← 返回 Skills 市场
OpenClaw Shield
作者
brunopradof
· GitHub ↗
· v1.4.2
· MIT-0
846
总下载
2
收藏
8
当前安装
38
版本数
在 OpenClaw 中安装
/install openclaw-shield-upx
功能描述
Security monitoring and threat detection for OpenClaw agents — powered by Google SecOps (Chronicle). Protect your agent with SIEM-powered real-time detection...
安全使用建议
This skill is a thin adapter telling the agent how to use the UPX/OpenClaw Shield plugin. Before installing/activating the underlying plugin, confirm you trust UPX and their telemetry practices: Shield captures agent activity locally and sends redacted telemetry to UPX's platform (per the SKILL.md). Review the plugin README and UPX privacy/security docs, verify how installation keys are stored and who can access them, and consider inspecting the plugin code or running it in an isolated/test environment if you need stronger assurances about redaction and data handling. If you want the agent to show raw logs, only allow that in-session and be aware raw logs may contain sensitive paths/commands/URLs.
功能分析
Type: OpenClaw Skill
Name: openclaw-shield-upx
Version: 1.4.2
The openclaw-shield-upx skill is a legitimate security monitoring integration for the UPX Shield platform (uss.upx.com). It provides tools for SIEM-powered threat detection, log auditing, and case management. The SKILL.md instructions include strong privacy constraints, explicitly forbidding the agent from exposing raw log data (like file paths or URLs) or taking remediation actions without user consent. While it involves telemetry exfiltration, this is the core stated purpose of the tool and is handled via a disclosed redaction process.
能力评估
Purpose & Capability
Name/description match the requested capabilities: SKILL.md instructs only to use the OpenClaw Shield plugin and the openclaw binary. Required binary (openclaw) is appropriate and expected for this skill.
Instruction Scope
Runtime instructions limit the agent to running `openclaw shield` commands, forbid reading filesystem paths or env vars for state, and prohibit sending raw logs externally; behavior stays within the stated scope. The doc does allow presenting raw log content if the user explicitly requests it in-session (a privacy-sensitive but user-driven action).
Install Mechanism
Instruction-only skill with no install spec and no code files — lowest-risk install posture. The README instructs installing the separate plugin package, which is appropriate and expected.
Credentials
The skill declares no required environment variables, no credentials, and no config paths. The SKILL.md states authentication is handled by the plugin via an installation key (outside this skill), which aligns with the purpose.
Persistence & Privilege
always:false and no special persistence. The skill is user-invocable and allows autonomous model invocation (platform default) but does not request elevated platform privileges or modify other skills.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install openclaw-shield-upx - 安装完成后,直接呼叫该 Skill 的名称或使用
/openclaw-shield-upx触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.4.2
v1.4.2: investigate command, help command, close/resolve aliases, improved case notifications, expanded test coverage
v0.9.2
v0.9.2: guided investigate command, help command, close/resolve aliases, improved case notifications, expanded test coverage
v1.4.1
Log output handling rules are now explicit — prescriptive data handling prevents accidental exfiltration of sensitive content from shield logs
v1.4.0
Status redesign, Google SecOps branding, browser event fix, batch notifications, 60-day trial, stability hardening for VPS deployments
v0.8.1
Status redesign, Google SecOps branding, browser event fix, batch notifications, 60-day trial, stability hardening for VPS deployments
v1.3.6
Remove --mine flag and ownership UX (cases now instance-scoped by default at API level)
v1.3.5
Fix: add data flow disclosure so scanner correctly attributes external telemetry to plugin, not skill
v1.3.4
Fix: remove API transport reference from sibling case description to clarify authorization scope
v1.3.3
Fix: added output handling constraint for sensitive log fields to restore clean instruction scope scan
v1.3.2
v0.7.2: meaningful event summaries, trigger attribution visibility, updater safety fixes
v1.3.1
Plugin state A/B/C/D documentation, case investigation workflow, expanded uninstall docs, openclaw plugins install/uninstall commands
v1.3.0
v1.3.0: improved discoverability, plugin health-check onboarding, tuned detection thresholds
v0.6.9
M4: Improved discoverability for SIEM/security queries, plugin health-check onboarding (States A-D), license distribution note, state field in status RPC
v1.2.5
SIEM added to description and discoverability; Shield overview leads the skill; requires.bins declared for scanner; plugin state check moved after commands; prepublish guard updated to allow industry-standard security terms
v1.2.4
Onboarding UX: first-timer links point to trial landing page; expanded discoverability for threat detection, agent protection, audit queries; removed requires gate with 4-state plugin health-check preamble; added case triage and protection posture guidance
v1.2.3
License metadata correction: proprietary UPX license
v1.2.2
License metadata correction
v1.2.1
Simplified: use display field from RPC responses
v1.2.0
Case formatting guidelines: severity emojis, visual blocks, actionable next steps
v1.1.9
Documentation improvements, exclusions feature, ClawHub confidence guards
元数据
常见问题
OpenClaw Shield 是什么?
Security monitoring and threat detection for OpenClaw agents — powered by Google SecOps (Chronicle). Protect your agent with SIEM-powered real-time detection... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 846 次。
如何安装 OpenClaw Shield?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install openclaw-shield-upx」即可一键安装,无需额外配置。
OpenClaw Shield 是免费的吗?
是的,OpenClaw Shield 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
OpenClaw Shield 支持哪些平台?
OpenClaw Shield 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 OpenClaw Shield?
由 brunopradof(@brunopradof)开发并维护,当前版本 v1.4.2。
推荐 Skills