Skills Plugins Jobs Pricing
← Back to Plugins
Tools

Injection Guard

poushwell By poushwell 👁 4 views ▲ 0 votes

Security plugin for OpenClaw. Scans tool results for prompt injection patterns. 70+ signatures, three modes (warn/strict/monitor). MIT license.

GitHub

Install

npm install openclaw-injection-guard

Configuration Example

{
  "plugins": {
    "entries": {
      "injection-guard": {
        "enabled": true,
        "mode": "warn",
        "includeOptIn": true,
        "includePaperclip": true,
        "maxFindings": 50
      }
    }
  }
}

README

# OpenClaw Injection Guard

Security plugin for OpenClaw. It scans tool results for prompt-injection patterns before they are persisted into agent context/session transcripts.

## Why

OpenClaw core security guidance treats tool-result injection as an integration concern. At the same time, real payloads targeting OpenClaw-style workflows are circulating in the wild (including thread/issue automation scenarios). This plugin adds a guard rail with 33+ patterns (currently 70+ including Paperclip-specific vectors).

## Install

```bash
npm install openclaw-injection-guard
```

## Quick Start

1. Register plugin in OpenClaw plugin config.
2. Enable `tool_result_persist` hook through plugin registration (handled by this plugin automatically).

Example plugin config snippet:

```json
{
  "plugins": {
    "entries": {
      "injection-guard": {
        "enabled": true,
        "mode": "warn",
        "includeOptIn": true,
        "includePaperclip": true,
        "maxFindings": 50
      }
    }
  }
}
```

## Modes

- **warn** (default): prefixes suspicious tool-result text with a warning label.
- **strict**: blocks when at least one **CRITICAL** pattern matches.
- **monitor**: logs findings only, keeps content unchanged.

## Patterns

Pattern sources:

- Orchesis Injection Shield v1.1 default-on categories
- Orchesis Injection Shield v1.1 opt-in categories
- Orchesis Paperclip/OpenClaw abuse patterns
- Additional hardening rules for shell-chain and stealth signals

Severity groups:

- **CRITICAL**: prompt override, fake system directives, shell execution chains
- **HIGH**: exfiltration, credential access, filesystem/tool abuse
- **MEDIUM**: secrecy instructions, context confusion, hidden Unicode obfuscation

## Development

```bash
npm install
npm test
npm run build
```
tools

Comments

Sign in to leave a comment

Loading comments...

Similar Plugins in Tools

Powermem

Powermem

PowerMem: Your AI-Powered Long-Term Memory — Accurate, Agile, Affordable. Also friendly support for the Moltbot (Clawdbo

393 557
Exoshell

Exoshell

A curated collection of Claude plugins and AI-assisted development skills inspired by Moltbot's atomic commit methodolog

36
Qq

Qq

OpenClaw QQ Plugin | 让 AI Agent 无缝接入 QQ 个人号的插件 基于 OneBot v11 协议(WebSocket),搭配 NapCat 使用,支持文字、图片、文件、语音 / 视频消息收发,以及主动推送、定时

13 566
Codex Ralph

Codex Ralph

Moltbot/Clawdbot plugin for autonomous AI coding loops using Codex (Ralph pattern)

8 9
Coclaw

Coclaw

OpenClaw community site: guides, troubleshooting and tools

5
Jina

Jina

OpenClaw Jina Plugin.

3 4