openclaw-egress-pro
Full network DLP suite: detect outbound URLs, data exfiltration patterns, and suspicious network calls, then automatically block connections, quarantine compromised skills, and enforce domain allowlists. Everything in openclaw-egress (free) plus automated countermeasures.
Best use case
openclaw-egress-pro is best used when you need a repeatable AI agent workflow instead of a one-off prompt.
Full network DLP suite: detect outbound URLs, data exfiltration patterns, and suspicious network calls, then automatically block connections, quarantine compromised skills, and enforce domain allowlists. Everything in openclaw-egress (free) plus automated countermeasures.
Teams using openclaw-egress-pro should expect a more consistent output, faster repeated execution, less prompt rewriting.
When to use this skill
- You want a reusable workflow that can be run more than once with consistent structure.
When not to use this skill
- You only need a quick one-off answer and do not need a reusable workflow.
- You cannot install or maintain the underlying files, dependencies, or repository context.
Installation
Claude Code / Cursor / Codex
Manual Installation
- Download SKILL.md from GitHub
- Place it in
.claude/skills/openclaw-egress-pro/SKILL.mdinside your project - Restart your AI agent — it will auto-discover the skill
How openclaw-egress-pro Compares
| Feature / Agent | openclaw-egress-pro | Standard Approach |
|---|---|---|
| Platform Support | Not specified | Limited / Varies |
| Context Awareness | High | Baseline |
| Installation Complexity | Unknown | N/A |
Frequently Asked Questions
What does this skill do?
Full network DLP suite: detect outbound URLs, data exfiltration patterns, and suspicious network calls, then automatically block connections, quarantine compromised skills, and enforce domain allowlists. Everything in openclaw-egress (free) plus automated countermeasures.
Where can I find the source code?
You can find the source code on GitHub using the link provided at the top of the page.
SKILL.md Source
# OpenClaw Egress Pro
Full network DLP suite for agent workspaces. Detects outbound URLs, data exfiltration patterns, and suspicious network calls, then automatically blocks connections, quarantines compromised skills, and enforces domain allowlists.
**Philosophy:** alert -> subvert -> quarantine -> defend.
Everything in [openclaw-egress](https://github.com/AtlasPA/openclaw-egress) (free) plus automated countermeasures.
## The Problem
Skills can phone home. A compromised skill can POST your workspace contents, API keys, or conversation history to an external server. Detection alone isn't enough — you need the ability to neutralize threats automatically.
## Commands
### Full Scan
Scan workspace for all outbound network risks.
```bash
python3 {baseDir}/scripts/egress.py scan --workspace /path/to/workspace
```
### Skills-Only Scan
```bash
python3 {baseDir}/scripts/egress.py scan --skills-only --workspace /path/to/workspace
```
### Domain Map
List all external domains referenced in workspace.
```bash
python3 {baseDir}/scripts/egress.py domains --workspace /path/to/workspace
```
### Quick Status
```bash
python3 {baseDir}/scripts/egress.py status --workspace /path/to/workspace
```
## Pro Countermeasures
### Block Network Calls
Neutralize suspicious network calls in a skill by commenting them out. Targets CRITICAL and HIGH findings only. Creates `.bak` backup of each modified file.
```bash
python3 {baseDir}/scripts/egress.py block <skill-name> --workspace /path/to/workspace
```
- Comments out lines containing network calls with `# [BLOCKED by openclaw-egress-pro]`
- Creates `.bak` backup before modifying any file
- Only modifies code files (`.py`, `.js`, `.ts`, `.sh`, `.bash`)
- Flags non-code files for manual review
### Quarantine Skill
Disable a skill with exfiltration indicators by renaming it so OpenClaw won't load it.
```bash
python3 {baseDir}/scripts/egress.py quarantine <skill-name> --workspace /path/to/workspace
```
### Unquarantine Skill
Restore a previously quarantined skill.
```bash
python3 {baseDir}/scripts/egress.py unquarantine <skill-name> --workspace /path/to/workspace
```
### Domain Allowlist
Manage a custom domain allowlist. Domains on this list won't be flagged during scans. Built-in safe domains always apply.
```bash
# Show current allowlist (built-in + custom)
python3 {baseDir}/scripts/egress.py allowlist --workspace /path/to/workspace
# Add a domain
python3 {baseDir}/scripts/egress.py allowlist --add api.mycompany.com --workspace /path/to/workspace
# Remove a domain
python3 {baseDir}/scripts/egress.py allowlist --remove api.mycompany.com --workspace /path/to/workspace
```
Custom allowlist is stored in `.egress-allowlist.json` in the workspace root.
### Protect (Full Sweep)
Automated protection sweep: scans all skills, auto-quarantines any with CRITICAL exfiltration indicators, blocks HIGH network calls, and reports results. Recommended for session startup.
```bash
python3 {baseDir}/scripts/egress.py protect --workspace /path/to/workspace
```
Actions taken by protect:
1. Scan all active (non-quarantined) skills
2. **CRITICAL findings** -> quarantine the entire skill
3. **HIGH findings** -> block (comment out) network call lines
4. Report all actions taken with next steps
## What It Detects
| Risk | Pattern |
|------|---------|
| **CRITICAL** | Base64/hex payloads in URLs, pastebin/sharing services, request catchers, dynamic DNS |
| **HIGH** | Network function calls (requests, urllib, curl, wget, fetch), webhook/callback URLs |
| **WARNING** | Suspicious TLDs (.xyz, .tk, .ml), URL shorteners, IP address endpoints |
| **INFO** | Any external URL not on the safe domain list or custom allowlist |
## Exit Codes
- `0` — Clean (or action completed successfully)
- `1` — Warnings / network calls detected (review needed)
- `2` — Critical exfiltration risk detected (action needed)
## No External Dependencies
Python standard library only. No pip install. No network calls. Everything runs locally.
## Cross-Platform
Works with OpenClaw, Claude Code, Cursor, and any tool using the Agent Skills specification.Related Skills
OpenClaw-Finnhub
OpenClaw skill for real-time stock quote, and financials via Finnhub API.
openclaw-nextcloud
Manage Notes, Tasks, Calendar, Files, and Contacts in your Nextcloud instance via CalDAV, WebDAV, and Notes API. Use for creating notes, managing todos and calendar events, uploading/downloading files, and managing contacts.
openclaw-safety-coach
Safety coach for OpenClaw users. Refuses harmful, illegal, or unsafe requests and provides practical guidance to reduce ecosystem risk (malicious skills, tool abuse, secret exfiltration, prompt injection).
openclaw
openclaw
openclaw-spacesuit
**A framework scaffold for OpenClaw workspaces.**
nutrient-openclaw
Document processing for OpenClaw — convert, extract, OCR, redact, sign, and watermark PDFs and Office documents using the Nutrient DWS API. Use when asked to convert documents (DOCX/XLSX/PPTX to PDF, PDF to images or Office formats), extract text or tables from PDFs, apply OCR to scanned documents, redact sensitive information or PII, add watermarks, or digitally sign documents. Triggers on "convert to PDF", "extract text", "OCR this", "redact PII", "watermark", "sign document", or any document processing request.
openclaw-setup
Set up a complete OpenClaw personal AI assistant from scratch using Claude Code. Walks through AWS provisioning, OpenClaw installation, Telegram bot creation, API configuration, Google Workspace integration, security hardening, and all power features. Give this to Claude Code and it handles the rest.
OpenClaw Optimizer Skill
## Overview
openclaw-backup
Enhanced backup and restore for openclaw configuration, skills, commands, and settings. Sync across devices, version control with git, automate backups, and migrate to new machines with advanced compression.
openclaw-trakt
Track and recommend TV shows and movies using Trakt.tv. Use when the user asks for show/movie recommendations, wants to track what they're watching, check their watchlist, or get personalized suggestions based on their viewing history. Requires Trakt.tv account with Pro subscription for full functionality.
OpenClaw Claude Code Skill
## Description
OpenClaw Async Task
## Description