← 返回 Skills 市场
shivaclaw

Nirvana Plugin

作者 Shiva&G · GitHub ↗ · v1.0.0 · MIT-0
cross-platform ✓ 安全检测通过
70
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install project-nirvana-plugin
功能描述
Local-first privacy-first inference. Your OpenClaw agent thinks locally and asks the cloud intelligently. Saves 85%+ tokens, protects privacy, agent learns f...
安全使用建议
What to check before installing: - Review the code that reads SOUL.md, USER.md, MEMORY.md (src/context-stripper.js and privacy-auditor) to confirm stripping logic is correct and thorough. These files are very sensitive — the plugin needs to read them to strip data, but that requires trust. - Verify Docker image and model provenance before pulling (docker run ollama/ollama will pull from Docker Hub). If you need higher assurance, pull images from a verified registry or inspect image contents first. - The plugin caches cloud responses and writes audit logs to memory/*. Confirm audit logs are stored only locally at the configured path and are rotated/protected as appropriate. - The DELIVERY checklist includes uploading an archive to Google Drive — that is a publication step, not a runtime requirement. Do not upload any private data to external drives as part of setup. - If you enable cloud fallback, only add API keys you control and check that the context-stripping configuration (contextStripDepth, identityFilesNeverExport) is enforced before any cloud calls. Test with synthetic sensitive data to validate stripping. - Because the plugin will handle system prompts and can rewrite queries, do a small controlled test session and inspect outgoing HTTP payloads (or run in an air-gapped environment) to confirm no private fields are transmitted. Overall: the package looks coherent for its stated purpose, but it operates on very sensitive data and downloads large models — perform a code review and controlled testing before trusting it with real private files.
功能分析
Type: OpenClaw Skill Name: project-nirvana-plugin Version: 1.0.0 Project Nirvana is a privacy-focused plugin designed to route AI queries to a local Ollama instance to reduce costs and protect sensitive data. The code implements a robust 'Context Stripper' (src/context-stripper.js) that redacts PII and sensitive files like SOUL.md and USER.md before any cloud fallback occurs. It includes comprehensive auditing (src/privacy-auditor.js) and metrics collection (src/metrics-collector.js) to ensure transparency. While it requests broad permissions to read sensitive agent files and execute Docker commands, these are strictly aligned with its stated purpose of local inference management and privacy enforcement. No evidence of malicious intent, data exfiltration, or unauthorized execution was found.
能力标签
cryptorequires-walletcan-make-purchasesrequires-sensitive-credentials
能力评估
Purpose & Capability
Name/description (local-first privacy-preserving inference) align with what the package implements: local Ollama integration, a router, context stripper, audit logging, and response integrator. Declared permissions to read identity files and write memory/cache are coherent with implementing context-stripping and caching. There are no unrelated environment variables or mysterious third-party credentials requested.
Instruction Scope
SKILL.md and INSTALL.md instruct the agent/operator to run Docker (ollama/ollama), install the plugin via ClawHub/OpenClaw, and to check local audit logs. These instructions reference sensitive local files (memory/nirvana-audit.log, memory/*, SOUL.md, USER.md, MEMORY.md) — which is expected for a privacy enforcer but should be reviewed. The delivery checklist also asks for uploading an archive to Google Drive (external endpoint) as part of publication; this is a publishing workflow artifact, not a runtime requirement, but it is an external upload step worth reviewing for data exposure.
Install Mechanism
There is no automated install spec embedded with the skill bundle; installation is manual via ClawHub/OpenClaw and Docker. The runtime will pull official Docker images (ollama/ollama) and auto-pull models (qwen2.5:7b) — these are standard but large downloads. No obscure or shortened URLs are used. Verify the Docker image source and model provenance before pulling (official Ollama image expected).
Credentials
The skill requests no environment variables or external API keys by default (cloud fallback is optional). The plugin manifest and code explicitly require read access to identity files (SOUL.md, USER.md, MEMORY.md) and write access to memory/* for audit/caching. That access is proportionate to implementing context stripping/auditing, but those are highly sensitive files — granting read access to them is a significant privilege and should only be given to trusted code after code review.
Persistence & Privilege
The skill does not set always:true and uses normal plugin hooks (on-query, on-response). It writes to its own memory/cache paths and audit log. There is no evidence it attempts to persistently modify unrelated plugin configs or request platform-wide always-on privileges. Autonomous invocation is allowed (platform default) but not combined with an unusual persistent privilege.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install project-nirvana-plugin
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /project-nirvana-plugin 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release: Local-first, privacy-first LLM inference plugin for OpenClaw. - Performs most queries locally via Ollama and Qwen2.5 7B; only complex questions are sent to the cloud. - Strips personal and contextual data before sending anything to cloud APIs, ensuring privacy. - Drastically reduces token usage and API cost (85%+ savings). - Cloud responses are cached locally; your agent learns from the cloud, the cloud does not learn from you. - Fully auditable with a privacy audit trail and transparent routing decisions.
元数据
Slug project-nirvana-plugin
版本 1.0.0
许可证 MIT-0
累计安装 0
当前安装数 0
历史版本数 1
常见问题

Nirvana Plugin 是什么?

Local-first privacy-first inference. Your OpenClaw agent thinks locally and asks the cloud intelligently. Saves 85%+ tokens, protects privacy, agent learns f... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 70 次。

如何安装 Nirvana Plugin?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install project-nirvana-plugin」即可一键安装,无需额外配置。

Nirvana Plugin 是免费的吗?

是的,Nirvana Plugin 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。

Nirvana Plugin 支持哪些平台?

Nirvana Plugin 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 Nirvana Plugin?

由 Shiva&G(@shivaclaw)开发并维护,当前版本 v1.0.0。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论