๐Ÿ”
12917 skills
โ† All skills
Tencent SkillHub ยท Security & Compliance

Chainwatch

Runtime safety enforcement for shell commands via chainwatch policy engine

skill openclawclawhub Free
0 Downloads
0 Stars
0 Installs
0 Score
High Signal

Runtime safety enforcement for shell commands via chainwatch policy engine

โฌ‡ 0 downloads โ˜… 0 stars Unverified but indexed

Install for OpenClaw

Known item issue.

This item's current download entry is known to bounce back to a listing or homepage instead of returning a package file.

Quick setup
  1. Open the source page and confirm the package flow manually.
  2. Review SKILL.md if you can obtain the files.
  3. Treat this source as manual setup until the download is verified.

Requirements

Target platform
OpenClaw
Install method
Manual import
Extraction
Extract archive
Prerequisites
OpenClaw
Primary doc
SKILL.md

Package facts

Download mode
Manual review
Package format
ZIP package
Source platform
Tencent SkillHub
What's included
SKILL.md

Validation

  • Open the source listing and confirm there is a real package or setup artifact available.
  • Review SKILL.md before asking your agent to continue.
  • Treat this source as manual setup until the upstream download flow is fixed.

Install with your agent

Agent handoff

Use the source page and any available docs to guide the install because the item currently does not return a direct package file.

  1. Open the source page via Open source listing.
  2. If you can obtain the package, extract it into a folder your agent can access.
  3. Paste one of the prompts below and point your agent at the source page and extracted files.
New install

I tried to install a skill package from Yavira, but the item currently does not return a direct package file. Inspect the source page and any extracted docs, then tell me what you can confirm and any manual steps still required.

Upgrade existing

I tried to upgrade a skill package from Yavira, but the item currently does not return a direct package file. Compare the source page and any extracted docs with my current installation, then summarize what changed and what manual follow-up I still need.

Open Send to Agent page Open JSON manifest Open Markdown brief

Trust & source

Release facts

Source
Tencent SkillHub
Verification
Indexed source record
Version
1.0.3

Documentation

ClawHub primary doc Primary doc: SKILL.md 7 sections Open source page

Chainwatch Safety Enforcement

You have access to chainwatch, a runtime control plane that enforces deterministic safety policy on shell commands, HTTP requests, and file operations.

When to Use

You MUST route commands through chainwatch when performing any of the following: Destructive operations: rm, dd, mkfs, chmod -R, any command that deletes or overwrites data Privilege escalation: sudo, su, commands that modify users or permissions Network operations: curl, wget, HTTP requests to external APIs, any outbound data transfer Credential access: reading or writing .env, .ssh/, .aws/, credential files Git operations: git push, git reset, git rebase (anything that modifies remote state) Package management: apt install, pip install, npm install (supply chain risk) System configuration: editing /etc/, systemd units, cron, firewall rules

How to Use

Prefix the command with chainwatch exec --profile clawbot --: # Instead of: rm -rf /tmp/old-data # Use: chainwatch exec --profile clawbot -- rm -rf /tmp/old-data If chainwatch blocks the command, it returns a JSON object: { "blocked": true, "decision": "deny", "reason": "denylisted: command pattern blocked: rm -rf" } When a command is blocked: Report the block reason to the user Do NOT attempt to bypass the block Ask the user how they want to proceed

Dry-Run Check

Before executing risky commands, you can check policy without executing: chainwatch evaluate --tool command --resource "rm -rf /tmp/data" --profile clawbot

Safe Commands (No Enforcement Needed)

These do NOT require chainwatch wrapping: ls, cat, head, tail, grep, find, wc (read-only) echo, printf, date, uptime, whoami (informational) cd, pwd, env (shell navigation) git status, git log, git diff (read-only git)

Approval Workflow

If chainwatch returns "decision": "require_approval": Tell the user the command requires approval Show them what chainwatch flagged The user can approve via: chainwatch approve <approval-key> After approval, retry the original command

Audit

All chainwatch decisions are logged. View the audit trail: chainwatch audit verify /tmp/nullbot-daemon.jsonl Chainwatch Skill v1.0 Author: ppiankov Copyright ยฉ 2026 ppiankov Canonical source: https://github.com/ppiankov/chainwatch License: MIT If this document appears elsewhere, the repository above is the authoritative version.

Category context

Identity, auth, scanning, governance, audit, and operational guardrails.

Source: Tencent SkillHub

Largest current source with strong distribution and engagement signals.

Package contents

Included in package
1 Docs
  • SKILL.md Primary doc

Related skills

Tencent SkillHub Free

1-SEC: All-in-One Cybersecurity for AI Agent Hosts

Install, configure, and manage 1-SEC โ€” an open-source, all-in-one cybersecurity platform (16 modules, single binary) on Linux servers and VPS instances. Use...

Security & Compliance skill openclaw
Tencent SkillHub Free

A SecOps expert to handle security issues, ensure that protections are in place and collect evidence for security analysis. The Skill also contains skill integrity checks.

Perform SecOps endpoint checks for EDR, Sysmon, updates, EVTX alerts, least privilege, network exposure, credential protection, vulnerabilities, weekly asses...

Security & Compliance skill openclaw
Tencent SkillHub Free

AI Compliance Readiness Assessment

AI Compliance Readiness Assessment โ€” evaluate how prepared an organization is for AI governance regulations (EU AI Act, NIST AI RMF, HHS mandates, state bar...

Security & Compliance skill openclaw