gh-aw-firewall
Installation
SKILL.md
🔥 GitHub Agentic Workflows - Firewall Skill
📋 Purpose
Master the Agentic Workflow Firewall (AWF) - a network firewall for agentic workflows providing L7 (HTTP/HTTPS) egress control using Squid proxy and Docker containers. This skill provides comprehensive expertise in restricting network access to a whitelist of approved domains for AI agents and their MCP servers.
🎯 Core Concepts
What is AWF?
AWF (Agentic Workflow Firewall) is a network security layer that restricts AI agent network access to explicitly approved domains, preventing data exfiltration and unauthorized external communication.
Key Features:
- 🌐 L7 Domain Whitelisting: HTTP/HTTPS traffic control at application layer
- 🔒 Host-Level Enforcement: iptables DOCKER-USER chain for all containers
- 📦 Chroot Mode: Host binaries with network isolation
- 🔑 API Proxy Sidecar: Secure LLM credential management
- ✅ Transparent: Works with existing containers