← 返回 Skills 市场
905
总下载
2
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install prompt-injection-protection
功能描述
Protects against prompt injection attacks by sanitizing, validating, and securely processing untrusted external content from websites, emails, and documents.
安全使用建议
This package appears to be a coherent prompt-injection protection library. Before installing or enabling it broadly, consider: (1) it persists learned patterns to learned-threats.json in the skill directory — confirm that persistent writes are acceptable in your environment; (2) its constructor starts an auto-update interval (periodic background task) — if you want to avoid background timers, disable auto-updates or adjust the update schedule; (3) although demos reference sensitive files/commands, the code only matches patterns and does not read those files or require credentials; (4) review the source files yourself if you need stronger assurance (especially adaptive-learning.js and auto-update.js) and consider disabling learning in high-security contexts. If you plan to allow autonomous invocation, remember the skill will adapt to inputs it sees, so ensure it runs in a sandboxed agent context and that learned data is acceptable to retain.
功能分析
Type: OpenClaw Skill
Name: prompt-injection-protection
Version: 1.0.0
This OpenClaw skill is designed for prompt injection protection, featuring content sanitization, threat detection, adaptive learning, and auto-updates. All code and documentation consistently describe defensive mechanisms against various attack vectors, including command execution, system file access, and prompt manipulation. The demo files explicitly show malicious inputs being *detected and alerted upon* by the protection system, rather than being executed. There is no evidence of intentional harmful behavior, data exfiltration, unauthorized execution, or prompt injection against the agent itself; instead, the skill aims to prevent these actions.
能力评估
Purpose & Capability
The code implements the described purpose: detection, sanitization, adaptive learning, alerts, and pre-checks for commands/file access. No requested environment variables, binaries, or unrelated packages are present that would be inconsistent with a protection library.
Instruction Scope
SKILL.md and the example/demo code focus on sanitizing and detecting prompt injection. Examples intentionally contain injection phrases (expected). The runtime code does not instruct the agent to read arbitrary user files or exfiltrate secrets; it only analyzes content strings and raises alerts.
Install Mechanism
There is no install spec (instruction-only metadata), and the distributed files are plain JS source files. No network downloads or third-party install steps are specified, so installation risk is low.
Credentials
The skill requires no environment variables or credentials. It includes detection rules that mention sensitive filenames/commands (for pattern matching) but does not access external credentials or request unrelated secrets.
Persistence & Privilege
The skill persistently stores learned patterns to learned-threats.json in its directory and starts an auto-update timer (setInterval) in the constructor. This is coherent for an adaptive protection library, but it means the skill writes to disk and will run periodic tasks while instantiated — review whether you accept persistent state and background activity.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install prompt-injection-protection - 安装完成后,直接呼叫该 Skill 的名称或使用
/prompt-injection-protection触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release of the Prompt Injection Protection Skill.
- Provides comprehensive protection against prompt injection attacks from untrusted sources.
- Includes content sanitization, validation, and prompt injection detection features.
- Securely processes web content, emails, documents, and other external inputs.
- Implements robust security measures such as input sanitization, output encoding, and context isolation.
- Offers functions for safe extraction and filtering of information to prevent manipulation or unintended actions.
元数据
常见问题
PROMPT INJECTION PROTECTION 是什么?
Protects against prompt injection attacks by sanitizing, validating, and securely processing untrusted external content from websites, emails, and documents. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 905 次。
如何安装 PROMPT INJECTION PROTECTION?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install prompt-injection-protection」即可一键安装,无需额外配置。
PROMPT INJECTION PROTECTION 是免费的吗?
是的,PROMPT INJECTION PROTECTION 完全免费(开源免费),可自由下载、安装和使用。
PROMPT INJECTION PROTECTION 支持哪些平台?
PROMPT INJECTION PROTECTION 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 PROMPT INJECTION PROTECTION?
由 blackworm(@blackworm)开发并维护,当前版本 v1.0.0。
推荐 Skills