ClawHub

Moses Modes

v1.0.3

MO§ES™ Governance Modes — Injects behavioral constraints from the active mode into all agent prompts. 8 modes: high-security, high-integrity, creative, resea...

0· 234·1 current·1 all-time
byburnmydays@sunrisesillneversee
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
medium confidence
Purpose & Capability
Name/description match behavior: the skill injects governance constraints and reads the declared state file (~/.openclaw/governance/state.json). The SKILL.md declares the moses-governance dependency for /govern operations; no unrelated binaries, credentials, or config paths are requested.
Instruction Scope
Instructions are narrowly scoped to loading the active mode and applying the listed constraints. However several modes direct the agent to "log full reasoning chain" or "maintain growth log," which implies retention of chain‑of‑thought and internal reasoning. That has potential privacy/exfiltration implications and the SKILL.md is vague about where/what is logged and how long logs are retained.
Install Mechanism
Instruction-only skill with no install spec and no code files — lowest install risk. Nothing is downloaded or executed on install based on provided metadata.
Credentials
No environment variables, credentials, or unrelated config paths are requested. The single filesystem access (stateDirs: ~/.openclaw/governance) is proportional to the declared purpose, but you should confirm what files are read/written (especially logs) and whether other skills can access the same state/logs.
Persistence & Privilege
The skill is not set to always:true and is user-invocable — appropriate for governance. Still, its design to 'inject constraints into all agent prompts' gives it global effect over agent behavior; combined with retained logs or chain-of-thought recording this increases blast radius. No evidence it modifies other skills' configurations.
Assessment
This skill appears to be what it says (a governance mode injector), but before installing: 1) Confirm the trusted source of the moses-governance bundle and the procedure for setting state (init_state.py). 2) Ask where "logs" and the "reasoning chain" are stored, how long they are retained, and who/what can read them — chain-of-thought may include sensitive data. 3) Test the mode behavior in a sandboxed agent to see exactly how it modifies prompts and whether it writes files beyond the declared stateDir. 4) Note the small metadata/version mismatch in SKILL.md vs registry; prefer skills with a clear homepage/source and documented release artifacts.

Like a lobster shell, security has layers — review code before you run it.

latestvk97faybvhbfmat2h3tzc52dck983yd1h

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🎛️ Clawdis

Comments