SkillShield
先拦住 Agent 误删文件、泄漏密钥和失控连跑,再谈更高级的团队治理。
70 downloads
Free
Reviewed
security
system
skillshield
Sandboxed command runner for AI agents — validates and isolates every shell action inside a Bubblewrap user namespace.
SkillShield sits between your AI agent and the operating system. Before any shell command runs, a lightweight Rust daemon checks it against a set of safety rules and decides whether to allow it, sandbox it, or ask for your confirmation. Every decision is logged so you always know what happened.
What it does
- Validates commands — checks each shell request against configurable rules before execution.
- Isolates execution — runs approved commands inside a Bubblewrap sandbox with a minimal, read-only root filesystem.
- Limits repetition — stops agents that get stuck in a loop and start consuming too many resources.
- Logs decisions — every action (allowed, sandboxed, or paused for review) is recorded with structured metadata.
How to use
# Install from ClawHub
npx clawhub@latest install skillshield-openclaw
# Run a command through the safety layer
./skillshield-exec.sh "echo hello world"
Requirements
| Dependency | Purpose |
|---|---|
| Linux | User-namespace support |
bwrap | Bubblewrap sandbox runtime |
cargo | Builds the Rust daemon on first run |
Links
- Homepage: https://coinwin.info
- Marketplace: https://clawhub.ai/star8592/skillshield-openclaw
Download
ZIP package — ready to use
Skill Info
- Creator
- star8592
- Downloads
- 70
- Published
- Mar 15, 2026
- Updated
- Mar 16, 2026