← 返回 Skills 市场

Zipsa

Name: Zipsa
Author: sulgik

作者 Sulgi Kim · GitHub ↗ · v0.4.1 · MIT-0

cross-platform ✓ 安全检测通过

185

总下载

当前安装

版本数

在 OpenClaw 中安装

/install zipsa

功能描述

Local-first privacy gateway for LLM applications. Use when the user needs to process sensitive, private, or proprietary information (PII, health records, int...

安全使用建议

This skill is a configuration/routing helper that expects you to run a separate local Zipsa server. Before installing or enabling it: 1) Ensure you actually host a trusted Zipsa instance on localhost (the skill alone does not provide scanning/masking logic). 2) Do not set OPENAI_BASE_URL to a remote or untrusted URL — the gateway must be local/trusted to protect sensitive data. 3) Review and lock down admin-console integrations (Slack, webhooks, SIEM) because misconfigured alert/webhook destinations could leak sensitive events. 4) Test with non-sensitive sample data first to confirm behavior (blocking/masking) and inspect where audit logs are sent and stored. 5) If you need the gateway to contact cloud providers, provision provider credentials in a controlled location and review that those credentials are used only by your trusted Zipsa service.

功能分析

Type: OpenClaw Skill Name: zipsa Version: 0.4.1 The 'zipsa' skill is a privacy-preserving gateway designed to intercept and sanitize sensitive data (PII, credentials, health records) locally before routing requests to cloud LLM providers. The provided Python script (scripts/relay_zipsa.py) is a straightforward relay to a local endpoint (localhost:8000), and the extensive documentation (SKILL.md, references/admin-dashboard.md) describes legitimate security features, including ISMS-P compliance mapping and local data masking, with no evidence of malicious intent, data exfiltration, or unauthorized execution.

能力标签

requires-sensitive-credentials

能力评估

ℹ Purpose & Capability

The skill claims to provide a local-first privacy gateway and its instructions consistently tell the agent to route cloud calls to a local endpoint (e.g., http://localhost:8000/v1). However, the skill is instruction-only and does not implement the scanning/reformulation engine itself — it assumes an external Zipsa server is running. This is coherent but important: the protective features described (scanning, masking, alerting, SIEM integration) are product-level features of that external service, not implemented by the skill code.

✓ Instruction Scope

SKILL.md instructs the agent to reroute provider calls to a local gateway and to use session_id for continuity. It does not instruct the agent to read arbitrary files, exfiltrate data, or contact unexpected remote endpoints. The included relay script only POSTs to localhost and is non-obfuscated.

✓ Install Mechanism

No install spec is present (instruction-only). This minimizes disk/write risk. The single Python relay script is small, clear, and only communicates with localhost.

ℹ Credentials

The documentation shows example env vars (OPENAI_BASE_URL, OPENAI_API_KEY=zipsa-key, OPENAI_MODEL) but the skill does not declare required env vars. That is reasonable for a routing helper but users must supply local configuration. The admin-console description lists webhook/SIEM/Slack/email integrations (which could send alerts externally if configured) — those are expected given the product scope but represent a configuration-time exfiltration risk if misconfigured.

✓ Persistence & Privilege

The skill does not request persistent presence (always:false) nor does it modify other skills. Default autonomous invocation is allowed but not by itself a problem; the skill doesn't elevate privileges or alter other skill configs.

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install zipsa
安装完成后，直接呼叫该 Skill 的名称或使用 /zipsa 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v0.4.1

Align ClawHub version with the GitHub zipsa release number (0.4.1).

v0.2.0

Add Admin Console documentation, expand enterprise/privacy guidance, and include the MIT license in the skill bundle.

v0.1.0

Initial release of zipsa: a local-first privacy gateway for LLM applications. - Protects sensitive, private, or proprietary data (PII, health records, secrets) by rewriting queries locally before sending to cloud LLMs. - Sits between OpenClaw and cloud models (Claude, Gemini, GPT) as an OpenAI-compatible endpoint. - Automatically identifies and redacts high-risk information, preserving privacy while leveraging advanced models. - Supports multi-turn conversations with session continuity. - Easily integrates by changing the OpenAI base URL and model in client apps.

元数据

Slug zipsa

版本 0.4.1

许可证 MIT-0

累计安装 0

当前安装数 0

历史版本数 3

常见问题

Zipsa 是什么？

Local-first privacy gateway for LLM applications. Use when the user needs to process sensitive, private, or proprietary information (PII, health records, int... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件，目前累计下载 185 次。

如何安装 Zipsa？

在 OpenClaw 或 Claude Code 对话框中运行命令「/install zipsa」即可一键安装，无需额外配置。

Zipsa 是免费的吗？

是的，Zipsa 完全免费，采用 MIT-0 许可证，可自由下载、安装和使用。

Zipsa 支持哪些平台？

Zipsa 跨平台运行，可在任意部署了 OpenClaw / Claude Code 的环境中使用（cross-platform）。

谁开发了 Zipsa？

由 Sulgi Kim（@sulgik）开发并维护，当前版本 v0.4.1。