Policy Engine

The OpenClaw Policy Engine plugin is designed to enhance security by providing deterministic governance over tool execution. It implements robust features like tool allowlists, deny patterns (e.g., blocking `rm -rf`, `curl|bash`), and path allowlists with canonicalization to prevent path traversal. The documentation explicitly addresses prompt injection as a threat the plugin mitigates and details anti-deadlock measures. While it includes a 'fail-open' policy on internal errors and an `OPENCLAW_POLICY_BYPASS` environment variable for emergency overrides, these are transparently documented design choices for availability and control, not indicators of malicious intent. No evidence of data exfiltration, unauthorized remote control, persistence, or obfuscation was found. The markdown files provide legitimate instructions for configuring a security plugin and do not contain prompt injection attacks against the agent.