← 返回 Skills 市场
154
总下载
0
收藏
0
当前安装
4
版本数
在 OpenClaw 中安装
/install security-hardening-safey
功能描述
Agent 安全加固技能。用于:(1) 安装后经用户确认,将安全红线注入所有 Agent 的底层记忆(AGENTS.md),精简版注入~112行,不造成token膨胀;(2) 当用户问到安全规则、提示词注入防御、危险命令管控、外部代码审查、多模态注入等话题时加载此技能;(3) 进行安全审计或排查疑似注入事件时使用...
安全使用建议
This skill appears to do what it claims (inject and manage security rules across OpenClaw agents) and contains the scripts and rule documents to do so. Before installing or running init.sh: 1) Inspect references/SECURITY-RULES-CORE.md to ensure you agree with the injected text and markers; 2) Backup your ~/.openclaw/agents/*/agent/AGENTS.md and SOUL.md so you can revert if needed; 3) Run init.sh interactively (do not use --yes) the first time to review the preview and confirmations; 4) Prefer testing on a non-production agent directory first to observe behavior; 5) Note the package has no homepage and an unknown source—if you require stronger provenance, request a published source or vendor contact or only install from a vetted registry. If you need automated deployment, plan how you will authorize it securely (audit logs, CI safeguards) because the script can operate unattended with --yes.
能力标签
能力评估
Purpose & Capability
Name/description match the actual behavior: the skill contains rule files and scripts to scan, inject, update, and remove a SECURITY-RULES block in ~/.openclaw/agents/*/agent/AGENTS.md and to append a safety paragraph to SOUL.md. No unrelated credentials, binaries, or network endpoints are requested. The provided scripts and rule documents are proportional to the declared goal.
Instruction Scope
SKILL.md and scripts confine actions to the OpenClaw agent area (~/.openclaw/agents/*) and to the skill's own directory. The init script previews changes and requires interactive confirmation by default, but supports --yes to skip confirmation for automation; that allows unattended, wide-scoped modifications if used. Otherwise instructions do not ask the agent to read unrelated system files or secrets.
Install Mechanism
No install spec or external downloads; the skill is instruction-plus-local-scripts only. All code is included in the bundle and nothing is fetched from remote URLs or package registries. The scripts write to disk under the OpenClaw directory as expected for this utility.
Credentials
The skill requests no environment variables, credentials, or external config paths. Scripts operate relative to HOME/.openclaw and do not read or exfiltrate secrets. The rules explicitly forbid reading sensitive config (e.g., ~/.openclaw/openclaw.json), and that is consistent with the lack of credential requirements.
Persistence & Privilege
The skill intentionally creates persistent changes: it injects rule blocks into every AGENTS.md under ~/.openclaw/agents and appends to SOUL.md, and writes a .initialized flag in the skill directory. This persistent modification aligns with its purpose but has high blast radius (affects all agents). There is no always:true flag, but the --yes automation option and the ability to create AGENTS.md where missing mean user confirmation matters.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install security-hardening-safey - 安装完成后,直接呼叫该 Skill 的名称或使用
/security-hardening-safey触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.4.0
安装时自动运行初始化脚本和一键式卸载支持
v1.3.0
安装时自动运行初始化脚本和一键式卸载支持
v1.2.0
安装时自动运行初始化脚本和一键式卸载支持
v1.1.0
精简注入体积78%(524行→112行),新增多模态注入/路径穿越/外部代码审查等17大安全维度,整合skill-vetter红旗检测与风险四级分类
元数据
常见问题
Security Hardening Safey 是什么?
Agent 安全加固技能。用于:(1) 安装后经用户确认,将安全红线注入所有 Agent 的底层记忆(AGENTS.md),精简版注入~112行,不造成token膨胀;(2) 当用户问到安全规则、提示词注入防御、危险命令管控、外部代码审查、多模态注入等话题时加载此技能;(3) 进行安全审计或排查疑似注入事件时使用... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 154 次。
如何安装 Security Hardening Safey?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install security-hardening-safey」即可一键安装,无需额外配置。
Security Hardening Safey 是免费的吗?
是的,Security Hardening Safey 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
Security Hardening Safey 支持哪些平台?
Security Hardening Safey 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Security Hardening Safey?
由 beyound87(@beyound87)开发并维护,当前版本 v1.4.0。
推荐 Skills