← 返回 Skills 市场
1494
总下载
1
收藏
2
当前安装
3
版本数
在 OpenClaw 中安装
/install openclaw-arbiter
功能描述
Audit installed skill permissions: detect network access, subprocess execution, file writes, unsafe deserialization, and environment variable usage. Permission matrix for every skill in your workspace. Free alert layer — upgrade to openclaw-arbiter-pro for revocation, quarantine, and policy enforcement.
安全使用建议
This appears to be a legitimate offline permission auditor. Before installing or running it: (1) Review the scripts/arbiter.py file yourself (or inspect it with a diff) to confirm there are no unexpected network calls or obfuscated code. (2) Run only read-only operations first (audit, report, status) to see findings without making changes. (3) Do not run quarantine/revoke/enforce unless you have a current backup of your workspace and understand the changes they perform. (4) If you plan to automate or grant agent autonomy, be cautious: although always:false, an agent could be instructed to run enforcement commands which will modify or remove other skills. (5) If you need higher assurance, run the tool in an isolated environment (container or VM) and grep for network-related modules/URLs before trusting it with enforcement operations.
功能分析
Type: OpenClaw Skill
Name: openclaw-arbiter
Version: 1.0.2
The OpenClaw Arbiter skill is a security tool designed to audit and enforce permissions for other agent skills. It transparently declares its purpose to detect risky operations (like network calls, subprocess execution, and unsafe deserialization) in other skills. The `scripts/arbiter.py` code accurately implements this functionality, performing file system operations (renaming, copying, deleting directories) only for its stated defensive features like quarantining and revoking skills, all within the designated workspace. It adheres to its claim of having no external dependencies and making no network calls. There is no evidence of data exfiltration, malicious execution, persistence mechanisms, prompt injection attempts against the agent, or obfuscation. The powerful file system operations are integral to its security function and are not used for malicious intent.
能力评估
Purpose & Capability
Name/description (permission auditor) matches what the package contains: a Python script that scans SKILL.md and code for network, subprocess, file I/O, env access, and unsafe deserialization patterns. The only required binary is python3, which is appropriate.
Instruction Scope
SKILL.md instructs running the arbiter against a workspace path; the tool legitimately needs to read skill directories and files to do its job. However the tool also exposes enforcement commands (quarantine, revoke, enforce, protect) which modify skills; SKILL.md/README mention those are 'Pro' features but the script contains them. Auditing (read-only) is expected; modifying/quarantining is a larger scope and should be used with care.
Install Mechanism
No install spec; the repo contains a single Python script and docs and claims to use only the standard library. That is low-risk compared with downloads or remote installers.
Credentials
The skill requests no environment variables or credentials, which is proportionate to an offline code-auditor. The script's detection patterns include environment access checks but it does not require any secrets.
Persistence & Privilege
always:false and agent-invocable:true (normal). But the tool implements commands that modify other skills (quarantine, revoke, enforce, protect) which grant it the ability to rename/move/delete skill directories when invoked. This is coherent for an enforcement tool but is a high-impact capability — ensure you run it intentionally and back up the workspace before using enforcement actions.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install openclaw-arbiter - 安装完成后,直接呼叫该 Skill 的名称或使用
/openclaw-arbiter触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.2
openclaw-arbiter 1.0.2
- Removed premium feature references from documentation to streamline messaging.
- Updated SKILL.md: eliminated mention of "openclaw-arbiter-pro" and enforcement capabilities.
- No functional code changes; all updates are documentation-only.
v1.0.1
openclaw-arbiter v1.0.1
- Documentation updated in README.md; no functional or code changes.
- Clarifications and improvements to instructions and usage details.
v1.0.0
- Initial release of openclaw-arbiter
- Audits all installed skills for usage of network, subprocess, file writes, unsafe deserialization, and environment variables
- Generates a permission matrix for every skill in the workspace
- Provides command-line tools for full audits, single-skill audits, permission reports, and quick status checks
- Detects and categorizes risks by severity with clear exit codes
- Runs locally with no external dependencies (Python standard library only)
- Supports darwin, linux, and win32 platforms
元数据
常见问题
Openclaw Arbiter 是什么?
Audit installed skill permissions: detect network access, subprocess execution, file writes, unsafe deserialization, and environment variable usage. Permission matrix for every skill in your workspace. Free alert layer — upgrade to openclaw-arbiter-pro for revocation, quarantine, and policy enforcement. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 1494 次。
如何安装 Openclaw Arbiter?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install openclaw-arbiter」即可一键安装,无需额外配置。
Openclaw Arbiter 是免费的吗?
是的,Openclaw Arbiter 完全免费(开源免费),可自由下载、安装和使用。
Openclaw Arbiter 支持哪些平台?
Openclaw Arbiter 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(darwin, linux, win32)。
谁开发了 Openclaw Arbiter?
由 AtlasPA(@atlaspa)开发并维护,当前版本 v1.0.2。
推荐 Skills