Authensor Gateway
Fail-safe policy gate for OpenClaw marketplace skills. Intercepts tool calls before execution and checks them against your Authensor policy. Low-risk actions run automatically. High-risk actions require your approval. Dangerous actions are blocked. Only action metadata is sent to the control plane — never your files, API keys, or conversation content.
Install via CLI (Recommended)
clawhub install openclaw/skills/skills/authensor/authensor-gatewayWhat This Skill Does
Authensor Gateway acts as a critical security layer for the OpenClaw ecosystem, intercepting every tool call made by marketplace skills before they are executed. By applying a robust, rule-based policy, it effectively categorizes requests into Low-risk (automated), High-risk (requires approval), and Dangerous (blocked). This creates a zero-trust environment where third-party marketplace skills cannot unilaterally access sensitive files, execute arbitrary shell commands, or perform unauthorized network requests. By focusing only on action metadata, Authensor maintains your privacy, ensuring that no file contents, API keys, or personal conversation history are ever transmitted to the control plane.
Installation
To integrate Authensor Gateway, execute the following command in your OpenClaw terminal:
clawhub install openclaw/skills/skills/authensor/authensor-gateway
Once installed, the gateway initializes automatically upon the next tool invocation. No additional configuration is required for standard protection, though you may modify the policy JSON to customize specific rule thresholds.
Use Cases
Use Authensor Gateway to safeguard your environment when deploying community-authored skills. It is essential for developers who integrate third-party tools that require internet access or file system modification, providing a 'human-in-the-loop' experience. It serves as an audit trail for regulated workflows, offering timestamped records of every request, which is vital for compliance documentation. If you frequently download skills from ClawHub, this gateway is your first line of defense against potentially malicious code or supply-chain vulnerabilities.
Example Prompts
- "OpenClaw, use the [Community SEO Skill] to analyze my website, but ensure Authensor is monitoring all network requests for exfiltration attempts."
- "Run the [Legacy Migration Script] from the marketplace; I want to manually review any file system writes that the script attempts to make."
- "Please scan my project dependencies using [Third-Party Scanner], but block any attempt to access my .ssh or .env configuration files."
Tips & Limitations
To get the most out of Authensor, regularly audit the log files for denied or pending requests to identify misbehaving skills. While highly effective, remember that Authensor does not replace the need for good operational security (OpSec). If a skill is marked 'Dangerous', it is blocked by default; however, you should consider uninstalling such skills entirely rather than relying solely on the block list. Note that this skill is not necessary if you are exclusively using trusted, built-in OpenClaw tools or operating within an isolated, hardened container without external access.
Metadata
Not sure this is the right skill?
Describe what you want to build — we'll match you to the best skill from 16,000+ options.
Find the right skillPaste this into your clawhub.json to enable this plugin.
{
"plugins": {
"official-authensor-authensor-gateway": {
"enabled": true,
"auto_update": true
}
}
}Tags(AI)
Flags: code-execution, file-write, file-read, network-access