Exécutez n'importe quel Skill dans Manus
en un clic

Exécutez n'importe quel Skill dans Manus en un clic

$pwd:

xguard-manager

Name: Xguard Manager
Author: civitai

// Read, replace, reset, export, and import XGuard policy options on the orchestrator. Use when you need to inspect current per-label policies for text or prompt scans, ship a refined policy, restore defaults, or back up the policy registry. Read-only by default; destructive operations require an explicit `--writable` flag.

Exécuter dans Manus

$ git log --oneline --stat

stars:7 126

forks:722

updated:15 mai 2026 à 18:57

Explorateur de fichiers

2 fichiers

SKILL.md

readonly

name	xguard-manager
description	Read, replace, reset, export, and import XGuard policy options on the orchestrator. Use when you need to inspect current per-label policies for text or prompt scans, ship a refined policy, restore defaults, or back up the policy registry. Read-only by default; destructive operations require an explicit `--writable` flag.

XGuard Policy Manager

Use this skill to manage XGuard policy options against the orchestrator's /v1/manager/xguard/* admin endpoints.

Each label's policy is the natural-language prompt text + threshold + action that the orchestrator applies when evaluating an XGuard call. See docs/features/scanner-prompt-tuning.md for how this fits into the scanner refinement lifecycle. Phase 4 (refine policy) is the typical use of this skill: fetch the current options, edit a policy, PUT the new version, then track FP/FN rates against the new policyHash in the audit log.

Setup

The skill reads ORCHESTRATOR_ENDPOINT and ORCHESTRATOR_ACCESS_TOKEN from the project .env (or .claude/skills/xguard-manager/.env if you want skill-specific overrides). No additional setup beyond having those env vars set.

Commands

node .claude/skills/xguard-manager/manage.mjs <command> [args] [options]

Command	Description
`get <mode>`	GET current options for the mode (`text` or `prompt`)
`defaults <mode>`	GET hardcoded defaults baked into the orchestrator
`put <mode>`	PUT new options for the mode (requires `--writable` + `--file`)
`reset <mode>`	POST reset back to defaults (requires `--writable`)
`export`	GET bulk export across all modes
`import`	PUT bulk import across all modes (requires `--writable` + `--file`)

Options

Flag	Description
`--writable`	Allow destructive operations (PUT / POST). Required for `put`, `reset`, `import`.
`--file <path>`, `-f <path>`	Read the request body (JSON) from a file. Required for `put` and `import`.
`--output <path>`, `-o <path>`	Save response to a file (instead of printing to stdout).
`--quiet`, `-q`	Only print the response body, no connection headers.
`--timeout <s>`, `-t <s>`	Request timeout in seconds (default: 30).

Examples

# Inspect current prompt-mode options
node .claude/skills/xguard-manager/manage.mjs get prompt

# Save the current prompt-mode options to a file you can edit
node .claude/skills/xguard-manager/manage.mjs get prompt -o /tmp/prompt-policies.json

# See what the defaults look like (useful for scaffolding a new label)
node .claude/skills/xguard-manager/manage.mjs defaults prompt

# Ship an edited policy
node .claude/skills/xguard-manager/manage.mjs put prompt -f /tmp/prompt-policies.json --writable

# Wipe prompt-mode policies back to defaults (destructive)
node .claude/skills/xguard-manager/manage.mjs reset prompt --writable

# Back up the entire policy registry before a risky edit
node .claude/skills/xguard-manager/manage.mjs export -o /tmp/xguard-backup.json

# Restore from a backup
node .claude/skills/xguard-manager/manage.mjs import -f /tmp/xguard-backup.json --writable

Safety

Read-only by default: get, defaults, and export always work without --writable.
Destructive operations require explicit --writable: put, reset, and import change orchestrator state and refuse to run without the flag.
Always ask the user before using --writable: policy changes are global — every subsequent scan will use the new policy text. Confirm the intent before running.
Back up before editing: run export -o backup.json before any non-trivial change so you can import to restore if needed.

Typical workflow for refining a policy (Phase 4)

# 1. Snapshot current state for safe rollback
node .claude/skills/xguard-manager/manage.mjs export -o /tmp/xguard-backup-$(date +%Y%m%d).json

# 2. Pull the current options for the mode you're editing
node .claude/skills/xguard-manager/manage.mjs get prompt -o /tmp/prompt-current.json

# 3. Edit /tmp/prompt-current.json with the refined policy text

# 4. Ship it (after user confirms)
node .claude/skills/xguard-manager/manage.mjs put prompt -f /tmp/prompt-current.json --writable

# 5. Track FP/FN rate of new policyHash via the audit log + focused review

Why this is separate from the postgres-query / clickhouse-query skills

Those query the audit data (verdicts, scores, matched terms). This skill manages the policy itself — the prompt text the orchestrator hands to XGuard. A typical tuning loop uses both: query data to identify FP patterns, edit the policy here, then re-query after new scans land under the new policyHash.

related-skills.json

même dépôt

add-generation-support.md

from "civitai/civitai"

Wire an existing ecosystem into the generation system. Adds generation support to basemodel.constants.ts, creates graph and handler files, and wires them into the ecosystem discriminator, workflow config, and router. Use after add-ecosystem when you need the ecosystem to show up in the generation form. Always checks @civitai/client for ecosystem-specific types before writing the handler.

2026-05-277.1k

write-model-description.md

from "civitai/civitai"

Draft a model description for the CivitaiOfficial account when mirroring a third-party model on civitai.com or civitai.red. Use when the user is publishing or rewriting a mirrored model page (e.g. Sulphur, HappyHorse, Wan, ACE-Step) and wants a structured, properly-credited description rather than a one-line stub. Produces HTML ready to paste into the Civitai rich-text editor.

2026-05-277.1k

postgres-query.md

from "civitai/civitai"

Run PostgreSQL queries for testing, debugging, and performance analysis. Use when you need to query the database directly, run EXPLAIN ANALYZE, compare query results, or test SQL optimizations. Always uses read-only connections unless explicitly directed otherwise.

2026-04-307.1k

add-prompt-enhancement-guide.md

from "civitai/civitai"

Author a prompt-enhancement system prompt for a new ecosystem and register/update it on the orchestrator's prompt-analysis service. Use when onboarding a new ecosystem (e.g. happyhorse, a new Flux variant, a new Wan video version) and the user provides the ecosystem key plus a reference link, model card, or description. Produces a guide that mirrors the structure and tone of existing ecosystem guides so the prompt-analysis tool behaves consistently.

2026-04-297.1k

civitai-orchestration.md

from "civitai/civitai"

Query and explore Civitai Orchestration workflows, jobs, and results. Use for analyzing image/video generation jobs, viewing job results, searching by workflow ID, job ID, user, or date range.

2026-04-247.1k

dev-server.md

from "civitai/civitai"

Manage Next.js dev servers across worktrees. Start, stop, and read logs from dev servers. Agents can access logs from any running session, regardless of who started it.

2026-04-227.1k

package.json

"author": "civitai"

"repository": "civitai/civitai"

Ouvrir le dépôt GitHub Voir les dépôts du créateur

$ install --global

$ download --local

Exécuter dans Manus

$ useful --forSOC

Analystes en sécurité de l'informationProfessions informatiques et mathématiques15-1212L4

name	xguard-manager
description	Read, replace, reset, export, and import XGuard policy options on the orchestrator. Use when you need to inspect current per-label policies for text or prompt scans, ship a refined policy, restore defaults, or back up the policy registry. Read-only by default; destructive operations require an explicit `--writable` flag.

XGuard Policy Manager

Use this skill to manage XGuard policy options against the orchestrator's /v1/manager/xguard/* admin endpoints.

Setup

Commands

node .claude/skills/xguard-manager/manage.mjs <command> [args] [options]

Command	Description
`get <mode>`	GET current options for the mode (`text` or `prompt`)
`defaults <mode>`	GET hardcoded defaults baked into the orchestrator
`put <mode>`	PUT new options for the mode (requires `--writable` + `--file`)
`reset <mode>`	POST reset back to defaults (requires `--writable`)
`export`	GET bulk export across all modes
`import`	PUT bulk import across all modes (requires `--writable` + `--file`)

Options

Flag	Description
`--writable`	Allow destructive operations (PUT / POST). Required for `put`, `reset`, `import`.
`--file <path>`, `-f <path>`	Read the request body (JSON) from a file. Required for `put` and `import`.
`--output <path>`, `-o <path>`	Save response to a file (instead of printing to stdout).
`--quiet`, `-q`	Only print the response body, no connection headers.
`--timeout <s>`, `-t <s>`	Request timeout in seconds (default: 30).

Examples

# Inspect current prompt-mode options
node .claude/skills/xguard-manager/manage.mjs get prompt

# Save the current prompt-mode options to a file you can edit
node .claude/skills/xguard-manager/manage.mjs get prompt -o /tmp/prompt-policies.json

# See what the defaults look like (useful for scaffolding a new label)
node .claude/skills/xguard-manager/manage.mjs defaults prompt

# Ship an edited policy
node .claude/skills/xguard-manager/manage.mjs put prompt -f /tmp/prompt-policies.json --writable

# Wipe prompt-mode policies back to defaults (destructive)
node .claude/skills/xguard-manager/manage.mjs reset prompt --writable

# Back up the entire policy registry before a risky edit
node .claude/skills/xguard-manager/manage.mjs export -o /tmp/xguard-backup.json

# Restore from a backup
node .claude/skills/xguard-manager/manage.mjs import -f /tmp/xguard-backup.json --writable

Safety

Read-only by default: get, defaults, and export always work without --writable.
Destructive operations require explicit --writable: put, reset, and import change orchestrator state and refuse to run without the flag.
Always ask the user before using --writable: policy changes are global — every subsequent scan will use the new policy text. Confirm the intent before running.
Back up before editing: run export -o backup.json before any non-trivial change so you can import to restore if needed.

Typical workflow for refining a policy (Phase 4)

# 1. Snapshot current state for safe rollback
node .claude/skills/xguard-manager/manage.mjs export -o /tmp/xguard-backup-$(date +%Y%m%d).json

# 2. Pull the current options for the mode you're editing
node .claude/skills/xguard-manager/manage.mjs get prompt -o /tmp/prompt-current.json

# 3. Edit /tmp/prompt-current.json with the refined policy text

# 4. Ship it (after user confirms)
node .claude/skills/xguard-manager/manage.mjs put prompt -f /tmp/prompt-current.json --writable

# 5. Track FP/FN rate of new policyHash via the audit log + focused review

xguard-manager

XGuard Policy Manager

Setup

Commands

Options

Examples

Safety

Typical workflow for refining a policy (Phase 4)

Why this is separate from the postgres-query / clickhouse-query skills

Plus depuis ce dépôt

Plus depuis ce dépôt

XGuard Policy Manager

Setup

Commands

Options

Examples

Safety

Typical workflow for refining a policy (Phase 4)

Why this is separate from the postgres-query / clickhouse-query skills