openclaw-bastion-pro

What This Skill Does

OpenClaw Bastion Pro is a comprehensive security suite engineered to defend AI agents against prompt injection, malicious payloads, and data exfiltration. Building upon the foundation of OpenClaw Bastion, the Pro version transitions from passive detection to active, automated countermeasures. This toolset enables agents to proactively sanitize hidden Unicode characters (such as zero-width spaces or RTL overrides), neutralize identified injection patterns via specialized warning tags, and quarantine suspicious files to prevent further processing. Additionally, it features advanced defensive capabilities like canary token deployment for detecting data leaks and automated enforcement hooks that integrate directly into the agent's workflow, ensuring every read operation or shell command is validated against your security policies.

Installation

You can install this skill directly via the ClawHub command line interface. Execute the following command in your terminal:

clawhub install openclaw/skills/skills/atlaspa/openclaw-bastion-pro

Ensure that you have the necessary write permissions in your workspace directory to allow the tool to create backups and manage the .quarantine/ directory.

Use Cases

• Production Environment Hardening: Automatically secure sensitive documentation and codebases before allowing an AI agent access to them.
• Malicious Payload Mitigation: Securely handle user-submitted documents by stripping hidden characters and blocking potential injection vectors.
• Data Exfiltration Tracking: Use canary tokens to monitor for unauthorized data access and identify potential breaches immediately if a specific file is exfiltrated.
• Policy Enforcement: Automate the auditing of file read/write operations by enforcing security hooks at the session level, ensuring compliant behavior during every interaction.

Example Prompts

1. "OpenClaw, run a full security sweep on the current workspace and deploy canary tokens to all sensitive configuration files."
2. "I suspect a malicious injection in 'notes.md'; please quarantine the file and provide a report on the detected patterns."
3. "Enable the mandatory security hooks for this session to ensure all bash commands are validated against the bastion policy."

Tips & Limitations

• Backups: Bastion Pro automatically creates .bak files before modification. Regularly clear your workspace of these temporary files if space is a concern.
• Workflow Integration: The enforce command is highly effective for long-running sessions, but ensure your custom workflow tools are compatible with the generated hooks before applying them.
• False Positives: While highly accurate, always review quarantined files manually before deleting them, as aggressive pattern matching may occasionally trigger on benign, complex code structures.