← 返回 Skills 市场

Mithilesh

Name: Mithilesh
Author: mithileshgau

作者 mithileshgau · GitHub ↗ · v1.0.0 · MIT-0

cross-platform ⚠ suspicious

100

总下载

当前安装

版本数

在 OpenClaw 中安装

/install clawguard1

功能描述

ClawGuard governance layer that must run before any SQL, file-system, or API write. Use evaluate_action(action_type, justification, risk_level) to log/author...

使用说明 (SKILL.md)

ClawGuard Governance Skill

ClawGuard enforces a universal audit and approval layer for any potentially destructive or high-impact change. It persists all intents to clawguard.db and automatically blocks actions when risk_level >= 4.

Tools

evaluate_action(action_type, justification, risk_level)
- Logs the requested action to the audit_ledger table and returns { allowed: boolean, message: string }.
- Risk levels:
  - 1 = negligible (read-only, cosmetic)
  - 2 = low (single-record updates, reversible)
  - 3 = medium (bulk updates, config tweaks)
  - 4 = high (privileged file writes, schema changes, secrets)
  - 5 = critical (system-wide deletions, irreversible ops)
- Any level >= 4 is blocked automatically—handle accordingly.
get_audit_report(limit)
- Fetches the most recent limit rows (default 5) from audit_ledger, ordered by newest first.

Workflow

Classify the action — Determine action_type, craft a concise justification, and score risk_level.
Call evaluate_action BEFORE executing any SQL statement, file mutation, or write-capable API request. (See GUIDANCE.md.)
Honor the result — If allowed is false, stop immediately and surface the block reason.
Execute the operation only after an approved response.
Audit as needed with get_audit_report(limit) when preparing reports or debugging governance outcomes.

Additional Notes

audit_ledger schema: (id INTEGER PK, action_type TEXT, justification TEXT, risk_level INTEGER, status TEXT, ts DATETIME DEFAULT CURRENT_TIMESTAMP).
The ledger is persistent; repeated approvals accumulate chronological history.
Keep justifications specific (who/what/why) to maintain a high-quality audit trail.

安全使用建议

What to consider before installing: - The skill's behavior (log to SQLite, block high-risk actions, optional Redis rate-limiting) matches its description, but the package ships TypeScript source and a package.json with runtime deps without an install spec — verify the runtime will provide node, npm-installed dependencies, or provide an install step yourself. - The code reads REDIS_URL (defaulting to redis://localhost:6373). Decide whether you want the skill to contact a Redis server; set REDIS_URL to a controlled host or leave it unset so Redis attempts fail harmlessly. Confirm your environment's network policy prevents unwanted outbound connections. - The skill writes a local database file clawguard.db in the skill directory. Audit its location/permissions and consider whether stored justifications may contain sensitive data you don't want on disk. - The skill returns needs_civic for risk_level >=5 but does not implement any external Civic flow — treat that as informative only. - Because there is no install spec, test the skill in a safe sandbox first to confirm dependencies and runtime behavior. If you need stricter guarantees, ask the author to add explicit install instructions, declare REDIS_URL in metadata, or provide a compiled artifact instead of raw TypeScript.

功能分析

Type: OpenClaw Skill Name: clawguard1 Version: 1.0.0 The ClawGuard skill implements a governance and auditing layer designed to constrain an AI agent's actions by requiring pre-authorization and logging for high-risk operations. It uses a local SQLite database (clawguard.db) for an audit ledger and Redis for rate-limiting (circuit breaking), with logic in index.ts to block actions based on user-defined risk levels. No evidence of data exfiltration, malicious execution, or harmful prompt injection was found; the instructions in SKILL.md and GUIDANCE.md are focused on safety and accountability.

能力评估

ℹ Purpose & Capability

The skill implements a governance/audit layer that logs intent to a local SQLite ledger and provides rate-limiting via Redis — this matches the described ClawGuard purpose. Use of a local DB for an audit ledger is expected. The presence of a Redis-based velocity check is plausible for a governance layer but is an additional external dependency that should be disclosed.

ℹ Instruction Scope

SKILL.md and GUIDANCE.md clearly limit the tool to pre-write evaluation and audit-report read operations; the instructions do not request unrelated files or credentials. However, the SKILL.md does not mention the optional Redis velocity check or the fact the ledger is persisted to a local file named clawguard.db, which the code implements.

⚠ Install Mechanism

This is listed as instruction-only (no install spec) but the package includes a TypeScript entry (index.ts) and package.json with runtime dependencies (redis, sqlite, sqlite3). Without an install spec, required Node packages and TypeScript handling may not be present at runtime, causing failure. There is no published, vetted download source; the package expects Node modules to be available in the environment.

⚠ Credentials

requires.env lists none, but the code reads process.env.REDIS_URL (defaulting to redis://localhost:6373). The skill may attempt network connections to a Redis host if REDIS_URL is set; that env var is not declared in metadata. No credentials are requested and no external API tokens are present, which is proportionate — but the undeclared Redis connection is an unexplained capability and should be disclosed and constrained.

✓ Persistence & Privilege

The skill persists an SQLite DB file (clawguard.db) in its own directory and does not request 'always: true' or any elevated platform privileges. It does not modify other skills' configs. Writing a local ledger is consistent with stated behavior, but users should be aware logs will accumulate locally and may contain justification text.

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install clawguard1
安装完成后，直接呼叫该 Skill 的名称或使用 /clawguard1 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v1.0.0

ClawGuard Skill v1.0.0 - Introduces a governance layer that logs and authorizes all high-impact or potentially destructive actions before execution. - Provides `evaluate_action(action_type, justification, risk_level)` to log actions and automatically block any with risk level 4 or higher. - Includes `get_audit_report(limit)` to review recent entries in the persistent SQLite-based audit ledger. - Clearly outlines risk levels and mandates justification for each action to ensure a robust audit trail. - Designed to be invoked before any SQL, file-system, or API write operation.

元数据

Slug clawguard1

版本 1.0.0

许可证 MIT-0

累计安装 0

当前安装数 0

历史版本数 1

常见问题

Mithilesh 是什么？

ClawGuard governance layer that must run before any SQL, file-system, or API write. Use evaluate_action(action_type, justification, risk_level) to log/author... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件，目前累计下载 100 次。

如何安装 Mithilesh？

在 OpenClaw 或 Claude Code 对话框中运行命令「/install clawguard1」即可一键安装，无需额外配置。

Mithilesh 是免费的吗？

是的，Mithilesh 完全免费，采用 MIT-0 许可证，可自由下载、安装和使用。

Mithilesh 支持哪些平台？

Mithilesh 跨平台运行，可在任意部署了 OpenClaw / Claude Code 的环境中使用（cross-platform）。

谁开发了 Mithilesh？

由 mithileshgau（@mithileshgau）开发并维护，当前版本 v1.0.0。