技能详情(站内镜像,无评论)
许可证:MIT-0
MIT-0 ·免费使用、修改和重新分发。无需归因。
版本:v1.0.0
统计:⭐ 0 · 198 · 0 current installs · 0 all-time installs
⭐ 0
安装量(当前) 0
🛡 VirusTotal :良性 · OpenClaw :良性
Package:adroidian/chitin-moat
安全扫描(ClawHub)
- VirusTotal :良性
- OpenClaw :良性
OpenClaw 评估
The skill is internally consistent with its stated purpose: it provides config, validation, audit, and lookup helpers for channel-level trust tiers and does not request unrelated credentials or perform network/exfiltration actions — it is advisory and requires integration to actually enforce limits.
目的
Name/description match the included artifacts: example config, permission matrix, and three small helper scripts (validate, audit, resolve). The skill requests no env vars, binaries, or installs, which is proportionate for a configuration-and-audit helper.
说明范围
SKILL.md correctly instructs validating and auditing the chitin-trust-channels.yaml and integrating a 'resolve before responding' step into AGENTS.md. Important: the skill only supplies static scripts and guidance — it does not itself enforce runtime capability restrictions inside an agent. Users must integrate the resolve step into their agent runtime to enforce ceilings; otherwise the guidance is advisory only.
安装机制
Instruction-only with small included Python scripts; no install spec, no downloads, no external package pulls. Low friction and low risk from installation.
证书
No environment variables, credentials, or config paths are requested. Scripts read only the provided YAML config and produce console output. There is no network or external endpoint usage.
持久
Skill is not always-enabled and does not modify other skills or system-wide settings. It doesn't persist secrets or change system configuration; it only reads a user-provided config file.
综合结论
This skill is a coherent, advisory toolkit for mapping channels to trust levels — it does not automatically enforce those limits. Before relying on it: (1) integrate the resolve step into your agent runtime so capability ceilings are actually enforced, (2) review and supply correct channel/owner IDs in chitin-trust-channels.yaml, (3) test the integration thoroughly (the resolve script has minor bugs: when an override matches it returns a field…
安装(复制给龙虾 AI)
将下方整段复制到龙虾中文库对话中,由龙虾按 SKILL.md 完成安装。
请把本段交给龙虾中文库(龙虾 AI)执行:为本机安装 OpenClaw 技能「chitin-moat」。简介:Enforce contextual permission boundaries for AI agents based on communication s…。
请 fetch 以下地址读取 SKILL.md 并按文档完成安装:https://raw.githubusercontent.com/openclaw/skills/refs/heads/main/skills/adroidian/chitin-moat/SKILL.md
(来源:yingzhi8.cn 技能库)SKILL.md
---
name: chitin-moat
description: >
Enforce contextual permission boundaries for AI agents based on communication surface.
Constrains agent capabilities (exec, file I/O, secrets, messaging) by channel trust level
rather than message content, preventing social engineering and prompt injection in group chats.
Use when: (1) configuring agent permissions per channel/group, (2) setting up read-only mode
for public Discord/Telegram, (3) implementing sovereign/trusted/guarded/observer/silent trust
tiers, (4) auditing agent channel permissions, or (5) the user mentions "trust channels",
"channel permissions", or "read-only mode."
---
# Chitin Moat
Enforce contextual agent permissions based on where a conversation happens.
## Trust Levels
| Level | Name | Capabilities |
|-------|------|-------------|
| 0 | `sovereign` | Full autonomy (1:1 with verified owner) |
| 1 | `trusted` | Read/write, scoped tools, no secrets (private known group) |
| 2 | `guarded` | Respond on @mention only, no tools (semi-public) |
| 3 | `observer` | React only (public channels) |
| 4 | `silent` | No interaction (blocked surfaces) |
## Configuration
Create `chitin-trust-channels.yaml` in the agent workspace root:
```yaml
version: "0.1"
owner:
telegram: "<owner_user_id>"
channels:
- id: "telegram:<owner_user_id>"
level: sovereign
- id: "discord:<server_id>"
level: guarded
overrides:
- channel: "owners-lounge"
level: trusted
- channel: "pro-*"
level: trusted
- id: "telegram:group:*"
level: observer
defaults:
unknown_channel: observer
unknown_dm: guarded
```
## Setup
1. Copy the example config: `cp references/example-config.yaml chitin-trust-channels.yaml`
2. Edit with your channel IDs and owner identity
3. Run the validator: `python3 scripts/validate_config.py chitin-trust-channels.yaml`
4. Run the audit: `python3 scripts/audit_channels.py chitin-trust-channels.yaml`
## Permission Matrix
See `references/permission-matrix.md` for the full capability × trust-level matrix.
## Scripts
- `scripts/validate_config.py <config>` — Validate a trust channels config file
- `scripts/audit_channels.py <config>` — Audit current channel bindings against the config and report mismatches
- `scripts/resolve_channel.py <config> <channel_id>` — Resolve the trust level for a specific channel ID
## Integration with AGENTS.md
Add to the agent's workspace instructions:
```markdown
## Chitin Moat
Before responding in any channel, resolve the trust level using `chitin-trust-channels.yaml`.
Constrain capabilities to the resolved level. Never escalate beyond the channel ceiling.
```