@opentrust/guards 7.3.10 → 7.3.11

package/agent/command-executor.ts

@@ -15,6 +15,8 @@ export function executeCommand(cmd: RemoteCommand, log: Logger): CommandResult {
   switch (cmd.type) {
     case "install_skill":
       return executeSkillInstall(cmd.payload, log);
+    case "install_custom_skill":
+      return executeCustomSkillInstall(cmd.payload, log);
     case "uninstall_skill":
       return executeSkillUninstall(cmd.payload, log);
     case "update_config":
@@ -44,6 +46,53 @@ function executeSkillInstall(payload: Record<string, unknown> | null, log: Logge
   }
 }
 
+function executeCustomSkillInstall(payload: Record<string, unknown> | null, log: Logger): CommandResult {
+  const skillName = payload?.skillName as string;
+  const content = payload?.content as string;
+  if (!skillName || !content) {
+    return { success: false, error: "Missing skillName or content in payload" };
+  }
+
+  try {
+    const skillsDir = path.join(
+      process.env.OPENCLAW_HOME || path.join(os.homedir(), ".openclaw"),
+      "skills",
+    );
+    const skillDir = path.join(skillsDir, skillName);
+
+    fs.mkdirSync(skillDir, { recursive: true });
+
+    const ext = detectContentFormat(content);
+    const fileName = `skill.${ext}`;
+    fs.writeFileSync(path.join(skillDir, fileName), content, "utf-8");
+
+    log.info(`Command: custom skill "${skillName}" written to ${skillDir}/${fileName}`);
+
+    // Try `openclaw skills install` from local path; fall back to file-only approach
+    try {
+      const output = execSync(`openclaw skills install ${skillDir}`, {
+        encoding: "utf-8",
+        timeout: 120_000,
+        stdio: ["pipe", "pipe", "pipe"],
+      });
+      return { success: true, output: output.trim() };
+    } catch {
+      return { success: true, output: `Custom skill "${skillName}" saved to ${skillDir}/${fileName}` };
+    }
+  } catch (err: any) {
+    const msg = err.message || String(err);
+    log.warn(`Command: custom skill install failed — ${msg}`);
+    return { success: false, error: msg.slice(0, 500) };
+  }
+}
+
+function detectContentFormat(content: string): string {
+  const trimmed = content.trim();
+  if (trimmed.startsWith("{") || trimmed.startsWith("[")) return "json";
+  if (trimmed.startsWith("---") || /^\w+:/m.test(trimmed)) return "yaml";
+  return "md";
+}
+
 function executeSkillUninstall(payload: Record<string, unknown> | null, log: Logger): CommandResult {
   const skillName = payload?.skillName as string;
   if (!skillName) return { success: false, error: "Missing skillName in payload" };

package/openclaw.plugin.json

@@ -2,7 +2,7 @@
   "id": "opentrust-guard",
   "name": "OpenTrust Guard",
   "description": "AI security guard for OpenClaw agents: prompt injection detection, credential scanning, and behavioral monitoring.",
-  "version": "7.3.10",
+  "version": "7.3.11",
   "configSchema": {
     "type": "object",
     "additionalProperties": false,

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@opentrust/guards",
-  "version": "7.3.10",
+  "version": "7.3.11",
   "description": "AI agent security plugin for OpenClaw: prompt injection detection, PII sanitization, and monitoring",
   "type": "module",
   "main": "index.ts",

package/platform-client/types.ts

@@ -111,7 +111,7 @@ export type ToolCallObservationRequest = {
 export type RemoteCommand = {
   id: string;
   agentId: string;
-  type: "install_skill" | "uninstall_skill" | "update_config";
+  type: "install_skill" | "install_custom_skill" | "uninstall_skill" | "update_config";
   payload: Record<string, unknown> | null;
   status: string;
   createdAt: string;