Moltbook Firewall

Security layer protecting agents from prompt injection, social engineering, and malicious content on Moltbook and similar platforms. Scan content before processing, detect threats, block attacks.

This skill appears to do what it claims (pattern-based scanning) and does not request credentials or install remote code, but inspect and take a few precautions before installing: (1) Confirm jq is available on hosts that will run the script (the script uses jq but the manifest doesn't declare it). (2) Note that scan results (a 500-character preview of content and threat metadata) are appended to $HOME/.openclaw/workspace/data/firewall-log.jsonl — if you will scan sensitive content, restrict access to that log or change the path. (3) SKILL.md mentions scripts/add-pattern.sh and patterns/trusted-sources.json which are not present; if you need pattern-update tooling, edit patterns/threats.json directly or add your own management script. (4) Review patterns/threats.json to ensure its regexes match your threat model and do not generate unacceptable false positives/negatives. If any of the above are unacceptable or you cannot control log file access, treat the skill cautiously.

Type: OpenClaw Skill Name: moltbook-firewall Version: 0.1.0 This skill bundle implements a defensive firewall for AI agents, designed to detect and mitigate prompt injection, malicious code execution, social engineering, and data exfiltration attempts. The `SKILL.md` and `README.md` clearly outline its protective purpose, while `scripts/firewall-scan.sh` uses `grep` to match threat patterns defined in `patterns/threats.json`. The script logs scan results to a standard OpenClaw workspace directory, which is appropriate for a security tool. All components align with the stated defensive purpose, and there is no evidence of intentional harmful behavior, data exfiltration by the skill itself, or malicious prompt injection against the agent.