← 返回 Skills 市场
Sentinel- OpenClaw Runtime Security
作者
spaceman420urdog-afk
· GitHub ↗
· v1.0.0
· MIT-0
292
总下载
1
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install runtime-sentinel
功能描述
Runtime security guardian for OpenClaw agents. Use this skill whenever the user mentions security, skill safety, prompt injection, malware, suspicious behavi...
安全使用建议
This package is coherent: it is a local runtime monitor that must read your OpenClaw skill directory, inspect files, and (if you enable premium/daemon) inspect process/network state and manage a local wallet for tiny payments. Before installing: 1) Prefer building from the included source and verify checksums if using a release binary. 2) Review and confirm the payment recipient address and set 'wallet set-limit' to 0 (or a small value) to prevent automatic auto-approvals. 3) Understand it will create ~/.sentinel (machine.key, keystore, baselines, logs) and may move quarantined skill folders — back up any important files first. 4) Note small metadata inconsistencies (registry marked instruction-only vs. included source and build steps, and mixed license text across files) — ask the author or verify the upstream repository if that matters to you. 5) If you need purely offline, free-tier behavior, run with --offline (daemon/egress/process features are premium and can be disabled).
功能分析
Type: OpenClaw Skill
Name: runtime-sentinel
Version: 1.0.0
The 'runtime-sentinel' bundle is a comprehensive security monitoring tool that implements file integrity hashing, credential auditing, and network/process monitoring. While the code appears to be a legitimate security utility, it utilizes several high-risk capabilities, including broad filesystem access to scan for secrets (audit.rs), network connection attribution via /proc/net and lsof (egress.rs), and process tree monitoring (process.rs). It also includes a built-in cryptocurrency wallet for x402 USDC micropayments (payment.rs). Although the behavior is aligned with the stated purpose and no evidence of malicious exfiltration was found, the extensive system-level monitoring and financial handling qualify it as suspicious under the provided criteria for high-risk behaviors.
能力评估
Purpose & Capability
The SKILL.md and Rust sources implement the claimed features (integrity hashing, prompt-injection scanning, credential scanning, daemon/egress/process monitoring, and optional VirusTotal lookups). However the registry metadata said 'instruction-only' / no install spec while the SKILL.md and README explicitly instruct building/installing a compiled 'sentinel' binary and reference GitHub releases — a mismatch to be aware of. Declared optional env vars (SENTINEL_WALLET, SENTINEL_RPC, SENTINEL_VT_KEY) align with the premium features and VirusTotal integration.
Instruction Scope
Runtime instructions and source show the binary will scan ~/.openclaw/skills, read SKILL.md files, inspect SOUL.md and MEMORY.md, compute hashes, write baselines and logs to ~/.sentinel, and (when daemon/egress features enabled) read process info (/proc, lsof) and network connections. Those actions are coherent with the stated purpose but are high-privilege (file system and process inspection). The SKILL.md/payment flow also describes automatically signing x402/USDC payments with the local wallet (though price is shown beforehand); this deserves explicit user attention/configuration.
Install Mechanism
No install spec is present in the registry, but the README and SKILL.md provide 'cargo build' and GitHub release download instructions. Sources are included so building locally is possible (lower risk if you build), and release URLs point to GitHub releases (reasonable). Still, building/placing a binary affects disk and executable state — verify checksums and optionally build from source rather than using a prebuilt binary.
Credentials
The skill requests only optional env vars (wallet, RPC, VirusTotal key) that are relevant. It will create and store a local machine secret, encrypted wallet files, baselines, logs, and quarantine directories under ~/.sentinel, and it reads ~/.openclaw skill files. Those accesses are proportional to its goals but are sensitive (access to skill directories, process sockets, and local wallet). No unexpected external credentials are requested.
Persistence & Privilege
always:false and user-invocable:true. The skill stores its own state under ~/.sentinel, may run a daemon if you enable premium, and can move skills to a quarantine directory — all within its described scope. It does not request force-inclusion or system-wide configuration access beyond its own files, though daemon mode implies continuous monitoring if enabled.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install runtime-sentinel - 安装完成后,直接呼叫该 Skill 的名称或使用
/runtime-sentinel触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release of runtime-sentinel, a runtime security guardian for OpenClaw agents.
- Provides on-demand skill integrity audits and prompt injection scanning (free tier)
- Adds credential exposure auditing to alert on plaintext secrets in skill directories
- Premium features (via x402 micropayments): continuous daemon monitoring, network egress monitoring, and process anomaly detection
- Easy wallet setup for non-custodial payments; no account or API key required
- All audits and monitoring run locally, preserving user privacy
元数据
常见问题
Sentinel- OpenClaw Runtime Security 是什么?
Runtime security guardian for OpenClaw agents. Use this skill whenever the user mentions security, skill safety, prompt injection, malware, suspicious behavi... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 292 次。
如何安装 Sentinel- OpenClaw Runtime Security?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install runtime-sentinel」即可一键安装,无需额外配置。
Sentinel- OpenClaw Runtime Security 是免费的吗?
是的,Sentinel- OpenClaw Runtime Security 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
Sentinel- OpenClaw Runtime Security 支持哪些平台?
Sentinel- OpenClaw Runtime Security 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Sentinel- OpenClaw Runtime Security?
由 spaceman420urdog-afk(@spaceman420urdog-afk)开发并维护,当前版本 v1.0.0。
推荐 Skills