	When it is called	Data sent
`https://api.agentsentinel.dev`	Only when `AGENT_SENTINEL_API_KEY` is present and `python3 sentinel_wrapper.py sync` is run	locally recorded action events generated by AgentSentinel

Security And Privacy

Local mode does not send data off-machine.
The wrapper does not write API keys to .env or other files.
Remote sync is opt-in and requires both AGENT_SENTINEL_API_KEY and an explicit sync command.
If remote sync fails, policy checks still continue locally.

Model Invocation Note

OpenClaw may invoke this skill automatically when the task suggests budget enforcement, policy checks, or action gating. That behavior is expected for an installed skill.

Trust Statement

By enabling remote sync, you allow AgentSentinel telemetry to be sent to agentsentinel.dev. Only enable that mode if you trust the service and want centralized monitoring.

安全使用建议

This skill appears to do what it says: local checks and local budget tracking by default, with an explicit opt-in sync to AgentSentinel when you set AGENT_SENTINEL_API_KEY and run the sync command. Before enabling cloud sync, consider: 1) review callguard.yaml to ensure policies don't inadvertently capture sensitive commands; events include the command string and will be uploaded during sync; 2) AGENT_SENTINEL_AGENT_ID (optional) may be included in uploads — avoid setting it if you don't want an extra identifier sent; 3) the skill stores state/events under .agent-sentinel (or AGENT_SENTINEL_HOME) in the workspace — inspect those files if you keep sensitive data locally; 4) run the bundled tests (test_wrapper.py) or manually exercise bootstrap/check/status to confirm behavior in your environment. If you do not trust the remote endpoint, do not set AGENT_SENTINEL_API_KEY and the skill will remain local-only.

功能分析

Type: OpenClaw Skill Name: agent-sentinel Version: 0.1.2 The AgentSentinel skill is a safety and governance tool designed to provide local budget and policy guardrails for AI agents. Analysis of sentinel_wrapper.py shows it operates locally by default, tracking command costs and blocked actions in a local directory (.agent-sentinel). Remote synchronization to api.agentsentinel.dev is strictly opt-in, requiring both an environment variable (AGENT_SENTINEL_API_KEY) and an explicit 'sync' command. The code is transparent, uses only standard libraries, and contains no evidence of malicious intent, obfuscation, or unauthorized data exfiltration.

能力标签

crypto

能力评估

✓ Purpose & Capability

The name/description match the implementation: local policy and budget enforcement, local state and events, and an opt-in sync to https://api.agentsentinel.dev. Required runtime (python3) and primary credential (AGENT_SENTINEL_API_KEY) are appropriate for the claimed cloud-sync feature.

✓ Instruction Scope

Runtime instructions (bootstrap, check, status, reset, sync) operate only on workspace callguard.yaml and a per-user .agent-sentinel state/events files. The code does not execute the provided command string — it only checks it. Remote network activity is explicit (sync) and disclosed in SKILL.md.

✓ Install Mechanism

No install spec is provided (instruction-only skill) and the wrapper is pure Python using stdlib HTTP. No external downloads or package installs are performed by the skill bundle.

ℹ Credentials

PrimaryEnv AGENT_SENTINEL_API_KEY is declared and used only for sync. However, the code also reads AGENT_SENTINEL_HOME (to locate state/events) and AGENT_SENTINEL_AGENT_ID (included as agent_id in the uploaded payload) without those being declared in requires.env. Uploaded events include the command string and other details — enabling cloud sync will transmit that data to the platform.

✓ Persistence & Privilege

The skill writes only its own state and events under .agent-sentinel (or AGENT_SENTINEL_HOME) and may create callguard.yaml in the workspace via bootstrap. always:false and normal autonomous invocation are in effect; the skill does not modify other skills or system-wide configs.

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install agent-sentinel
安装完成后，直接呼叫该 Skill 的名称或使用 /agent-sentinel 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v0.1.2

AgentSentinel skill v0.1.2 - Added initial implementation files, including sentinel_wrapper.py and test_wrapper.py. - Introduced local-first budget and policy guardrails for agent actions. - Integrated command-line interface for policy checks, status reporting, sync, and session resets. - Provided optional remote sync to AgentSentinel cloud triggered by API key and explicit sync command. - Added documentation on usage, commands, configuration, security, and product scope.

v0.1.1

- Added cloud connectivity support with instructions to link your agent to AgentSentinel for real-time monitoring and human approval. - Install now requires agentsentinel-sdk[remote] to ensure remote syncing via httpx. - Updated tool documentation to include the new login command and clarify usage. - Improved status command output to show cloud connection status. - Enhanced documentation to mention dashboards and workflows at agentsentinel.dev.

v0.1.0

Version 0.1.0 - Initial release of agent-sentinel. - Introduces an operational circuit breaker for agents to enforce budget limits and require approval for sensitive actions. - Includes mandatory procedures and commands for budget checking, action safety, approval requests, and session status. - Provides setup instructions for auto-installation and required environment variables.

元数据

Slug agent-sentinel

版本 0.1.2

许可证 MIT-0

累计安装 6

当前安装数 6

历史版本数 3

常见问题