🧪 Skills

chitin-moat

Enforce contextual permission boundaries for AI agents based on communication surface. Constrains agent capabilities (exec, file I/O, secrets, messaging) by...

v1.0.0
❤️ 0
⬇️ 138
👁 1
Save📁 Collect
Share

Description

name: chitin-moat description: > Enforce contextual permission boundaries for AI agents based on communication surface. Constrains agent capabilities (exec, file I/O, secrets, messaging) by channel trust level rather than message content, preventing social engineering and prompt injection in group chats. Use when: (1) configuring agent permissions per channel/group, (2) setting up read-only mode for public Discord/Telegram, (3) implementing sovereign/trusted/guarded/observer/silent trust tiers, (4) auditing agent channel permissions, or (5) the user mentions "trust channels", "channel permissions", or "read-only mode."

Chitin Moat

Enforce contextual agent permissions based on where a conversation happens.

Trust Levels

Level Name Capabilities
0 sovereign Full autonomy (1:1 with verified owner)
1 trusted Read/write, scoped tools, no secrets (private known group)
2 guarded Respond on @mention only, no tools (semi-public)
3 observer React only (public channels)
4 silent No interaction (blocked surfaces)

Configuration

Create chitin-trust-channels.yaml in the agent workspace root:

version: "0.1"

owner:
  telegram: "<owner_user_id>"

channels:
  - id: "telegram:<owner_user_id>"
    level: sovereign

  - id: "discord:<server_id>"
    level: guarded
    overrides:
      - channel: "owners-lounge"
        level: trusted
      - channel: "pro-*"
        level: trusted

  - id: "telegram:group:*"
    level: observer

defaults:
  unknown_channel: observer
  unknown_dm: guarded

Setup

  1. Copy the example config: cp references/example-config.yaml chitin-trust-channels.yaml
  2. Edit with your channel IDs and owner identity
  3. Run the validator: python3 scripts/validate_config.py chitin-trust-channels.yaml
  4. Run the audit: python3 scripts/audit_channels.py chitin-trust-channels.yaml

Permission Matrix

See references/permission-matrix.md for the full capability × trust-level matrix.

Scripts

  • scripts/validate_config.py <config> — Validate a trust channels config file
  • scripts/audit_channels.py <config> — Audit current channel bindings against the config and report mismatches
  • scripts/resolve_channel.py <config> <channel_id> — Resolve the trust level for a specific channel ID

Integration with AGENTS.md

Add to the agent's workspace instructions:

## Chitin Moat
Before responding in any channel, resolve the trust level using `chitin-trust-channels.yaml`.
Constrain capabilities to the resolved level. Never escalate beyond the channel ceiling.

Reviews (0)

Sign in to write a review.

No reviews yet. Be the first to review!

Comments (0)

Sign in to join the discussion.

No comments yet. Be the first to share your thoughts!

Compatible Platforms

Links

📂 Source Code

Pricing

Free

Related Configs

🧪 Skill

self-improving-agent

Free

Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...

❤️ 2.0k ⬇️ 218k
🧪 Skill

Self Improving Agent

Free

Captures learnings, errors, and corrections to enable continuous improvement. And also 50+ models for image generation, video generation, text-to-speech, spe...

❤️ 2.0k ⬇️ 206k
🧪 Skill

Find Skills

Free

Search, discover, and install skills from the open agent skills ecosystem to extend agent capabilities for specific tasks or domains.

❤️ 814 ⬇️ 199k
🧪 Skill

Summarize

Free

--- name: summarize description: Summarize URLs or files with the summarize CLI (web, PDFs, images, audio, YouTube). homepage: https://summarize.sh metadata: {"clawdbot":{"emoji":"🧾","requires":{"b

❤️ 609 ⬇️ 160k