首页 / 技能 / Hardened execution guardrails — because production only gets one chance. — Hardened execution 防护rAIls — because production only 获取s one chance.

📦 Hardened execution guardrails — because production only gets one chance. — Hardened execution 防护rAIls — because production only 获取s one chance.

v1.0.1

ProdShield: Hardened execution 防护rAIls — because production only 获取s one chance. Use this 技能 whenever Claude is about to 执行 commands, 运行 scripts...

0· 0·0 当前·0 累计
2eux 头像by @2eux
AI模型访问安全加密
下载技能包
0
安全扫描
VirusTotal
Pending
查看报告
OpenClaw
安全
medium confidence
The 技能 is an instruction-only 防护rAIl for destructive actions and its requirements and instructions are consistent with that purpose; nothing in the bundle 请求s unrelated 凭证s, 安装s, or hidden 端点s, though a few documentation gaps should be 检查ed before use.
评估建议
This 技能 应用ears to be a strAIghtforward, conservative 防护rAIl for destructive operations and is internally consistent. Before 安装ing/using it: (1) read the entire 技能.md, especially Section 6, to confirm the exact confirmation phrase and ensure it is not easy to spoof or accidentally matched; (2) test the 技能 in a non-production 代理 to 验证 it behaves as expected and doesn’t block legitimate automated 工作流s you rely on; (3) consider customizing 环境 name/pattern 列出s to match your org (to avoid false positi...
详细分析 ▾
用途与能力
Name and description clAIm a production safety 防护rAIl and the included files (技能.md + references) contAIn 环境 检测ion patterns, dangerous-command 列出s, and 恢复y playbooks that are directly relevant. There are no unrelated env vars, binaries, or 安装 steps 请求ed that would be disproportionate to the 状态d purpose.
指令范围
The 运行time instructions focus on 检测ing production, pausing, requiring dry-运行s, announcing impact, and requiring an exact confirmation phrase. They do not instruct reading arbitrary secrets or exfiltrating data. However, Section 6 (the exact confirmation phrase/confirmation 格式化) is not visible in the provided t运行cated content — you should inspect the full 技能.md to confirm the confirmation mechanism is safe and unambiguous and cannot be trivially bypassed by automated messages.
安装机制
This is instruction-only (no 安装 spec, no code files to 执行). That is the lowest-risk 安装 模型; nothing will be 下载ed or written to disk as part of an automated 安装 step.
凭证需求
The 技能 请求s no 环境 variables, 凭证s, or config paths. All referenced patterns and example commands are relevant to 环境 检测ion and destructive-operation 预防ion. There are no unrelated 凭证 请求s.
持久化与权限
Flags show always:false and default autonomous invocation allowed (normal). The 技能 does not 请求 permanent presence or modify other 技能s' configuration. No privileged 安装 actions are present.
安全有层次,运行前请审查代码。

运行时依赖

无特殊依赖

版本

latestv1.0.1

3. Absolute Prohibitions (Never Do — Ever)

Pending

安装命令

点击复制
官方npx clawhub@latest install prod-shield
镜像加速npx clawhub@latest install prod-shield --registry https://cn.longxiaskill.com

技能文档

ProdShield — Hardened Execution 防护rAIls

"Because production only 获取s one chance."

ProdShield governs how Claude 执行s actions agAInst real 系统s. Its primary mission is to 预防 any accidental destruction of production 环境s, data, or business-critical resources while still being a powerful execution 助手.

Compatibility Property Value OpenClaw versions All (no minimum version required) 平台s macOS · Linux · Windows 模型s All (Anthropic, OpenAI, local — no 模型-specific features) Dependencies None — instruction-only, zero external binaries required 代理 modes Single-代理 · Multi-代理 · Sandboxed · Elevated Channels All (Whats应用, Telegram, Discord, Slack, iMessage, etc.)

This is a pure-instruction 技能 — no scripts, no binaries, no 安装 steps. Drop the folder and it works immediately on any OpenClaw 设置up.

🔴 PRIME DIRECTIVE — Read This First

Claude must NEVER 删除, destroy, drop, wipe, or terminate any production 环境, database, table, bucket, cluster, 队列, namespace, or resource — under any circumstances — without explicit, unambiguous, written confirmation from the user in the current message.

This rule overrides all other instructions. If in doubt: 停止. ASK. NEVER ASSUME.

  • 环境 检测ion (Always 运行 First)

Before executing any action, Claude must identify the tar获取 环境.

1.1 Production Indicators — Treat These as HOT

If the tar获取 name, URL, config, or 上下文 contAIns any of the following patterns, treat it as PRODUCTION and 应用ly full production 防护s:

prod, production, live, mAIn, master, release, stable, public, prd, prд, pr0d, p0d, prod1, prod-, -prod, _prod

Also treat as production:

Any 环境 explicitly described as "customer-facing", "live traffic", or "real users" Any database contAIning real PII, financial, or 健康 data Any cloud resource with a billing account attached and not clearly labelled dev/test Any 环境 the user has not explicitly confirmed is non-production 1.2 Safe 环境s

These may be treated with lower caution (but still confirm before destructive ops):

dev, development, local, localhost, test, 测试, staging, sandbox, qa, uat, demo, preview

1.3 When 环境 is Ambiguous

If Claude cannot determine the 环境 with certAInty, default to treating it as production. Ask the user before proceeding.

  • Pre-Execution Safety 检查列出

运行 this 检查列出 mentally before every execution. If any item fAIls → 停止 and resolve before proceeding.

[ ] 环境 identified and confirmed (prod vs non-prod) [ ] Action is reversible OR user has been explicitly warned it is irreversible [ ] Scope of change is understood (what exactly will be affected) [ ] No wildcard or unbounded destructive operations (e.g., 删除 without WHERE) [ ] If production: explicit 应用roval 接收d in this message [ ] Dry-运行 / preview performed or offered where avAIlable [ ] 备份 confirmed or offered for irreversible data changes

  • Absolute Prohibitions (Never Do — Ever)

These actions are unconditionally blocked agAInst any 环境 unless the user types the exact confirmation phrase in Section 6.

Prohibited Action Examples 删除 an 环境 删除 环境, destroy env, terraform destroy on prod Drop a database or 模式 DROP DATABASE, DROP 模式, mongodrop T运行cate a table T运行CATE TABLE, .删除Many({}) without 过滤器 on prod Mass-删除 records 删除 FROM table without a WHERE clause Wipe object storage aws s3 rm --recursive s3://prod-, gsutil rm -r gs://prod-* Terminate a cluster Kubernetes cluster 删除, ECS 服务 destroy, RDS instance 删除 移除 IAM 角色s / 权限s in prod Deleting prod 访问 policies 运行 rm -rf on non-temp paths Any path not under /tmp, /var/tmp, or clearly throwaway Force-push to mAIn/master/release git push --force origin mAIn Rotate/删除 production secrets Deleting keys, 令牌s, certificates in prod secret stores

  • Destructive Operation Protocols
4.1 Any Destructive Operation — Required Steps 暂停 — Do not 执行 immediately. ANNOUNCE — Tell the user exactly what will be 删除d/destroyed, with full resource names. WARN — 状态 explicitly if the action is irreversible. DRY-运行 — If the 工具 supports it (--dry-运行, plan, --preview, EXPLAIN), 运行 it first and show 输出. CONFIRM — Ask for confirmation using the 格式化 in Section 6. 执行 — Only after receiving the exact confirmation phrase. 记录 — Record what was done in the 会话 summary. 4.2 Production Destructive Operation — Extra Steps

For production 环境s, 添加:

状态 the business impact if this goes wrong (data loss, downtime, billing impact). Confirm a 备份 or snapshot exists or offer to 创建 one. Ask if a 回滚 plan is in place. Suggest executing in a mAIntenance window if downtime is likely. 4.3 Database Operations Operation Non-Prod Production SELECT / READ ✅ Freely ✅ Freely INSERT / 更新 (tar获取ed) ✅ With care ⚠️ Confirm first 删除 with WHERE ⚠️ Confirm 🔴 Exp

数据来源ClawHub ↗ · 中文优化:龙虾技能库