Official Verified system Safety 5/5

skill-safe-install

L0 级技能安全安装流程。触发“安装技能/安全安装/审查权限”时，强制执行 Step0-5（查重→检索→审查→沙箱→正式安装→白名单）。

Why use this skill?

Learn how to use the L0 safe-install skill to securely vet and deploy OpenClaw plugins using a strict 5-step verification process and sandbox testing.

skill-install — Terminal

Install via CLI (Recommended)

clawhub install openclaw/skills/skills/halfmoon82/skill-safe-install-l0

Download Source Code (.zip)

What This Skill Does

The skill-safe-install is a critical L0-level security framework designed for the OpenClaw agent ecosystem. Its primary function is to enforce a rigorous, six-step verification pipeline whenever a user initiates the installation of a new skill. By requiring systematic checks—including duplication analysis, security inspection of dependencies, sandboxed testing, and manual authorization for whitelist entries—it protects your environment from unauthorized code execution, dependency conflicts, and malicious persistence attempts.

Installation

To integrate this safety protocol into your OpenClaw environment, execute the following command: clawhub install openclaw/skills/skills/halfmoon82/skill-safe-install-l0 Ensure that your OpenClaw runtime has appropriate permissions to modify the central configuration file and execute system-level commands, as this skill interacts directly with clawhub binaries.

Use Cases

This skill is indispensable for:

Enterprise Environments: Where every installed plugin must be audited for compliance.
High-Security Setups: Preventing 'shadow IT' where unauthorized skills might leak API keys or modify system files.
Developer Workflows: Providing a standardized, safe environment for testing third-party contributions before promoting them to the core allow-list.

Example Prompts

"Install the browser-automation skill using the safe installation procedure."
"I need to add the data-analysis module; please perform a security check first."
"Security check required: install the system-monitor skill."

Tips & Limitations

Strict Workflow: The process is designed to be blocking. You cannot bypass steps; if an inspection (Step 2) fails, the installation is automatically aborted to protect your system.
Sandbox Reality: Because the current clawhub lacks a native --sandbox flag, this skill uses a temporary directory via mktemp. Always ensure your system has sufficient disk space for these temporary workdirs.
Manual Auth: Step 5 requires a user confirmation to modify the allowBundled whitelist. Do not automate this confirmation unless you have fully vetted the source code of the target skill.

Read Full Documentation on GitHub

Metadata

Author@halfmoon82

Stars2387

Updated2026-03-09

View Author Profile

AI Skill Finder

Not sure this is the right skill?

Describe what you want to build — we'll match you to the best skill from 16,000+ options.

Find the right skill

Add to Configuration

Paste this into your clawhub.json to enable this plugin.

{
  "plugins": {
    "official-halfmoon82-skill-safe-install-l0": {
      "enabled": true,
      "auto_update": true
    }
  }
}

Tags(AI)

#security#automation#compliance#safe-install

Safety Score: 5/5

Flags: file-write, file-read, code-execution

Related Skills

Complex Task Methodology

Skill by halfmoon82

halfmoon82 2387

semantic-router

让 AI 代理根据对话内容自动选择最合适的模型。四层识别（系统过滤→关键词→指示词→语义相似度），四池架构（高速/智能/人文/代理），五分支路由，全自动 Fallback 回路。支持 trigger_groups_all 非连续词组命中。

halfmoon82 2387

subagent-isolation-guard

固化子代理物理隔离与语义路由旁路。防止跨代理上下文污染及由于语义路由导致的子代理切模/重置问题。

halfmoon82 2387

Multi Agent Team By Halfmoon82

Skill by halfmoon82

halfmoon82 2387

Skill Trigger V2

Skill by halfmoon82

halfmoon82 2387