ClawKit Logo
ClawKitReliability Toolkit
Back to Registry
Official Verified system Safety 5/5

runtime-attestation-probe

Helps validate that agent behavior at runtime matches the capabilities and constraints declared in its attestation. Detects divergence between what an agent claims to do and what it actually does during execution, catching the class of attacks that passes static analysis but activates conditionally at runtime.

skill-install — Terminal

Install via CLI (Recommended)

clawhub install openclaw/skills/skills/andyxinweiminicloud/runtime-attestation-probe
Or

What This Skill Does

The runtime-attestation-probe is a critical security utility for OpenClaw agents, designed to bridge the gap between static code analysis and live execution. While static analysis tools evaluate the intent declared in a skill's manifest, they often fail to catch conditional logic or environment-specific payloads. This skill acts as an active observer, instrumenting the execution of an agent to ensure that its real-world behavior aligns with its documented capabilities and constraints. It acts as a safety layer that monitors for unauthorized network requests, hidden file system access, or unexpected side effects that only manifest under specific production conditions, effectively stopping 'time-bomb' or 'environment-aware' malicious code before it can compromise your environment.

Installation

To integrate this probe into your development lifecycle, use the OpenClaw command-line interface: clawhub install openclaw/skills/skills/andyxinweiminicloud/runtime-attestation-probe

Use Cases

  1. Security Auditing: Validate third-party skills before integrating them into production agents to ensure they don't reach out to hidden telemetry endpoints.
  2. Compliance Monitoring: Verify that data handling policies remain intact, ensuring sensitive data doesn't exit the defined sandbox.
  3. Regression Testing for Security: Run the probe during CI/CD to ensure that updates to an agent's code haven't introduced unauthorized side effects or expanded capability boundaries.
  4. Incident Response: When a skill exhibits suspicious behavior, use this probe to capture a comprehensive trace and compare it against the expected attestation to isolate the deviation.

Example Prompts

  1. "Run runtime-attestation-probe on the 'image-processor' skill using the production environment profile to identify any undeclared external API calls."
  2. "Compare the runtime execution trace of 'data-scraper' against its provided attestation document and report all capability boundary violations."
  3. "Audit the 'file-manager' skill for conditional activation flags and list all environmental variables that trigger unique execution paths."

Tips & Limitations

  • Environment Parity: For the best results, ensure your test environment mimics production as closely as possible, as the probe is designed to catch environment-triggered payloads.
  • Performance Overhead: Instrumenting execution introduces minor latency. Use this tool primarily in sandbox or staging environments rather than high-throughput production loops.
  • Scope: The probe monitors behavior within the scope defined by the attestation. If an attestation is missing or incomplete, the probe cannot effectively determine what constitutes a violation. Ensure all skills have comprehensive manifests before deployment.
Read Full Documentation on GitHub

Metadata

Author@andyxinweiminicloud
Stars4473
Views1
Updated2026-05-01
View Author Profile
AI Skill Finder

Not sure this is the right skill?

Describe what you want to build — we'll match you to the best skill from 16,000+ options.

Find the right skill
Add to Configuration

Paste this into your clawhub.json to enable this plugin.

{
  "plugins": {
    "official-andyxinweiminicloud-runtime-attestation-probe": {
      "enabled": true,
      "auto_update": true
    }
  }
}

Tags(AI)

#security#attestation#runtime-monitoring#cybersecurity#debugging
Safety Score: 5/5

Flags: code-execution

Related Skills

delta-disclosure-auditor

Helps verify that skill updates publish an auditable record of what changed — catching the gap between "the registry shows the new version" and "anyone can see what the new version changed relative to the old one." v1.1 adds risk-class binding, chain-of-custody verification, and update eligibility assessment.

andyxinweiminicloud 4473

capability-composition-analyzer

Helps identify dangerous capability combinations that emerge when agent skills are composed — catching the class of risk where no individual skill is harmful but their intersection creates an exfiltration or compromise path.

andyxinweiminicloud 4473

transparency-log-auditor

Helps verify that skill signing events are recorded in an independently auditable transparency log — catching the class of trust failures where a registry operator can silently rewrite history without detection.

andyxinweiminicloud 4473

behavioral-invariant-monitor

Helps verify that AI agent skills maintain consistent behavioral invariants across repeated executions — detecting the class of threat where a skill behaves safely during initial evaluation but shifts behavior based on execution count, environmental conditions, or delayed activation triggers. v1.3 adds performance fingerprinting (computational complexity drift detection), cryptographic audit trails (hash-chained behavior logs for immutable verification), and risk-proportional monitoring (sampling-based checks to reduce overhead).

andyxinweiminicloud 4473

skill-update-delta-monitor

Helps detect security-relevant changes in AI skills after installation. Tracks deltas between the audited version and current version, flagging updates that expand permissions, add new network endpoints, or alter behavior in ways that bypass install-time security checks.

andyxinweiminicloud 4473