← 返回 Skills 市场
87
总下载
0
收藏
1
当前安装
1
版本数
在 OpenClaw 中安装
/install nm-leyline-content-sanitization
功能描述
Sanitization guidelines for external content
安全使用建议
This is a guidelines-only skill (no code, no credentials) that sensibly describes how to sanitize external content. Before relying on it: 1) confirm your agent runtime actually implements the referenced PostToolUse hook (sanitize_external_content.py) or otherwise enforces these rules, because the skill does not include that implementation; 2) note the file header version (1.8.2) differs from registry version (1.0.0) — confirm which version you'll follow; 3) test the sanitization rules against adversarial inputs (zero-width chars, hidden HTML/CSS, obfuscated instruction patterns) to ensure your environment's implementation is robust; and 4) remember these are guidelines — they reduce risk but do not guarantee safety on their own.
功能分析
Type: OpenClaw Skill
Name: nm-leyline-content-sanitization
Version: 1.0.0
The skill bundle consists of defensive guidelines and instructions designed to protect the OpenClaw agent from prompt injection and malicious code execution when handling external content. It outlines a comprehensive sanitization checklist in SKILL.md, including stripping XML-like system tags, instruction-override patterns, hidden CSS formatting, and zero-width characters, which are standard security best practices for LLM-based agents.
能力评估
Purpose & Capability
Name and description match the content of SKILL.md: a checklist for sanitizing external content. However, the file references an automated PostToolUse hook (sanitize_external_content.py) and lists version 1.8.2 while the registry metadata is 1.0.0; since no code is bundled, the enforcement behavior is external to this skill and should be verified in the runtime environment.
Instruction Scope
The instructions stay within scope (sanitizing external inputs): size limits, removal of tags/patterns/zero-width characters, HTML/CSS hiding detection, and explicit bans on dangerous operations (eval/exec/shell=True/pickle/yaml.load). The guidance does not ask for unrelated file reads, credentials, or system access.
Install Mechanism
No install spec or code files are present (instruction-only). This minimizes on-disk risk. The SKILL.md mentions a hook filename but provides no installation artifacts — the presence of that hook is outside the skill.
Credentials
No environment variables, credentials, or config paths are requested. That is proportionate for a sanitization guideline.
Persistence & Privilege
The skill is not always-enabled and does not request persistent system privileges. Autonomous invocation is allowed by platform default but the skill itself does not request elevated presence or modify other skills' configs.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install nm-leyline-content-sanitization - 安装完成后,直接呼叫该 Skill 的名称或使用
/nm-leyline-content-sanitization触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release of the content-sanitization skill:
- Provides comprehensive guidelines for sanitizing external content in other skills or hooks.
- Outlines trust levels and corresponding sanitization requirements for different content sources.
- Lists a step-by-step sanitization checklist to mitigate content injection and hiding risks.
- Details automated enforcement via a PostToolUse hook and manual procedures for direct content ingestion.
- Includes strict rules to prevent code execution risks and unauthorized privilege escalation.
元数据
常见问题
Nm Leyline Content Sanitization 是什么?
Sanitization guidelines for external content. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 87 次。
如何安装 Nm Leyline Content Sanitization?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install nm-leyline-content-sanitization」即可一键安装,无需额外配置。
Nm Leyline Content Sanitization 是免费的吗?
是的,Nm Leyline Content Sanitization 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
Nm Leyline Content Sanitization 支持哪些平台?
Nm Leyline Content Sanitization 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Nm Leyline Content Sanitization?
由 athola(@athola)开发并维护,当前版本 v1.0.0。
推荐 Skills