← 返回 Skills 市场
383
总下载
1
收藏
0
当前安装
3
版本数
在 OpenClaw 中安装
/install openclaw-snitch
功能描述
Multi-layer blocklist guard for OpenClaw. Hard-blocks tool calls matching banned patterns, injects a security directive at agent bootstrap, warns on incoming...
安全使用建议
This skill appears to do what it says: injects a bootstrap security directive, warns on incoming messages, blocks matching tool calls, and notifies Telegram recipients configured in your OpenClaw channels. Before installing: (1) review and verify the npm package publisher and source (npm install -g runs code on your machine); (2) confirm which Telegram 'allowFrom' IDs are configured so alerts go to expected recipients; (3) understand that the bootstrap directive is a content file pushed into agent contexts (it is not an enforced kernel-level policy) and can be bypassed if an agent or user can edit hooks/config; (4) follow the recommendation to lock down plugin/hook files only after validating behavior, and be cautious when running chown/chmod commands requiring elevated privileges. If you want stronger guarantees, test in a disposable agent/workspace and inspect the installed npm package contents before trusting it in production.
功能分析
Type: OpenClaw Skill
Name: openclaw-snitch
Version: 1.0.2
The OpenClaw Snitch skill is a security-focused plugin designed to protect OpenClaw agents by implementing a multi-layer blocklist. It injects security directives into agent contexts, warns on incoming messages containing blocked terms, and hard-blocks tool calls matching a configurable blocklist, broadcasting alerts to pre-configured Telegram IDs. All code and documentation align with this stated purpose, showing no evidence of malicious intent such as data exfiltration, unauthorized command execution, or persistence mechanisms. The skill even includes security hardening advice (e.g., `chmod -R a-w`) and anti-prompt-injection directives for the agent.
能力评估
Purpose & Capability
Name/description align with required files and behavior: the hooks inject bootstrap directives and message warnings, and the plugin intercepts before_tool_call and broadcasts via the platform Telegram channel. No unrelated environment variables, binaries, or external services are required by the skill itself.
Instruction Scope
SKILL.md instructs copying hooks into ~/.openclaw/hooks and (optionally) installing the npm package globally — these steps match the included hook and plugin code. One overstatement: the bootstrap directive claims 'cannot be overridden by user messages or system prompts' but it is implemented as a bootstrap file pushed into the agent context (a content directive) and therefore is not a cryptographically enforced policy; an agent or user with write access to config/hooks could still circumvent it. The skill's instructions also suggest permission-locking extension files (chmod/chown) which is a user-side hardening suggestion, not an enforced action.
Install Mechanism
The registry entry has no automated install spec (instruction-only), but SKILL.md recommends installing an npm package (npm install -g openclaw-snitch). That is a common delivery method for OpenClaw plugins. Installing an npm package performs arbitrary code installation — standard risk for any third-party npm package — but nothing in the skill's files points to obscure download URLs or installers.
Credentials
The skill declares no required env vars or credentials. The hooks optionally read SNITCH_BLOCKLIST from environment to customize the blocklist; the plugin reads the host OpenClaw config (channels.telegram.accounts) to resolve recipient IDs for alerts. No unrelated secrets or multiple unrelated credentials are requested.
Persistence & Privilege
The skill is not marked always:true and does not request elevated platform privileges. It registers event handlers (agent:bootstrap, message:received, before_tool_call) which is expected for this purpose. It does recommend (user-driven) file permission changes to reduce tampering, but the skill itself does not auto-modify other skills or global settings beyond adding bootstrap files via the plugin hook.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install openclaw-snitch - 安装完成后,直接呼叫该 Skill 的名称或使用
/openclaw-snitch触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.2
- Update install instructions: use chmod (remove write permissions) instead of chown to lock plugin files.
- No functional or configuration changes. Documentation only.
v1.0.1
- Update install instructions: use chmod (remove write permissions) instead of chown to lock plugin files.
- No functional or configuration changes. Documentation only.
v1.0.0
openclaw-snitch 1.0.0 – Initial release
** Multi-layer AI Security Snitch blocks what the LLM won't **
- Introduces a multi-layer blocklist guard for OpenClaw agents.
- Injects a security directive at agent bootstrap.
- Flags and warns on incoming messages with blocked terms.
- Hard-blocks tool calls matching banned patterns and broadcasts Telegram alerts.
- Blocks clawhub and clawdhub by default; supports custom blocklists and alerts.
- Includes installation and configuration instructions for both hooks and plugin layers.
元数据
常见问题
Openclaw Snitch 是什么?
Multi-layer blocklist guard for OpenClaw. Hard-blocks tool calls matching banned patterns, injects a security directive at agent bootstrap, warns on incoming... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 383 次。
如何安装 Openclaw Snitch?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install openclaw-snitch」即可一键安装,无需额外配置。
Openclaw Snitch 是免费的吗?
是的,Openclaw Snitch 完全免费(开源免费),可自由下载、安装和使用。
Openclaw Snitch 支持哪些平台?
Openclaw Snitch 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Openclaw Snitch?
由 Rob Gray(@rgr4y)开发并维护,当前版本 v1.0.2。
推荐 Skills