← 返回 Skills 市场
96
总下载
0
收藏
0
当前安装
2
版本数
在 OpenClaw 中安装
/install ghostprint
功能描述
LLM fingerprint noise injector. Sends behaviorally realistic randomized queries to Anthropic, Z.ai, and any OpenAI-compatible provider on a schedule to deper...
使用说明 (SKILL.md)
Ghostprint
Depersonalize your LLM usage. Introduce noise. Prevent fingerprinting.
Install as OpenClaw Plugin
git clone https://github.com/alarawms/ghostprint ~/.openclaw/extensions/ghostprint
openclaw plugins enable ghostprint
openclaw gateway restart
Usage
Once installed, these agent tools are available in any session:
ghostprint_fire— fire a noise round immediatelyghostprint_stats— show run history and stats
The background scheduler fires automatically every ~2 hours (Poisson-distributed).
How it works
- 6 personas with stable domain preferences and multi-turn rates
- 300+ topics across 12 domains (cooking, health, science, DIY, tech, finance, language, travel, psychology, history, lifestyle)
- Contextual follow-ups — multi-turn sessions use topic-paired follow-ups
- Poisson timing — exponentially distributed inter-arrival times
- Activity weights — suppressed during sleep hours, lighter on weekends
- Metadata-only logs — never logs topic text or reply content
- No config needed — reuses your existing OpenClaw provider credentials
Standalone (no OpenClaw)
cp config.example.yaml config.yaml
# edit config.yaml with your API keys
python3 ghostprint.py --run-once
python3 ghostprint.py --install-cron
Cost
\x3C $0.35/month at 3× daily across Anthropic + Z.ai.
Source
安全使用建议
What to consider before installing:
- Understand the behavior: Ghostprint will send scheduled LLM requests using API keys available to OpenClaw or the ones you put in config.yaml. Those calls are real network requests that consume credit and are logged by the provider under whatever API key is used.
- Use separate credentials if you want to avoid account-level correlation: the README itself recommends dedicated throwaway API keys for noise; this is important because using your primary key means providers can easily link noise and real queries.
- If your goal is stronger separation, run noise through a proxy/VPN or on a separate host as recommended in ANTI-FINGERPRINT.md. The tool warns that same-IP and same-account correlation remain risks.
- Check the scheduler/cron installer: review the script path and cron entries before running --install-cron so you know what will run and as which user.
- Inspect logs and config: ghostprint writes ghostprint.log and uses config.yaml. Confirm logs contain only metadata (as claimed) and that config.yaml does not accidentally include secrets you don't want stored in plain text.
- Test safely: run python3 ghostprint.py --run-once with a throwaway key and monitor the outbound requests to confirm behavior before enabling long-term scheduling or installing into OpenClaw.
- Review code for hidden endpoints or exfil: the provided files appear to validate provider URLs and restrict non-HTTPS/private-IP targets, and I saw no other external endpoints, but given the pre-scan flag and the power this plugin has (background network requests using your keys) you should review the full code (especially the truncated parts of ghostprint.py in this package) or run it in an isolated environment.
If you are not comfortable with a plugin that will autonomously make network calls using your existing OpenClaw provider keys, treat this as risky: do not install or run it until you have created separate keys/accounts and validated the code and scheduling behavior.
功能分析
Type: OpenClaw Skill
Name: ghostprint
Version: 3.0.1
The Ghostprint bundle is a privacy-focused tool designed to inject noise into LLM usage patterns to prevent behavioral fingerprinting. The code (ghostprint.py and index.ts) is well-structured, lacks external dependencies, and includes proactive security measures such as SSRF protection (rejecting private/reserved IPs in provider URLs) and restricted file permissions (0600) for local logs. The persistence mechanisms (cron for Python and a timeout loop for the plugin) are documented and essential to the tool's stated purpose of scheduled noise injection, and the cost-control measures (low token limits and Poisson-distributed intervals) align with the benign intent of the project.
能力评估
Purpose & Capability
Name/description (LLM noise injector) match the included code and runtime instructions: both a standalone Python script and an OpenClaw plugin that schedule queries to configured providers. No unrelated services or binaries are requested.
Instruction Scope
SKILL.md instructs cloning the repo into OpenClaw extensions and enabling the plugin so it runs as a background scheduler inside the gateway. The plugin claims 'no API keys needed' because it will reuse your OpenClaw provider keys via runtime resolution; that behavior is not obviously explicit in the high-level summary and may surprise users. The plugin also exposes commands to fire rounds and view stats and provides an --install-cron helper for the standalone script (which will create scheduled background execution). All of these create persistent outbound network activity using your credentials.
Install Mechanism
There is no remote arbitrary binary download or obscure installer: the SKILL.md recommends cloning a GitHub repository and enabling the plugin. Code is included in the package (Python and TypeScript). No URL shorteners, personal IPs, or extracts from unknown archives were observed in the provided files.
Credentials
The registry metadata lists no required env vars, but both plugin and Python implementations expect API keys to exist (standalone uses config or ${ENV_VAR}, plugin reuses OpenClaw provider credentials via runtime resolution). This is proportionate to the stated purpose (the skill must call LLM providers), but it is important: reusing the same API key links noise and real traffic (the README explicitly documents this risk). Users may be surprised the plugin will access provider keys without adding separate credentials.
Persistence & Privilege
always:false (normal). However the plugin runs as a background service in the gateway and schedules recurring network requests (Poisson timing). That background capability is expected for the stated purpose but increases blast radius: the skill will autonomously make network requests on a schedule and write logs to its extension directory (ghostprint.log).
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install ghostprint - 安装完成后,直接呼叫该 Skill 的名称或使用
/ghostprint触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v3.0.1
fix: YAML parser bug — env vars now correctly expand in provider config (api_key, base_url)
v3.0.0
v3: persona system, contextual follow-ups, Poisson timing, metadata-only logs, GLM-5.1 support, OpenClaw plugin
元数据
常见问题
Ghostprint 是什么?
LLM fingerprint noise injector. Sends behaviorally realistic randomized queries to Anthropic, Z.ai, and any OpenAI-compatible provider on a schedule to deper... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 96 次。
如何安装 Ghostprint?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install ghostprint」即可一键安装,无需额外配置。
Ghostprint 是免费的吗?
是的,Ghostprint 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
Ghostprint 支持哪些平台?
Ghostprint 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Ghostprint?
由 alarawms(@alarawms)开发并维护,当前版本 v3.0.1。
推荐 Skills