npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

openclaw-air-trust

v0.2.0

Published

AIR Blackbox trust layer plugin for OpenClaw — EU AI Act compliance with tamper-evident audit trails, consent gating, data tokenization, and prompt injection detection

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

shotwelljshotwellj

Keywords

openclawopenclaw-pluginair-blackboxeu-ai-actcomplianceaudit-trailtamper-evidentconsent-gateinjection-detectiondata-tokenizationai-governanceai-safetytrust-layerhmac-sha256

Readme

openclaw-air-trust

The EU AI Act compliance plugin for OpenClaw — tamper-evident audit trails, consent gating, data tokenization, and prompt injection detection for autonomous AI agents.

npm License: Apache 2.0

Why This Exists

OpenClaw agents can read your email, execute shell commands, send messages, and manage files — autonomously. When something goes wrong, there's no tamper-evident record of what happened, no approval gate for destructive actions, and no protection against prompt injection attacks.

This plugin fixes that. EU AI Act enforcement begins August 2026. This is the compliance layer.

Install

npm install openclaw-air-trust

Then add to your OpenClaw config:

{
  "plugins": ["openclaw-air-trust"]
}

What It Does

| Capability | What It Does | EU AI Act Article | |---|---|---| | Audit Ledger | HMAC-SHA256 tamper-evident chain of every action | Article 12 (Record-Keeping) | | Consent Gate | Blocks destructive tools until user approves | Article 14 (Human Oversight) | | Data Vault | Tokenizes API keys, PII, credentials before they reach the LLM | Article 10 (Data Governance) | | Injection Detector | Scores inbound messages for 15+ prompt injection patterns | Article 15 (Cybersecurity) | | Risk Classifier | Classifies every tool by risk level (CRITICAL/HIGH/MEDIUM/LOW) | Article 9 (Risk Management) | | Compliance Scanner | Checks agent code against all 6 EU AI Act articles | Articles 9-15 |

Plugin Tools

Once installed, these tools are available to your OpenClaw agent:

| Tool | Description | |---|---| | air_audit_status | Get audit chain length, validity, and time range | | air_verify_chain | Verify tamper-evident chain integrity | | air_scan_injection | Scan text for prompt injection patterns | | air_classify_risk | Classify a tool by EU AI Act risk level | | air_export_audit | Export the full audit chain as JSON | | air_compliance_check | Run EU AI Act compliance check on code |

How It Works

Audit Ledger (Article 12)

Every tool call, LLM interaction, consent decision, and injection detection gets appended to a tamper-evident chain:

Entry 1 → hash₁ ──┐
Entry 2 → hash₂ (prevHash = hash₁) ──┐
Entry 3 → hash₃ (prevHash = hash₂) ──┐

Each entry is signed with HMAC-SHA256. Modifying any record breaks the entire chain downstream.

Consent Gate (Article 14)

When the agent tries to call a destructive tool, the consent gate intercepts and sends an approval request. Risk classification is built-in: critical (code execution), high (file writes, deploys), medium (network/email), low (reads).

Data Vault (Article 10)

Before tool arguments or context reaches the LLM, the vault scans for sensitive patterns and replaces them with opaque tokens. 14 built-in patterns: OpenAI/Anthropic/AWS/GitHub/Stripe keys, emails, phone numbers, SSNs, credit cards, connection strings, bearer tokens, private keys, and password assignments.

Injection Detector (Article 15)

Scans inbound messages for 15+ prompt injection patterns: role override, identity hijacking, privilege escalation, safety bypass, jailbreak, data exfiltration, encoding evasion, and more. Three sensitivity levels (low/medium/high) control which patterns are active.

Configuration

{
  "plugins": {
    "openclaw-air-trust": {
      "enabled": true,
      "gatewayUrl": "https://your-air-gateway.example.com",
      "gatewayKey": "your-api-key",
      "consentGateEnabled": true,
      "consentAlwaysRequire": "exec,spawn,shell,deploy",
      "consentRiskThreshold": "high",
      "consentTimeoutMs": 30000,
      "injectionEnabled": true,
      "injectionSensitivity": "medium",
      "injectionBlockThreshold": 0.8,
      "vaultEnabled": true
    }
  }
}

Standalone Usage

You can also use the components directly without OpenClaw:

import { createAirTrustPlugin } from 'openclaw-air-trust/standalone';

const trust = createAirTrustPlugin({
  enabled: true,
  consentGate: { enabled: true, alwaysRequire: ['exec', 'deploy'] },
  injectionDetection: { enabled: true, sensitivity: 'medium', blockThreshold: 0.8 },
});

Part of the AIR Blackbox Ecosystem

| Package | What It Does | |---|---| | air-blackbox-mcp | MCP server for Claude Desktop — 10 compliance tools | | air-langchain-trust | Python trust layer for LangChain agents | | air-crewai-trust | Python trust layer for CrewAI agents | | air-autogen-trust | Python trust layer for AutoGen agents | | openclaw-air-trust | ← You are here |

Learn more at airblackbox.ai

Development

git clone https://github.com/airblackbox/openclaw-air-trust.git
cd openclaw-air-trust
npm install
npm run build
npm test

License

Apache 2.0