← 返回 Skills 市场
Privacy Mask
作者
fullstackcrew-alpha
· GitHub ↗
· v0.3.5
· MIT-0
449
总下载
1
收藏
0
当前安装
14
版本数
在 OpenClaw 中安装
/install privacy-mask
功能描述
Mask, redact, anonymize and censor sensitive information (PII) in screenshots and images — phone numbers, emails, IDs, API keys, crypto wallets, credit cards...
安全使用建议
This skill is plausibly what it says (local image PII masking), but there are a few red flags to check before installing/enabling it: 1) The skill's hooks reference scripts/mask-images.sh and intercepting the agent's local image cache, but no script or code files are bundled — ask the publisher where that hook implementation lives or provide the script so you can inspect it. 2) Confirm what 'in-place' interception actually does: the SKILL.md warns not to modify originals by default, yet the hook text says it applies masking in-place — ensure the hook will not silently overwrite originals unless you explicitly request that. 3) Vet the privacy-mask CLI package before pip installing (review source code, repository trust, and the PyPI package name) because pip install downloads and runs third-party code. 4) Test the tool with non-sensitive sample images and run --dry-run first to verify detections and outputs. 5) If you plan to allow automatic interception, limit its scope (only explicit user-submitted images) and ensure logs/notifications are produced when files are modified. If you cannot verify the hook implementation or the privacy-mask package source, treat enabling the automatic hook as higher risk.
功能分析
Type: OpenClaw Skill
Name: privacy-mask
Version: 0.3.5
The 'privacy-mask' skill is a privacy-focused tool designed to redact PII from images locally using OCR and regex-based detection. It utilizes the 'UserPromptSubmit' hook to intercept and sanitize images in the local cache before they are sent to an LLM API, which aligns with its stated purpose of data loss prevention (DLP). The instructions in SKILL.md explicitly guide the agent to prioritize user privacy and local processing, and there is no evidence of data exfiltration, malicious execution, or harmful prompt injection in the provided files.
能力评估
Purpose & Capability
Name/description ask for OCR-based image redaction and the declared required binaries (tesseract, python3, privacy-mask CLI) are exactly what that purpose needs. No unrelated cloud credentials or services are requested.
Instruction Scope
SKILL.md instructs reading user images, running the privacy-mask CLI, and writing masked outputs — that's appropriate. However the hooks claim to 'intercept images in Claude's local image cache' and apply masking 'in-place before they are sent to the API', which reaches into the agent's internal cache and may modify images without explicit user action. The skill also references an external command (scripts/mask-images.sh) that is not included in the package, creating an unclear execution surface.
Install Mechanism
No install spec is provided (instruction-only), so nothing is written to disk by the skill itself. The README suggests pip/brew/apt commands for installing dependencies — standard guidance but these are not executed automatically by the skill.
Credentials
No environment variables or external credentials are requested, which is proportionate. That said, the skill requests non-optional local-file-read and local-file-write permissions and claims access to the agent's local image cache; this is reasonable for a masking tool but increases blast radius because it touches internal agent data flows.
Persistence & Privilege
always is false and autonomous invocation is allowed (normal). The hook's description implies automatic interception on UserPromptSubmit — effectively enabling the skill to run whenever images are present. Combined with the unbundled scripts reference and the promise to modify cache 'in-place', this creates a risk of silent modification of agent state or user files if enabled without review.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install privacy-mask - 安装完成后,直接呼叫该 Skill 的名称或使用
/privacy-mask触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v0.3.5
Fix suspicious security flag: exclude SUBMISSIONS.md containing example API key strings
v0.3.4
Declare UserPromptSubmit hook in SKILL.md metadata, improve discoverability (A+ score), expand keywords
v0.3.3
Strip bundle to SKILL.md only, remove pip install instruction, fix version mismatch
v0.3.2
Fix OpenClaw security scan: remove install instructions from agent-facing SKILL.md, declare only local file read/write permissions
v0.3.1
Improve security scan transparency: declare pip-install permission, clarify online setup vs offline processing
v0.3.0
Add GLiNER zero-shot NER detection engine as alternative to regex, with automatic fallback. Add community infrastructure (issue/PR templates, Code of Conduct).
v0.2.4
Add semantic tags for discoverability, enrich description with search keywords, declare hook permissions in metadata
v0.2.3
Add AWS Secret Key detection, fix IBAN false positives
v0.2.2
Fix hook scripts to never show errors to users (trap ERR instead of set -e)
v0.2.1
Remove Chinese from SKILL.md, use English only
v0.1.3
Update display name to Privacy Mask
v0.1.2
Clean publish: exclude hook scripts, source code, and tests to reduce security warnings
v0.1.1
Fix display name
v0.1.0
Initial release: 47 regex rules, dual OCR engine (tesseract + rapidocr), local-only image privacy masking
元数据
常见问题
Privacy Mask 是什么?
Mask, redact, anonymize and censor sensitive information (PII) in screenshots and images — phone numbers, emails, IDs, API keys, crypto wallets, credit cards... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 449 次。
如何安装 Privacy Mask?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install privacy-mask」即可一键安装,无需额外配置。
Privacy Mask 是免费的吗?
是的,Privacy Mask 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
Privacy Mask 支持哪些平台?
Privacy Mask 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Privacy Mask?
由 fullstackcrew-alpha(@fullstackcrew-alpha)开发并维护,当前版本 v0.3.5。
推荐 Skills