← 返回 Skills 市场
Audit Log Firewall
作者
balkanblbn
· GitHub ↗
· v1.0.0
422
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install audit-log-firewall
功能描述
Policy-based monitoring and command-line enforcement for high-risk agent operations. Intercepts sensitive commands and logs them for human auditing.
使用说明 (SKILL.md)
Audit Log Firewall
Security is a non-negotiable protocol for autonomous agents. This skill acts as a dynamic guardrail.
Operational Modes
1. Interception Mode
Every command is checked against a local allowlist (config/allowlist.json).
- High Risk: commands like
rm -rf,sudo, or directcurlto unknown external IPs. - Protocol: If a high-risk command is detected, the agent triggers a mandatory 'Pause and Ask' state.
2. Forensic Logging
All terminal activity is hashed and stored in .logs/SECURITY.json.
- Fields: Timestamp, Command, User, Working Directory, and Hash.
- Utility: Allows humans to reconstruct the agent's actions in case of a breach or error.
Installation
clawhub install audit-log-firewall
安全使用建议
Proceed with caution. This skill's purpose (blocking and logging dangerous commands) is plausible, but the package lacks source code, a homepage, and an installable artifact despite containing an install command in SKILL.md. Before installing or enabling it: 1) ask the publisher for the implementation/source so you can audit how commands are intercepted and what is actually logged; 2) verify exactly where logs are stored, who can read them, and whether logs could contain secrets; 3) ensure the allowlist path (config/allowlist.json) and log path (.logs/SECURITY.json) are created in a controlled, write-restricted location; 4) do not grant autonomous invocation on production agents until you review the code; and 5) if you cannot obtain the implementation or provenance, run in an isolated test environment only.
功能分析
Type: OpenClaw Skill
Name: audit-log-firewall
Version: 1.0.0
The skill bundle describes a security-focused agent skill designed for policy-based monitoring, command interception, and forensic logging of agent operations. The `SKILL.md` content outlines features like checking commands against an allowlist, pausing for high-risk actions, and logging terminal activity locally to `.logs/SECURITY.json`. There is no evidence of malicious intent, data exfiltration, unauthorized execution, persistence mechanisms, or prompt injection attempts against the agent. The described functionality is aligned with enhancing agent security and auditing.
能力评估
Purpose & Capability
The SKILL.md describes a command-interception and logging guardrail which is coherent with the skill name. However, the skill metadata declares no required config paths or binaries while the instructions explicitly reference local files (config/allowlist.json and .logs/SECURITY.json) and an install command. The absence of a source/homepage and no code/install spec contrasts with the installation instruction (clawhub install ...) and creates an unresolved gap: there's no provided mechanism for how interception/enforcement would actually be implemented.
Instruction Scope
Instructions direct the agent to 'intercept every command', check a local allowlist, enforce a 'Pause and Ask' for high-risk commands, and log 'all terminal activity' including Timestamp, Command, User, Working Directory, and Hash. These steps imply reading command streams and writing forensic logs — actions that touch local filesystem state and potentially sensitive runtime context. The SKILL.md is high-level and does not specify how interception should occur or what exact commands are considered 'high risk' beyond a few examples, giving the agent broad discretion.
Install Mechanism
The skill is instruction-only with no install spec or code files in the registry, yet SKILL.md contains an install command (clawhub install audit-log-firewall). That install command suggests there should be an installable artifact, but none is provided here. Because there's no declared install or third-party download, nothing will be written to disk by the registry itself — but the mismatch is a provenance/traceability concern.
Credentials
No environment variables, credentials, or required binaries are declared, which is appropriate for a local monitoring tool. However, the instructions still require access to local files (config/allowlist.json and .logs/SECURITY.json) and to gather contextual info (User, Working Directory) that are not declared in metadata. That mismatch should be resolved before trusting the skill.
Persistence & Privilege
The skill does not request 'always: true' or other elevated platform privileges and does not declare modifications to other skills or global settings. Autonomous invocation is allowed by default (disable-model-invocation: false) — standard for skills — but because this skill is intended to intercept commands, you should be cautious about giving it autonomous invocation without reviewing its implementation and storage behavior.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install audit-log-firewall - 安装完成后,直接呼叫该 Skill 的名称或使用
/audit-log-firewall触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Command-line security enforcement
元数据
常见问题
Audit Log Firewall 是什么?
Policy-based monitoring and command-line enforcement for high-risk agent operations. Intercepts sensitive commands and logs them for human auditing. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 422 次。
如何安装 Audit Log Firewall?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install audit-log-firewall」即可一键安装,无需额外配置。
Audit Log Firewall 是免费的吗?
是的,Audit Log Firewall 完全免费(开源免费),可自由下载、安装和使用。
Audit Log Firewall 支持哪些平台?
Audit Log Firewall 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Audit Log Firewall?
由 balkanblbn(@balkanblbn)开发并维护,当前版本 v1.0.0。
推荐 Skills