Openclaw Pii Anonymizer Latest
Automation skill for Openclaw Pii Anonymizer Latest.
MIT-0 · Free to use, modify, and redistribute. No attribution required.
⭐ 0 · 31 · 0 current installs · 0 all-time installs
bySeth Blakely@solmas
MIT-0
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
Name/description match the behavior: the script anonymizes input by calling an Ollama model. The script uses curl/jq and a MODEL/OLLAMA_URL env var which are reasonable for this purpose. Minor note: top-level registry metadata lists no required env vars while SKILL.md declares OLLAMA_URL/MODEL and required binaries (curl,jq).
Instruction Scope
SKILL.md and privacy-anonymize.sh stay within scope: they only send provided text to the Ollama chat completions endpoint and return the model's cleaned text. The script does not read arbitrary files or access system credentials; SKILL.md suggests piping MEMORY.md content through the script but the script itself does not read files unless the caller passes them in.
Install Mechanism
No install spec is executed by the platform (instruction-only skill). SKILL.md contains benign guidance to install jq/curl via apt and to pull an Ollama model; there are no downloads from untrusted URLs or archive extraction steps.
Credentials
The only environment variables the tool uses are OLLAMA_URL and MODEL (defaults provided). These are proportional to the function. Caution: SKILL.md/README recommend setting OLLAMA_URL — if a user configures OLLAMA_URL to a remote/untrusted host, sensitive data passed to the script would be sent there. Also note the metadata inconsistency: registry shows no required env vars while SKILL.md declares OLLAMA_URL and bins.
Persistence & Privilege
Skill does not request permanent agent presence (always is false) and does not modify system or other skills' config. It runs only when invoked via the script/commands described.
Assessment
This skill is a small shell wrapper that sends text to an Ollama model to replace PII; it reasonably requires curl and jq and an Ollama endpoint. Before installing: (1) ensure OLLAMA_URL points to a local or trusted Ollama server (default is localhost) — do not set it to an untrusted remote host because the script will transmit whatever text you pass in; (2) confirm curl and jq are available; (3) note the registry metadata mismatch (the skill's SKILL.md declares required env/bins while registry metadata lists none); (4) if you plan to allow autonomous invocation, restrict or review what data the agent will send through this anonymizer to avoid accidental leaks to an external endpoint.Like a lobster shell, security has layers — review code before you run it.
Current versionv1.0.2
Download ziplatest
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
SKILL.md
name: openclaw-pii-anonymizer description: Privacy pipeline for OpenClaw: Scrubs PII (names/emails/paths/IPs) with Ollama before external models (Grok/OpenRouter). Host/VM compatible. Use for memory_search, tool calls, HEARTBEAT.md sanitization. metadata: openclaw: requires: { bins: [jq, curl], env: [OLLAMA_URL] } install: - { id: jq, kind: apt, package: jq } - { id: curl, kind: apt, package: curl } homepage: https://github.com/solmas/openclaw-pii-anonymizer user-invocable: false
OpenClaw PII Anonymizer
Protects MEMORY.md/workspace from leaks: Pipes prompts through Ollama (phi3:mini) → [PERSON]/[PATH]/[EMAIL].
Usage
./privacy-anonymize.sh "Seth at /home/derenger email@example.com"
→ "[PERSON] at [PATH] [EMAIL]"
Integration
- HEARTBEAT.md:
Task: ./privacy-anonymize.sh "$(memory_get MEMORY.md)" - Cron: Sanitize before web_search/exec.
- OLLAMA_URL:
localhost:11434(VM) or10.0.2.2:11434(host).
Install Ollama Model
ollama pull phi3:mini
Files
privacy-anonymize.sh: Core script.
Files
3 totalSelect a file
Select a file to preview.
Comments
Loading comments…