ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Openclaw Workspace Governance Installer

v0.2.9

Install OpenClaw WORKSPACE_GOVERNANCE in minutes. Get guided setup, upgrade checks, migration, and audit for long-running workspaces.

2· 1.3k·4 current·4 all-time
by@adamchanadam

Install

OpenClaw Prompt Flow

Install with OpenClaw

Best for remote or guided setup. Copy the exact prompt, then paste it into OpenClaw for adamchanadam/openclaw-workspace-governance-installer.

Previewing Install & Setup.
Prompt PreviewInstall & Setup
Install the skill "Openclaw Workspace Governance Installer" (adamchanadam/openclaw-workspace-governance-installer) from ClawHub.
Skill page: https://clawhub.ai/adamchanadam/openclaw-workspace-governance-installer
Keep the work scoped to this skill only.
After install, inspect the skill metadata and help me finish setup.
Required binaries: openclaw
Use only the metadata you can verify from ClawHub; do not invent missing requirements.
Ask before making any broader environment changes.

Command Line

CLI Commands

Use the direct CLI path if you want to install manually and keep every step visible.

OpenClaw CLI

Canonical install target

openclaw skills install adamchanadam/openclaw-workspace-governance-installer

ClawHub CLI

Package manager switcher

npx clawhub@latest install openclaw-workspace-governance-installer
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Benign
medium confidence
Purpose & Capability
Name, description, and runtime instructions all describe installing and running an OpenClaw workspace-governance plugin. The only required binary is 'openclaw', which is proportionate to the stated installer purpose.
Instruction Scope
SKILL.md instructs the user to run 'openclaw plugins install ...' and 'openclaw gateway restart' and describes commands the plugin provides (gov_*). It also mentions editing 'openclaw.json' via the plugin's safe-edit command. These are within the governance scope, but they imply the plugin will read/modify OpenClaw platform config — users should review the plugin's behavior before granting it those abilities.
Install Mechanism
The skill is instruction-only (no install spec), and installs the plugin via 'openclaw plugins install @adamchanadam/openclaw-workspace-governance@latest'. That is expected for an installer, but it causes OpenClaw to fetch and install third-party code; verify the plugin source and releases before installing.
Credentials
No environment variables, credentials, or config paths are requested by the skill itself. This is proportionate to an instruction-only installer that delegates actual configuration to the OpenClaw plugin.
Persistence & Privilege
The skill itself is not 'always' and does not request elevated platform settings. However, the installer instructs installing a plugin that will persist inside the OpenClaw instance and may receive privileges there — users should vet the plugin's requested permissions and intended modifications before installing.
Assessment
This skill is coherent: it only tells you how to install a governance plugin using your openclaw CLI. The main risk is the plugin you install, not the skill text. Before installing: 1) review the plugin repository and recent releases (https://github.com/Adamchanadam/OpenClaw-WORKSPACE-GOVERNANCE), 2) inspect the plugin manifest and source code or ask the author for signed releases, 3) test installation in a staging workspace and back up openclaw.json, 4) confirm the plugin's required permissions and that you trust the maintainer, and 5) avoid running install commands on production without an audit. If you cannot audit the plugin, consider treating it as untrusted code.

Like a lobster shell, security has layers — review code before you run it.

Runtime requirements

🚀 Clawdis
Binsopenclaw
latestvk97djj1fapsdmvah4r1e38bgzd83awdd
1.3kdownloads
2stars
59versions
Updated 30m ago
v0.2.9
MIT-0
@adamchanadam
latest
Download

OpenClaw Workspace Governance Installer

Ship safer OpenClaw operations from day one. This installer gives you a repeatable governance path instead of ad-hoc prompt edits.

Why this is popular

  1. Prevents "edit first, verify later" mistakes.
  2. Gives one predictable setup/upgrade/audit flow.
  3. Makes changes traceable for review and handover.
  4. Works for both beginners and production workspaces.

60-second quick start

First-time install:

# 1) Install plugin
openclaw plugins install @adamchanadam/openclaw-workspace-governance@latest
openclaw gateway restart

In OpenClaw chat:

/gov_setup quick

If /gov_setup quick says allowlist is not ready:

/gov_openclaw_json
/gov_setup quick

Already installed (upgrade path):

openclaw plugins update openclaw-workspace-governance
openclaw gateway restart

Then in OpenClaw chat:

/gov_setup quick

If allowlist is not ready:

/gov_openclaw_json
/gov_setup quick

What you get

  1. gov_setup quick|check|install|upgrade — deploy, upgrade, or verify governance in one step.
  2. gov_migrate — align workspace behavior to the latest governance rules after install or upgrade.
  3. gov_audit — verify 12 integrity checks and catch drift before declaring completion.
  4. gov_uninstall quick|check|uninstall — clean removal with backup and restore evidence.
  5. gov_openclaw_json — safely edit platform config (openclaw.json) with backup, validation, and rollback.
  6. gov_brain_audit — review and harden Brain Docs quality with preview-first approval and rollback.
  7. gov_boot_audit — scan for recurring issues and generate upgrade proposals (read-only diagnostic).
  8. gov_apply <NN> — apply a single BOOT upgrade proposal with explicit human approval (Experimental, controlled UAT only).
  9. gov_help — see all commands and recommended entry points at a glance.

Feature maturity (important)

  1. GA flow for production rollout: gov_setup -> gov_migrate -> gov_audit, plus gov_uninstall, gov_openclaw_json, gov_brain_audit, gov_boot_audit.
  2. Experimental flow: gov_apply <NN> remains controlled-UAT scope.
  3. All /gov_* command outputs use branded format: 🐾 header, emoji status indicators (✅/⚠️/❌), structured bullets, and 👉 next-step guidance.

When to use which command

  1. Daily default: gov_setup quick (one-click chain)
  2. After install or upgrade: gov_migrate then gov_audit
  3. Edit platform config safely: gov_openclaw_json
  4. Review Brain Docs: gov_brain_audit
  5. Recurring issue scan: gov_boot_audit
  6. Clean removal: gov_uninstall quick

Who this is for

  1. New OpenClaw users who want a guided install path.
  2. Teams operating long-running workspaces.
  3. Users who need auditable, low-drift maintenance.

Learn more (GitHub docs)

  1. Main docs: https://github.com/Adamchanadam/OpenClaw-WORKSPACE-GOVERNANCE
  2. English README: https://github.com/Adamchanadam/OpenClaw-WORKSPACE-GOVERNANCE/blob/main/README.md
  3. 繁體中文版: https://github.com/Adamchanadam/OpenClaw-WORKSPACE-GOVERNANCE/blob/main/README.zh-HK.md
  4. Governance handbook (EN): https://github.com/Adamchanadam/OpenClaw-WORKSPACE-GOVERNANCE/blob/main/WORKSPACE_GOVERNANCE_README.en.md
  5. Governance handbook (繁中): https://github.com/Adamchanadam/OpenClaw-WORKSPACE-GOVERNANCE/blob/main/WORKSPACE_GOVERNANCE_README.md

Comments

Loading comments...