OpenClaw Superpowers: A library of 31 skills addressing security, cost, and reliability pain points

What is openclaw-superpowers?

A developer has built and released openclaw-superpowers, a library of 31 drop-in skills for OpenClaw designed to address top community pain points. The skills are open source and installable with one command.

Installation

The installation process is handled by a script:

git clone https://github.com/ArchieIndian/openclaw-superpowers ~/.openclaw/extensions/superpowers
cd ~/.openclaw/extensions/superpowers && ./install.sh
openclaw gateway restart

The install.sh script handles state directories and cron registration.

Key Skills and Features

Security

• prompt-injection-guard: Scans external content at runtime for 6 injection signal types and blocks on 2+ hits. This addresses the finding that 36% of ClawHub skills have injection payloads baked in, and the existing "vet before install" advice only catches half the attack surface.
• dangerous-action-guard: Adds a human-in-the-loop gate for irreversible actions like git force-push, file deletion, email sends, and API writes. Research indicates this raises OpenClaw's defense rate against adversarial scenarios from 17% to 92%. It includes a 5-minute expiry window for approvals and a full audit trail.
• workspace-integrity-guardian: Hashes critical identity files (SOUL.md, AGENTS.md, MEMORY.md) on first run and checks them weekly. If a file like SOUL.md is fully replaced, it provides a diff and a one-command restore. This guards against silent overwrites by the agent or a bad skill.

Cost Management

• spend-circuit-breaker: Sets a monthly budget cap (e.g., python3 check.py --set-budget 50), sends alerts at 50% and 75%, and at 100% automatically pauses all non-essential cron automations. It reads session JSONL logs to estimate spend from actual token counts, tracking dollars distinct from tokens.
• cron-hygiene: Runs weekly to flag expensive crons. It identifies the cost difference between crons running in main session mode (which re-sends entire conversation history) vs isolated mode, noting a roughly 10x cost difference for a cron every 15 minutes.

Reliability

• loop-circuit-breaker: Tracks normalized (tool, args, error) signatures per session and trips after 2 identical failures (exit code 2), preventing indefinite retries on errors like a read({}) call with no path. This stops silent context draining.
• workspace-integrity-guardian also covers reliability by detecting if a skill corrupts a config file during bad execution.

Developer Experience (DX)

• channel-context-bridge: Writes a compact "resumé card" at session end (what was being worked on, key decisions, next actions). New sessions check for a recent card and inject it as a primer, allowing the user to continue talking seamlessly when switching channels (e.g., from Telegram to a laptop).
• project-onboarding: Crawls a new codebase to detect the stack, build commands, test framework, CI config, and key directories. It generates a PROJECT.md template for validation, which the agent then loads automatically on future sessions in that directory, preventing hallucinated conventions.
• multi-agent-coordinator: For users running 3+ agents in parallel, this skill lives in the orchestrator agent and tracks each sub-agent's last-seen timestamp. It detects timeouts and flags contradicting parallel outputs before merging.
• fact-check-before-trust: Scores each factual claim made by the agent (High/Medium/Low confidence), re-fetches low-confidence ones, and surfaces contradictions before completion. This complements verification-before-completion, which checks if the agent did the task, by checking if what the agent said is true.

The library was developed based on direct feedback from Reddit threads and GitHub issues, targeting issues like runaway API costs, agents executing destructive actions without asking, context loss when switching channels, and SOUL.md getting silently mangled mid-session.