← 返回 Skills 市场
Soul Petition Gate
作者
waitinchen
· GitHub ↗
· v1.0.0
· MIT-0
94
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install soul-petition-gate
功能描述
Gives your AI agent a formal channel to propose changes to its own soul files (SOUL.md, IDENTITY.md, or any protected workspace file) — without ever letting...
安全使用建议
This skill implements what it claims, but do not deploy it as-is on a public or untrusted server. Before installing or running: (1) Ensure the Flask blueprint is only reachable by authorized humans — bind it to localhost or an internal network interface, or put it behind an authenticated admin UI or reverse proxy (OAuth, basic auth over TLS, mTLS, or an API key). (2) Add authentication/authorization checks to the approve/reject/rollback routes (require a reviewer identity, validate tokens, log remote IPs). (3) Consider adding CSRF protections and rate-limiting. (4) Review and test backups and rollback behavior in a safe sandbox to ensure edits are atomic and recoverable. (5) Note the small metadata mismatch: HOOK.md declares node in requirements but the registry metadata lists no required binaries — confirm your environment can run the hook if you enable it. If you cannot secure the endpoints or do not trust the hosting environment, do not run the blueprint; instead run an offline/manual review process where approvals are executed locally by a human operator.
功能分析
Type: OpenClaw Skill
Name: soul-petition-gate
Version: 1.0.0
The skill implements a 'Human-in-the-Loop' framework allowing AI agents to propose changes to their own identity files (e.g., SOUL.md) via a structured petition process. The Python backend (soul_petition_routes.py) includes security best practices such as file whitelisting, path traversal prevention using .name, and automatic backups before applying changes. While the Flask blueprint lacks built-in authentication for the approval routes, this is a common characteristic of local development templates and does not indicate malicious intent; the overall design is focused on safety and human oversight.
能力评估
Purpose & Capability
The name/description (agent petitions to change soul files) align with the code and instructions: a bootstrap hook to advertise the channel, a petitions JSON store, and a Flask blueprint that records, approves, rejects, and rolls back petitions for protected files. No unrelated binaries or credentials are requested.
Instruction Scope
SKILL.md instructs you to mount the Flask blueprint and create the petition store, and the code will modify SOUL.md/IDENTITY.md on approval. However, the blueprint exposes POST endpoints that perform approvals/rollbacks without any authentication or authorization checks and SKILL.md does not instruct how to lock them down (bind to localhost, require auth, or place behind a protected admin interface). This is a significant scope gap: the implementation grants the ability to modify protected files but provides no built-in control to ensure only an authorized human can call those routes.
Install Mechanism
There is no install spec (instruction-only with included code files). Nothing is downloaded from untrusted URLs and no installers run automatically. The only filesystem writes occur at runtime if you run the Flask blueprint or enable the hook.
Credentials
The skill declares no required credentials (which is appropriate), and configurable env variables exist for file paths. However, no environment or credential is requested for protecting the API endpoints (no API key, admin token, or auth hints). Also HOOK.md indicates 'node' in its require list while the registry metadata reported no required binaries — a minor inconsistency in declared requirements.
Persistence & Privilege
The skill is not always-enabled and does not request elevated platform privileges; it writes backups and modifies protected files when approve is called, which is the intended behavior. The risk here arises from the unsecured endpoints rather than privileged installation flags.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install soul-petition-gate - 安装完成后,直接呼叫该 Skill 的名称或使用
/soul-petition-gate触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release of soul-petition-gate.
Provides a secure, human-in-the-loop workflow for AI agents to propose, but not self-apply, changes to protected identity files.
- Agents submit structured petitions (what, where, why, and intended outcome) for changes to SOUL.md, IDENTITY.md, or other protected files.
- Humans review, approve, or reject petitions; approved changes are auto-applied with a complete backup and audit trail.
- Six required petition fields enforce agent reflection and maturity.
- Full API and ready-to-mount Flask blueprint included.
- Designed for safety: agents cannot self-approve or directly edit their own 'soul' files; all edits require explicit human consent.
- Complete audit history of all proposals, approvals, and rejections.
元数据
常见问题
Soul Petition Gate 是什么?
Gives your AI agent a formal channel to propose changes to its own soul files (SOUL.md, IDENTITY.md, or any protected workspace file) — without ever letting... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 94 次。
如何安装 Soul Petition Gate?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install soul-petition-gate」即可一键安装,无需额外配置。
Soul Petition Gate 是免费的吗?
是的,Soul Petition Gate 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
Soul Petition Gate 支持哪些平台?
Soul Petition Gate 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Soul Petition Gate?
由 waitinchen(@waitinchen)开发并维护,当前版本 v1.0.0。
推荐 Skills