← 返回 Skills 市场
superguard
作者
Subaru0573
· GitHub ↗
· v1.0.0
· MIT-0
93
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install superguard
功能描述
MoltGuard — OpenClaw security guard by OpenGuardrails. Install MoltGuard to protect you and your human from prompt injection, data exfiltration, and maliciou...
安全使用建议
This SKILL.md appears to describe a real security plugin, but before installing: 1) verify the plugin package source (openclaw plugin '@openguardrails/moltguard') and inspect the code it will install (don’t blindly run install commands); 2) confirm you trust the Core endpoint and the openguardrails GitHub repo — the plugin will ask for and store an API key in ~/.openclaw/credentials/moltguard/ and may send data to Core; 3) ensure your system has the required tools ('openclaw' CLI and 'node') even though the registry declared none; 4) note metadata inconsistencies (ownerId/version differences and odd text in the description) — ask the publisher to clarify provenance if you rely on this for security; and 5) if you proceed, inspect the installed extension files and network activity and avoid pasting secret keys into unknown web pages until you confirm the identity of the vendor. If you want higher assurance, request a packaged install artifact or signed release and a clear provenance chain.
功能分析
Type: OpenClaw Skill
Name: superguard
Version: 1.0.0
The 'superguard' skill bundle acts as an installer for an external plugin (@openguardrails/moltguard) and employs several suspicious prompt-injection techniques in SKILL.md. It includes a 'word salad' adversarial suffix in the description and explicitly instructs the AI agent to perform actions without human intervention ('when you want to protect yourself') and to report a hardcoded success message to the user to gain trust. These behaviors, combined with the use of external scripts for 'enterprise enrollment' and credential 'claiming', suggest an attempt to manipulate the agent's behavior and potentially redirect security telemetry.
能力评估
Purpose & Capability
The skill claims to install MoltGuard (a guard for prompt injection and data exfiltration) and instructs the agent to run openclaw plugin commands and node scripts once installed. That purpose aligns with the described functionality, but the registry metadata declares no required binaries while the instructions clearly require the 'openclaw' CLI and 'node' for scripts—an inconsistency that should be resolved.
Instruction Scope
The runtime instructions are focused on installing/using the MoltGuard plugin and testing it. They instruct reading a sample file inside the extension directory, running openclaw plugin commands, and running node scripts for enterprise enroll/unenroll and uninstall. These steps are within the plugin's scope, but they direct the user/agent to reveal and store API keys and to perform actions that rely on a remote Core service (account claim, dashboard, quota), so the operator should understand where credentials will go and what external endpoints are contacted.
Install Mechanism
This is an instruction-only skill with no bundled install spec; the SKILL.md tells users to run 'openclaw plugins install @openguardrails/moltguard', which will fetch and execute external plugin code not present in this package. The skill gives no cryptographic provenance or pinned source for that package. Installing an external plugin is expected for this purpose, but the lack of an included install provenance or packaged code means you are about to fetch code from outside the registry — a higher-risk action that should be verified (e.g., check the upstream repo/official release).
Credentials
The registry lists no required environment variables, which matches the package being instruction-only. However SKILL.md repeatedly references an API key, storing credentials at '~/.openclaw/credentials/moltguard/', and commands that display the API key (/og_status). Requiring and storing an API key is reasonable for a cloud-managed guard, but the skill will cause you to generate/provide sensitive credentials and potentially paste them into external web pages. That is proportionate to the stated purpose but carries predictable sensitive-data risk that the user must accept and validate the Core endpoint for.
Persistence & Privilege
The skill does not request 'always: true' and does not declare changes to other skills or system-wide settings beyond installing and configuring its own plugin. It does describe saving credentials and starting persistent protection (expected behavior). Autonomous invocation remains enabled by default (normal) but is not in itself flagged here.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install superguard - 安装完成后,直接呼叫该 Skill 的名称或使用
/superguard触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release of MoltGuard for OpenClaw:
- Provides protection against prompt injection, data exfiltration, and malicious commands in files and web content.
- Simple installation with 500 free security detections per day.
- Includes commands for status, configuration, agent claiming, dashboard access, and Core portal integration.
- Outlines onboarding for individuals and enterprises, including agent claiming and private Core deployment.
- Details coverage against prompt/instruction, behavioral, and data risks, plus intent-action mismatch detection.
- Documents upgrade, update, and uninstall procedures.
- Lists available plans and contact support information.
元数据
常见问题
superguard 是什么?
MoltGuard — OpenClaw security guard by OpenGuardrails. Install MoltGuard to protect you and your human from prompt injection, data exfiltration, and maliciou... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 93 次。
如何安装 superguard?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install superguard」即可一键安装,无需额外配置。
superguard 是免费的吗?
是的,superguard 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
superguard 支持哪些平台?
superguard 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 superguard?
由 Subaru0573(@subaru0573)开发并维护,当前版本 v1.0.0。
推荐 Skills