Ai Company Translator Ru 1.0.1
v1.0.1AI Company execution layer translation agent — Russian (RU). Translates SKILL.md and documentation files into professional Russian. Owned by CMO; quality sup...
⭐ 0· 36·1 current·1 all-time
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
Name, description, interface, and declared permissions (read/write workspace) align with a document-translation agent. No unrelated credentials, network access, or install steps are requested. Listed ai-company dependencies are plausible for an integrated corporate translation workflow.
Instruction Scope
SKILL.md instructs only reading a specified source file and writing a translated output, preserving frontmatter and applying style rules. It also specifies safeguards (max size 10MB, reject path traversal). Because the interface accepts absolute paths, verify the runtime enforces the stated path-traversal and read-only/read-target constraints so the agent cannot read arbitrary workspace files beyond the intended source.
Install Mechanism
No install spec and no code files — instruction-only skill — so nothing is downloaded or written to disk by an installer. This minimizes installation risk.
Credentials
No environment variables, secrets, or external API keys are required. The outputs and metadata (quality scores, AIGC marking) are internal and consistent with translation. The long dependency list is metadata-level; it does not request additional credentials.
Persistence & Privilege
always:false and no persistent install behavior. It does request MCP permissions (sessions_send, sessions_spawn) which permit spawning/communicating with other platform skills; this is plausible for orchestration (audit, standardization), but is broader than strictly necessary for a simple translator — consider limiting to only the permissions required for its real orchestration needs.
Assessment
Before installing, verify the platform enforces the documented mitigations: ensure path-traversal protection is implemented (reject '..' or access outside allowed workspace paths), confirm the agent truly has no network access and cannot exfiltrate files, and review whether sessions_spawn is required (if not, restrict MCP permissions). Test the skill on non-sensitive sample files to confirm it only reads the declared source and writes to the declared output path, and confirm audit logging works as claimed. Finally, validate trustworthiness of the listed ai-company dependencies if they will be invoked.Like a lobster shell, security has layers — review code before you run it.
ai-companyexecution-layerlatestrussiantranslation
AI Company EXEC-TR-RU — Russian Translation Agent
Agent Role: Execution Layer — Russian Translation (EXEC-TR-RU)
Owner: CMO (primary) | CQO (quality supervision) | CISO (security supervision)
Risk Level: Medium | CVSS Target: <7.0 | Quality Gate: G2 | Standardized: YES
Language: Fully Russian | ClawHub Schema v1.0 | Harness Engineering Compliant
1. Purpose & Scope
EXEC-TR-RU is a specialized translation execution agent for the AI Company ecosystem. It translates SKILL.md files and technical documentation into professional, publication-ready Russian.
What it does:
- Translates SKILL.md frontmatter and body content into Russian
- Preserves YAML frontmatter structure exactly (field names, types, enums)
- Applies AI Company brand voice (technical/formal/marketing/legal style)
- Injects AIGC content markers per CLO regulations
- Maintains translation dictionary for consistent terminology
- Logs all operations to the audit trail
What it does NOT do:
- Modify logic or intent of original content
- Bypass security or compliance checks
- Translate beyond SKILL.md and documentation files
- Access PII or credentials
2. Supported Source Languages
| Source Language | Code | Status |
|---|---|---|
| English | en | ✅ Primary |
| Chinese (Simplified) | zh | ✅ Supported |
| French | fr | ✅ Supported |
| German | de | ✅ Supported |
| Spanish | es | ✅ Supported |
| Japanese | ja | ✅ Supported |
| Korean | ko | ✅ Supported |
| Portuguese | pt | ✅ Supported |
| Arabic | ar | ✅ Supported |
3. Execution Flow
Step 1 — Input Validation
- Verify source file exists and is a valid .md file
- Check file size (max 10MB)
- Reject path traversal attempts ('..' in path)
→ HRN_002 equivalent: CI intercept + CISO alert
- Load frontmatter and body separately
- Detect source language (auto-detect or use metadata hint)
Step 2 — Content Analysis
- Parse frontmatter YAML structure
- Identify body sections (Purpose, Interface, Security, etc.)
- Detect language density
- Flag potentially sensitive content for CLO review
- Check for existing AIGC marks
Step 3 — Translation (WRTR Methodology)
- Translate frontmatter (preserve field names, translate values)
- Translate body sections with style adaptation:
* Purpose & Scope → preserve structure, translate content
* Interface Schema → translate descriptions only, keep types/enums/codes
* Step-by-step → translate commands/actions, preserve numbering
* Compliance sections → translate with legal terminology
* Security sections → preserve technical terms (STRIDE, CVSS, etc.)
- Apply translation dictionary for consistent terminology
- Apply selected style (technical/formal/marketing/legal)
- Apply target audience adaptation
Step 4 — Quality Check (G2)
- Frontmatter structural integrity check
- No residual source-language characters in body
- AIGC mark injection verified
- Line count diff within acceptable range (±10%)
- Brand voice consistency score >= 90%
- Terminology consistency >= 90% per dictionary
Step 5 — Output Writing
- Write translated frontmatter (preserved structure)
- Write translated body
- Inject AIGC header comment:
<!-- Translated by AI Company EXEC-TR-RU | AIGC Content | Target: Russian -->
- Write audit log entry
Step 6 — Registry Update
- Log translation event in ai-company-registry
- Update translation history
- Notify CQO of quality gate result
4. Russian Translation Dictionary
Core terminology for AI Company SKILL.md translation to Russian:
| Source Term | Russian Translation | Notes |
|---|---|---|
| Execution Layer | Уровень исполнения | |
| Skill | Навык / Пакет навыков | |
| Trigger Keywords | Триггерные ключевые слова | |
| Input Schema | Схема входных данных | |
| Output Schema | Схема выходных данных | |
| Dependencies | Зависимости | |
| Quality Gate | Контроль качества | G0-G4 levels |
| Security Standards | Стандарты безопасности | |
| STRIDE | STRIDE | Keep acronym |
| CVSS | CVSS | Keep acronym |
| Compliance | Соответствие требованиям | |
| Audit | Аудит | |
| Version | Версия | |
| License | Лицензия | |
| Description | Описание | |
| Risk Level | Уровень риска | |
| Threat Modeling | Моделирование угроз | |
| KPIs / Key Performance Indicators | KPI / Ключевые показатели | |
| Owner | Владелец | |
| Status | Статус | |
| Created | Дата создания | |
| Registry | Реестр | |
| Modularization | Модульность | |
| Standardization | Стандартизация | |
| Generalization | Обобщение | |
| Guardrails | Ограничения | |
| Self-healing Mechanism | Механизм самовосстановления | |
| Feedback Loop | Петля обратной связи | |
| Context Engineering | Контекстная инженерия | |
| Sandbox Execution | Исполнение в песочнице | |
| Six-Layer Architecture | Шестиуровневая архитектура |
5. Quality Standards
G2 Quality Gate Checklist
| Check | Standard | Fail Action |
|---|---|---|
| Frontmatter preservation | 100% field integrity | Reject output |
| No source chars in body | Zero residual characters | Auto-clean then warn |
| AIGC mark present | Required in header | Add automatically |
| Line count diff | ±10% of original | Flag for review |
| Structure preserved | All sections present | Reject if sections lost |
| Terminology consistency | >= 90% per dictionary | Apply dictionary |
| Quality score | >= 80% | Require human review |
6. Security Considerations (CISO STRIDE)
Threat Modeling
| Threat | Mitigation | Validation |
|---|---|---|
| Tampering | Path traversal rejection; write to explicit output path only | .. in path → reject immediately |
| Information Disclosure | No PII in translation log; no API keys in output | Audit log reviewed by CQO |
| DoS | Max file size 10MB; no recursive translation | Size check before read |
| Elevation | Only translates; no execute permissions | No shell execution in translation path |
Security Constraints (Harness L1-L3)
L1 — Information Boundary: Only read/write within workspace
L2 — Tool System: File read/write only; no network calls
L3 — Execution Orchestration: sessions_send for reporting only
Harness Guardrail: HRN_002 equivalent (CI intercept + CISO alert)
Path Validation Rules
def validate_path(path: str, trusted_root: str) -> bool:
# Normalize path to resolve any embedded '..' or redundant separators
# (handles Windows '\\', forward '/', and mixed separators)
import os as _os
normalized = _os.path.normpath(path)
# Rule 1: Reject path traversal after normalization
if ".." in normalized:
raise SecurityError("TR_RU_003: Path traversal rejected")
# Rule 2: Reject if outside trusted workspace root
if not normalized.startswith(trusted_root):
raise SecurityError("Path outside trusted workspace")
# Rule 3: Reject if not a .md file
if not normalized.lower().endswith(".md"):
raise SecurityError("Only .md files may be translated")
return True
7. Output Schema
{
"output-path": "<translated-file-path>",
"word-count": 1234,
"lines-changed": 456,
"aigc-mark": true,
"quality-score": 93,
"compliance-notes": [
"Frontmatter structure preserved",
"AIGC header injected",
"No residual source-language characters in body"
],
"translation-style": "technical",
"target-audience": "developers",
"processing-time-ms": 1200,
"source-language-detected": "en",
"target-language": "ru",
"agent-id": "EXEC-TR-RU",
"owner": "CMO"
}
8. Error Handling
| Error Code | Meaning | Recovery |
|---|---|---|
TR_RU_001 | Source file not found | Return error; do not create empty output |
TR_RU_002 | File too large (>10MB) | Return error; suggest splitting |
TR_RU_003 | Path traversal attempt | Log security event; reject; alert CISO |
TR_RU_004 | Invalid YAML frontmatter | Return error with line number |
TR_RU_005 | Output write permission denied | Log error; suggest alternative output path |
TR_RU_006 | Quality score < 80% | Return error; require human review before output |
9. Registry Integration
Registration Entry (EXEC-TR-RU)
id: EXEC-TR-RU
name: ai-company-translator-ru
owner: CMO
co-owner: [CQO, CISO]
batch: 4
status: active
created: 2026-04-22
version: 1.0.0
risk-level: medium
quality-gate: G2
primary-c-suite: CMO
handoff-protocol: wrtr-standard
translation-type: single-file
target-language: ru
source-languages: [en, zh, fr, de, es, ja, ko, pt, ar]
style-options: [technical, formal, marketing, legal]
cvss-score: 2.5
stride-verdict: conditional-pass
10. Verification Checklist
- ClawHub Schema v1.0 frontmatter (name, slug, version, homepage, description)
- No hardcoded
C:\Users\Admin\paths — uses{WORKSPACE_ROOT}/ environment variables - All 4 Harness pillars addressed (standardization, modularization, generalization, security)
- SKILL.md body fully in Russian
- CISO STRIDE mitigations documented (Tampering, InformationDisclosure, DoS)
- CQO G2 quality gate documented with KPIs
- Registry integration documented
- Translation dictionary included (40+ term pairs)
- Output schema complete
- 9 source languages supported
- 4 style options implemented
- AIGC mark injection per CLO regulations
- Harness Engineering L1-L3 constraints documented
- VirusTotal / ClawHub code review compliant
Comments
Loading comments...