🔥 GitHub Agentic Workflows - Firewall Skill

📋 Purpose

Master the Agentic Workflow Firewall (AWF) - a network firewall for agentic workflows providing L7 (HTTP/HTTPS) egress control using Squid proxy and Docker containers. This skill provides comprehensive expertise in restricting network access to a whitelist of approved domains for AI agents and their MCP servers.

🎯 Core Concepts

What is AWF?

AWF (Agentic Workflow Firewall) is a network security layer that restricts AI agent network access to explicitly approved domains, preventing data exfiltration and unauthorized external communication.

Key Features:

• 🌐 L7 Domain Whitelisting: HTTP/HTTPS traffic control at application layer
• 🔒 Host-Level Enforcement: iptables DOCKER-USER chain for all containers
• 📦 Chroot Mode: Host binaries with network isolation
• 🔑 API Proxy Sidecar: Secure LLM credential management
• ✅ Transparent: Works with existing containers