← 返回 Skills 市场
294
总下载
0
收藏
1
当前安装
5
版本数
在 OpenClaw 中安装
/install sentinel-oleg
功能描述
Runtime security layer for OpenClaw agents. Intercepts and scans all external input (emails, API responses, web content, chat messages, calendar events) for...
安全使用建议
This skill is a set of local bash filters that scan stdin and stdout for injections and secrets and stores logs under ~/.sentinel. Before installing/using: (1) review and test the scripts on non-sensitive sample data; (2) be aware the canary tool can modify files you point it at (e.g., SOUL.md or other prompts) — back up those files first; (3) the premium rules require jq and an optional premium_patterns.json file (if absent the premium check is a no-op); (4) expect false positives (hex strings or common words may trigger crypto/secret heuristics) — tune thresholds/patterns in ~/.sentinel/config.sh or by editing the patterns; (5) there are no hidden network calls in the provided scripts, but always inspect any third-party premium patterns before placing them in ~/.sentinel. If you need the sentinel to be enforced platform-wide, note that this package does not automatically force inclusion — you must integrate the scripts into your agent pipeline yourself.
功能分析
Type: OpenClaw Skill
Name: sentinel-oleg
Version: 1.0.5
Claw Sentinel is a comprehensive runtime security suite designed to protect OpenClaw agents from prompt injection, data exfiltration, and secret leakage. The bundle consists of Bash scripts (sentinel-input.sh, sentinel-output.sh) and a large library of regex patterns (patterns.json) that scan data in real-time across multiple languages (EN, RU, ZH, etc.). It includes sophisticated normalization techniques to counter obfuscation (e.g., stripping zero-width characters, de-leeting, and base64 decoding) and implements a canary token system (sentinel-canary.sh) to detect system prompt extraction. All logic is transparent, operates locally, and aligns strictly with its stated defensive purpose.
能力评估
Purpose & Capability
The name/description (runtime input/output sentinel) matches the provided artifacts: multiple bash scripts that scan stdin, log threats to ~/.sentinel/threats.jsonl, generate/check canaries, and optionally use a premium patterns file. No unexplained environment variables, binaries, or cloud credentials are required.
Instruction Scope
SKILL.md and scripts stay within the stated purpose (intercept/scan inputs and monitor outputs). Noteworthy: the guide explicitly instructs adding invisible canary markers into SOUL.md or system prompts and recommends piping all external content through the filters — these are expected for a runtime sentinel but do instruct modifying local agent files (SOUL.md/system prompt), so users should review and back up any files before injecting markers.
Install Mechanism
No install spec; this is instruction-plus-scripts (pure bash). No downloads or remote installers are invoked by the package. The scripts rely on common utilities (grep, sed, base64, optionally jq).
Credentials
The skill asks for no credentials or env vars. The scripts scan for many secret/token formats (OpenAI, AWS, GitHub, crypto keys, etc.), which is coherent with its stated goal. The premium pack path (~/.sentinel/premium_patterns.json) and optional use of jq are documented and proportional.
Persistence & Privilege
The scripts create and write logs under ~/.sentinel and can inject canary markers into user-specified files. always:false and autonomous invocation defaults are unchanged. Writing to user files and creating ~/.sentinel is expected for the tool's purpose but is a permanent local change the user should consent to.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install sentinel-oleg - 安装完成后,直接呼叫该 Skill 的名称或使用
/sentinel-oleg触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.5
No changes detected in this version.
- No file or documentation changes were introduced in version 1.0.5.
v1.0.4
changed the skill's name
v1.0.2
- Skill name updated from "claw-sentinel" to "claw-sentinel" (no effective change).
- No code or documentation changes detected in this version.
- Version number updated to 1.0.2 for tracking, but content remains the same as 1.0.0.
v1.0.1
- Removed test scripts: tests/red-team-tests.sh and tests/test-sentinel.sh.
- Updated all documentation and usage examples to reflect the package name as "claw-sentinel" instead of "sentinel-oleg".
- Minor adjustments to Quick Start instructions for clarity; no functional or runtime changes.
v1.0.0
Major update: Sentinel is now Claw Sentinel, focusing on real-time runtime security for OpenClaw agents.
- Replaces AI state monitoring/backup with runtime scanning of all input/output for prompt injection, data exfiltration, credential leaks, and social engineering attacks.
- Added Bash scripts for seamless interception and scanning of agent inputs and outputs.
- Supports multi-language injection detection (EN/RU/ZH/ES/AR/KO/JA) and encoding normalization.
- Implements canary token system to detect prompt extraction.
- New audit logging and configuration via shell scripts.
- Previous Python codebase and documentation replaced by lightweight Bash-based pipeline and updated docs.
元数据
常见问题
Sentinel — Agent Security Layer 是什么?
Runtime security layer for OpenClaw agents. Intercepts and scans all external input (emails, API responses, web content, chat messages, calendar events) for... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 294 次。
如何安装 Sentinel — Agent Security Layer?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install sentinel-oleg」即可一键安装,无需额外配置。
Sentinel — Agent Security Layer 是免费的吗?
是的,Sentinel — Agent Security Layer 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
Sentinel — Agent Security Layer 支持哪些平台?
Sentinel — Agent Security Layer 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Sentinel — Agent Security Layer?
由 Oleg(@oleglegegg)开发并维护,当前版本 v1.0.5。
推荐 Skills