# Send Openclaw Marshal to your agent Hand the extracted package to your coding agent with a concrete install brief instead of figuring it out manually. ## Fast path - Download the package from Yavira. - Extract it into a folder your agent can access. - Paste one of the prompts below and point your agent at the extracted folder. ## Suggested prompts ### New install ```text I downloaded a skill package from Yavira. Read SKILL.md from the extracted folder and install it by following the included instructions. Then review README.md for any prerequisites, environment setup, or post-install checks. Tell me what you changed and call out any manual steps you could not complete. ``` ### Upgrade existing ```text I downloaded an updated skill package from Yavira. Read SKILL.md from the extracted folder, compare it with my current installation, and upgrade it while preserving any custom configuration unless the package docs explicitly say otherwise. Then review README.md for any prerequisites, environment setup, or post-install checks. Summarize what changed and any follow-up checks I should run. ``` ## Machine-readable fields ```json { "schemaVersion": "1.0", "item": { "slug": "openclaw-marshal", "name": "Openclaw Marshal", "source": "tencent", "type": "skill", "category": "效率提升", "sourceUrl": "https://clawhub.ai/AtlasPA/openclaw-marshal", "canonicalUrl": "https://clawhub.ai/AtlasPA/openclaw-marshal", "targetPlatform": "OpenClaw" }, "install": { "downloadUrl": "/downloads/openclaw-marshal", "sourceDownloadUrl": "https://wry-manatee-359.convex.site/api/v1/download?slug=openclaw-marshal", "sourcePlatform": "tencent", "targetPlatform": "OpenClaw", "packageFormat": "ZIP package", "primaryDoc": "SKILL.md", "includedAssets": [ "README.md", "scripts/marshal.py", "SKILL.md" ], "downloadMode": "redirect", "sourceHealth": { "source": "tencent", "slug": "openclaw-marshal", "status": "healthy", "reason": "direct_download_ok", "recommendedAction": "download", "checkedAt": "2026-04-30T17:19:08.246Z", "expiresAt": "2026-05-07T17:19:08.246Z", "httpStatus": 200, "finalUrl": "https://wry-manatee-359.convex.site/api/v1/download?slug=openclaw-marshal", "contentType": "application/zip", "probeMethod": "head", "details": { "probeUrl": "https://wry-manatee-359.convex.site/api/v1/download?slug=openclaw-marshal", "contentDisposition": "attachment; filename=\"openclaw-marshal-1.0.2.zip\"", "redirectLocation": null, "bodySnippet": null, "slug": "openclaw-marshal" }, "scope": "item", "summary": "Item download looks usable.", "detail": "Yavira can redirect you to the upstream package for this item.", "primaryActionLabel": "Download for OpenClaw", "primaryActionHref": "/downloads/openclaw-marshal" }, "validation": { "installChecklist": [ "Use the Yavira download entry.", "Review SKILL.md after the package is downloaded.", "Confirm the extracted package contains the expected setup assets." ], "postInstallChecks": [ "Confirm the extracted package includes the expected docs or setup files.", "Validate the skill or prompts are available in your target agent workspace.", "Capture any manual follow-up steps the agent could not complete." ] } }, "links": { "detailUrl": "https://openagent3.xyz/skills/openclaw-marshal", "downloadUrl": "https://openagent3.xyz/downloads/openclaw-marshal", "agentUrl": "https://openagent3.xyz/skills/openclaw-marshal/agent", "manifestUrl": "https://openagent3.xyz/skills/openclaw-marshal/agent.json", "briefUrl": "https://openagent3.xyz/skills/openclaw-marshal/agent.md" } } ``` ## Documentation ### OpenClaw Marshal Define security policies for your workspace and audit compliance. Check installed skills against command, network, and data handling rules. Generate audit-ready compliance reports. ### Why This Matters Agent workspaces accumulate skills that execute commands, access the network, and handle data. Without a defined security policy, there is no way to know whether installed skills comply with your organization's requirements — or whether your workspace itself meets basic security hygiene standards. This skill lets you define a policy once and audit everything against it. ### Initialize Policy Create a default security policy file (.marshal-policy.json) with sensible defaults. python3 {baseDir}/scripts/marshal.py policy --init --workspace /path/to/workspace ### Show Policy Display the current active policy. python3 {baseDir}/scripts/marshal.py policy --show --workspace /path/to/workspace ### Policy Summary Quick overview of loaded policy rules. python3 {baseDir}/scripts/marshal.py policy --workspace /path/to/workspace ### Full Compliance Audit Audit all installed skills and workspace configuration against the active policy. Reports compliance score, violations, and recommendations. python3 {baseDir}/scripts/marshal.py audit --workspace /path/to/workspace ### Check Specific Skill Check a single skill against the policy. Reports pass/fail per rule. python3 {baseDir}/scripts/marshal.py check openclaw-warden --workspace /path/to/workspace ### Generate Compliance Report Produce a formatted, copy-pastable compliance report suitable for audit documentation. python3 {baseDir}/scripts/marshal.py report --workspace /path/to/workspace ### Quick Status One-line summary: policy loaded, compliance score, critical violations count. python3 {baseDir}/scripts/marshal.py status --workspace /path/to/workspace ### Workspace Auto-Detection If --workspace is omitted, the script tries: OPENCLAW_WORKSPACE environment variable Current directory (if AGENTS.md exists) ~/.openclaw/workspace (default) ### What Gets Checked CategoryChecksSeverityCommand SafetyDangerous patterns (eval, exec, pipe-to-shell, rm -rf /)CRITICALCommand PolicyBlocked and review-required commands from policyHIGH/MEDIUMNetwork PolicyDomain allow/blocklists, suspicious TLD patternsCRITICAL/HIGHData HandlingSecret scanner installed, PII scanner configuredHIGH/MEDIUMWorkspace Hygiene.gitignore, audit trail (ledger), skill signing (signet)HIGH/MEDIUMConfigurationDebug modes, verbose logging left enabledLOW ### Policy Format The .marshal-policy.json file defines all rules: commands.allow — Permitted binaries commands.block — Blocked command patterns commands.review — Commands requiring human review network.allow_domains — Permitted network domains network.block_domains — Blocked domains network.block_patterns — Wildcard domain blocks (e.g., *.tk) data_handling.pii_scan — Require PII scanning data_handling.secret_scan — Require secret scanning workspace.require_gitignore — Require .gitignore workspace.require_audit_trail — Require ledger workspace.require_skill_signing — Require signet ### Exit Codes 0 — Compliant, no issues 1 — Review needed (medium/high findings) 2 — Critical violations detected ### No External Dependencies Python standard library only. No pip install. No network calls. Everything runs locally. ### Cross-Platform Works with OpenClaw, Claude Code, Cursor, and any tool using the Agent Skills specification. ## Trust - Source: tencent - Verification: Indexed source record - Publisher: AtlasPA - Version: 1.0.2 ## Source health - Status: healthy - Item download looks usable. - Yavira can redirect you to the upstream package for this item. - Health scope: item - Reason: direct_download_ok - Checked at: 2026-04-30T17:19:08.246Z - Expires at: 2026-05-07T17:19:08.246Z - Recommended action: Download for OpenClaw ## Links - [Detail page](https://openagent3.xyz/skills/openclaw-marshal) - [Send to Agent page](https://openagent3.xyz/skills/openclaw-marshal/agent) - [JSON manifest](https://openagent3.xyz/skills/openclaw-marshal/agent.json) - [Markdown brief](https://openagent3.xyz/skills/openclaw-marshal/agent.md) - [Download page](https://openagent3.xyz/downloads/openclaw-marshal)