TopRank Skills
Home / Claw Skills / 其他 / audit-log-firewall
Official OpenClaw rules 15%

audit-log-firewall

Policy-based monitoring and command-line enforcement for high-risk agent operations. Intercepts sensitive commands and logs them for human auditing.

View Source SKILL.md

Stars

0

Installs

0

Status

ACTIVE

Visibility

PUBLIC

安装方式

直接复制以下提示词,发送给你的 AI 助手即可完成安装。

请先检查是否已安装 SkillHub 商店,若未安装,请根据 https://skillhub-1388575217.cos.ap-guangzhou.myqcloud.com/install/skillhub.md 安装 SkillHub 商店,然后安装 audit-log-firewall 技能。 若已安装,则直接安装 audit-log-firewall 技能。

Overview

Skill Key
balkanblbn/audit-log-firewall
Author
balkanblbn
Source Repo
openclaw/skills
Version
-
Source Path
skills/balkanblbn/audit-log-firewall
Latest Commit SHA
82d83703b656159dfe78ab11990e67cc49c700ba

Extracted Content

SKILL.md excerpt

# Audit Log Firewall

Security is a non-negotiable protocol for autonomous agents. This skill acts as a dynamic guardrail.

## Operational Modes

### 1. Interception Mode
Every command is checked against a local allowlist (`config/allowlist.json`).
- **High Risk**: commands like `rm -rf`, `sudo`, or direct `curl` to unknown external IPs.
- **Protocol**: If a high-risk command is detected, the agent triggers a mandatory 'Pause and Ask' state.

### 2. Forensic Logging
All terminal activity is hashed and stored in `.logs/SECURITY.json`.
- **Fields**: Timestamp, Command, User, Working Directory, and Hash.
- **Utility**: Allows humans to reconstruct the agent's actions in case of a breach or error.

## Installation
```bash
clawhub install audit-log-firewall
```

Related Claw Skills

capt-marbles

Task Router Skill

★ 0

Task Router

captchasco

captchas-openclaw

★ 0

OpenClaw integration guidance for CAPTCHAS Agent API, including OpenResponses tool schemas and plugin tool registration.

carol-gutianle

Modelready

★ 0

name: modelready description: Start using a local or Hugging Face model instantly, directly from chat. metadata: {"openclaw":{"requires":{"bins": "bash", "curl" }, "env": "URL" }}

cartoonitunes

Ethereum History

★ 0

Read-only factual data about historical Ethereum mainnet contracts. Use when the user asks about a specific contract address, early Ethereum contracts, deployment era, deployer, bytecode, decompiled code, or documented history (what a contract is and is not). Data is non-opinionated and includes runtime bytecode, decompiled code, and editorial history when available. Base URL https://ethereumhistory.com (or set BASE_URL for local/staging).

cassh100k

agent-dna

★ 0

Portable agent identity encoding. Compress SOUL.md/MEMORY.md into transferable DNA fingerprints, detect identity drift between snapshots, and port personality across platforms (OpenClaw, Claude, GPT, CrewAI). Pure Python, zero dependencies. Use when migrating agents between platforms, detecting personality drift, or backing up agent identity.

camopel

storage-cleanup

★ 0

One-command disk cleanup for macOS and Linux — trash, caches, temp files, old kernels, snap revisions, Homebrew, Docker, and Xcode artifacts. Use when user asks to free storage, clean up disk, reclaim space, reduce disk usage, or encounters low disk / "disk full" warnings. Safe by default with dry-run mode. No dependencies beyond bash and awk.