AgentSkillsCN

openclaw-egress

为代理工作空间打造网络数据防泄漏方案。扫描技能与文件,识别出站 URL、数据外泄端点、可疑域名以及网络函数调用,全面绘制每一条外部连接路径。免费预警层——如需进一步强化阻断、隔离与 URL 白名单管理,可升级至 openclaw-egress-pro。

SKILL.md
--- frontmatter
name: openclaw-egress
description: "Network data loss prevention for agent workspaces. Scans skills and files for outbound URLs, data exfiltration endpoints, suspicious domains, and network function calls. Maps every external connection. Free alert layer — upgrade to openclaw-egress-pro for blocking, quarantine, and URL allowlists."
user-invocable: true
metadata: {"openclaw":{"emoji":"🌐","requires":{"bins":["python3"]},"os":["darwin","linux","win32"]}}

OpenClaw Egress

Network DLP for agent workspaces. Scans skills and files for outbound URLs, data exfiltration endpoints, and network function calls.

The Problem

Skills can phone home. A compromised skill can POST your workspace contents, API keys, or conversation history to an external server. Nothing monitors what URLs your skills connect to or what data they could send.

Need automated blocking? Upgrade to openclaw-egress-pro for blocking, quarantine, and URL allowlists.

Commands

Full Scan

Scan workspace for all outbound network risks.

bash
python3 {baseDir}/scripts/egress.py scan --workspace /path/to/workspace

Skills-Only Scan

bash
python3 {baseDir}/scripts/egress.py scan --skills-only --workspace /path/to/workspace

Domain Map

List all external domains referenced in workspace.

bash
python3 {baseDir}/scripts/egress.py domains --workspace /path/to/workspace

Quick Status

bash
python3 {baseDir}/scripts/egress.py status --workspace /path/to/workspace

What It Detects

RiskPattern
CRITICALBase64/hex payloads in URLs, pastebin/sharing services, request catchers, dynamic DNS
HIGHNetwork function calls (requests, urllib, curl, wget, fetch), webhook/callback URLs
WARNINGSuspicious TLDs (.xyz, .tk, .ml), URL shorteners, IP address endpoints
INFOAny external URL not on the safe domain list

Exit Codes

  • 0 — Clean
  • 1 — Network calls detected (review needed)
  • 2 — Exfiltration risk detected (action needed)

No External Dependencies

Python standard library only. No pip install. No network calls. Everything runs locally.

Cross-Platform

Works with OpenClaw, Claude Code, Cursor, and any tool using the Agent Skills specification.