Local Python orchestration skill: multi-agent workflows via shared blackboard file, permission gating, token budget scripts, and persistent project context....
Real data. Real impact.
Emerging
Developers
Per week
Open source
Skills give you superpowers. Install in 30 seconds.
Scope: The bundled Python scripts (
) make no network calls, use only the Python standard library, and have zero third-party dependencies. Tokens are UUID-based (scripts/*.py) stored ingrant_{uuid4().hex}. Audit logging is plain JSONL (data/active_grants.json).data/audit_log.jsonl
Data-flow notice: This skill does NOT implement, invoke, or control
. That is a host-platform built-in (OpenClaw runtime). The orchestration instructions below describe when to call the platform'ssessions_sendafter budget checks pass — but the actual network call, model endpoint, and data transmission are entirely the host platform's responsibility. If you need to prevent external network calls, disable or reroutesessions_sendin your platform settings before installing this skill.sessions_send
PII / sensitive-data warning: The
field in permission requests and the audit log (justification) store free-text strings provided by agents. Do not include PII, secrets, or credentials in justification text. Consider restricting file permissions ondata/audit_log.jsonlor running this skill in an isolated workspace.data/
No pip install required. All 6 scripts use Python standard library only — zero third-party packages.
Note on
: The file exists for documentation purposes only — it lists the stdlib modules used and has no required packages. All listed deps are commented out as optional. You do not need to runrequirements.txt.pip install -r requirements.txt
# Prerequisite: python3 (any version ≥ 3.8) python3 --versionThat's it. Run any script directly:
python3 scripts/blackboard.py list python3 scripts/swarm_guard.py budget-init --task-id "task_001" --budget 10000
Optional: for cross-platform file locking on Windows production hosts
pip install filelock # only needed if you see locking issues on Windows
The
data/Multi-agent coordination system for complex workflows requiring task delegation, parallel execution, and permission-controlled access to sensitive APIs.
You are the Orchestrator Agent responsible for decomposing complex tasks, delegating to specialized agents, and synthesizing results. Follow this protocol:
When you receive a complex request, decompose it into exactly 3 sub-tasks:
┌─────────────────────────────────────────────────────────────────┐ │ COMPLEX USER REQUEST │ └─────────────────────────────────────────────────────────────────┘ │ ▼ ┌─────────────────────┼─────────────────────┐ │ │ │ ▼ ▼ ▼ ┌───────────────┐ ┌───────────────┐ ┌───────────────┐ │ SUB-TASK 1 │ │ SUB-TASK 2 │ │ SUB-TASK 3 │ │ data_analyst │ │ risk_assessor │ │strategy_advisor│ │ (DATA) │ │ (VERIFY) │ │ (RECOMMEND) │ └───────────────┘ └───────────────┘ └───────────────┘ │ │ │ └─────────────────────┼─────────────────────┘ ▼ ┌───────────────┐ │ SYNTHESIZE │ │ orchestrator │ └───────────────┘
Decomposition Template:
TASK DECOMPOSITION for: "{user_request}"Sub-Task 1 (DATA): [data_analyst]
- Objective: Extract/process raw data
- Output: Structured JSON with metrics
Sub-Task 2 (VERIFY): [risk_assessor]
- Objective: Validate data quality & compliance
- Output: Validation report with confidence score
Sub-Task 3 (RECOMMEND): [strategy_advisor]
Objective: Generate actionable insights
Output: Recommendations with rationale
CRITICAL: Before EVERY
sessions_send# ALWAYS run this BEFORE sessions_send python {baseDir}/scripts/swarm_guard.py intercept-handoff \ --task-id "task_001" \ --from orchestrator \ --to data_analyst \ --message "Analyze Q4 revenue data"
Decision Logic:
IF result.allowed == true: → Proceed with sessions_send → Note tokens_spent and remaining_budget ELSE: → STOP - Do NOT call sessions_send → Report blocked reason to user → Consider: reduce scope or abort task
Before returning final results to the user:
# Step 1: Check all sub-task results on blackboard python {baseDir}/scripts/blackboard.py read "task:001:data_analyst" python {baseDir}/scripts/blackboard.py read "task:001:risk_assessor" python {baseDir}/scripts/blackboard.py read "task:001:strategy_advisor"Step 2: Validate each result
python {baseDir}/scripts/swarm_guard.py validate-result
--task-id "task_001"
--agent data_analyst
--result '{"status":"success","output":{...},"confidence":0.85}'Step 3: Supervisor review (checks all issues)
python {baseDir}/scripts/swarm_guard.py supervisor-review --task-id "task_001"
Step 4: Only if APPROVED, commit final state
python {baseDir}/scripts/blackboard.py write "task:001:final"
'{"status":"SUCCESS","output":{...}}'
Verdict Handling:
| Verdict | Action |
|---|---|
| Commit and return results to user |
| Review issues, fix if possible, then commit |
| Do NOT return results. Report failure. |
Every agent in the swarm operates with three memory layers, each with a different scope and lifetime:
| Layer | Name | Lifetime | Managed by |
|---|---|---|---|
| 1 | Agent context | Ephemeral — current task only | Platform (per-session) |
| 2 | Blackboard | TTL-scoped — shared across agents | |
| 3 | Project context | Persistent — survives all sessions | |
Each agent's own context window: the current task instructions, conversation history, and immediate working memory. Managed automatically by the OpenClaw/LLM platform. Nothing to configure.
A shared markdown file (
swarm-blackboard.mdscripts/blackboard.pyA JSON file (
data/project-context.jsonpython {baseDir}/scripts/context_manager.py init \ --name "MyProject" \ --description "Multi-agent workflow automation" \ --version "1.0.0"
python {baseDir}/scripts/context_manager.py inject
Copy the output block to the top of your agent's system prompt. Every agent that receives this block shares the same long-term project awareness.
python {baseDir}/scripts/context_manager.py update \ --section decisions \ --add '{"decision": "Use atomic blackboard commits", "rationale": "Prevent race conditions in parallel agents"}'
# Mark a milestone complete python {baseDir}/scripts/context_manager.py update \ --section milestones --complete "Ship v2.0"Add a planned milestone
python {baseDir}/scripts/context_manager.py update
--section milestones --add '{"planned": "Integrate vector memory"}'
python {baseDir}/scripts/context_manager.py update \ --section stack \ --set '{"language": "Python", "runtime": "Python 3.11", "framework": "SwarmOrchestrator"}'
python {baseDir}/scripts/context_manager.py update \ --section banned \ --add "Direct database writes from agent scripts (use permission gating)"
Always initialize a budget before any multi-agent task:
python {baseDir}/scripts/swarm_guard.py budget-init \ --task-id "task_001" \ --budget 10000 \ --description "Q4 Financial Analysis"
Platform note:
,sessions_list, andsessions_sendare OpenClaw host platform built-ins — they are part of the OpenClaw runtime, not provided or invoked by this skill's Python scripts. This skill only runs localsessions_historycommands. The guidance below describes how to combine the platform's session tools with this skill's budget guard.python scripts/*.py
First check budget, then use the OpenClaw platform operation:
# 1. Check budget (this skill's Python script) python {baseDir}/scripts/swarm_guard.py intercept-handoff \ --task-id "task_001" --from orchestrator --to data_analyst \ --message "Analyze Q4 revenue data"2. If allowed, delegate using the OpenClaw platform tool (not this skill):
sessions_list → see available sessions/agents
sessions_send → send task to another session
sessions_history → check results from delegated work
Example delegation prompt:
After running swarm_guard.py intercept-handoff and getting result.allowed == true, use the OpenClaw sessions_send platform tool to ask the data_analyst session: "Analyze Q4 revenue trends from the SAP export data and summarize key insights"
Before accessing SAP or Financial APIs, evaluate the request:
# Run the permission checker script python {baseDir}/scripts/check_permission.py \ --agent "data_analyst" \ --resource "DATABASE" \ --justification "Need Q4 invoice data for quarterly report" \ --scope "read:invoices"
The script will output a grant token if approved, or denial reason if rejected.
Read/write coordination state:
# Write to blackboard python {baseDir}/scripts/blackboard.py write "task:q4_analysis" '{"status": "in_progress", "agent": "data_analyst"}'Read from blackboard
python {baseDir}/scripts/blackboard.py read "task:q4_analysis"
List all entries
python {baseDir}/scripts/blackboard.py list
When delegating tasks between agents/sessions:
# Initialize budget (if not already done) python {baseDir}/scripts/swarm_guard.py budget-init --task-id "task_001" --budget 10000Check current status
python {baseDir}/scripts/swarm_guard.py budget-check --task-id "task_001"
Platform note:
is an OpenClaw host platform built-in, not provided by this skill.sessions_list
sessions_list # OpenClaw platform operation — find available agents
Common agent types:
| Agent | Specialty |
|---|---|
| Data processing, SQL, analytics |
| Business strategy, recommendations |
| Risk analysis, compliance checks |
| Coordination, task decomposition |
# This checks budget AND handoff limits before allowing the call python {baseDir}/scripts/swarm_guard.py intercept-handoff \ --task-id "task_001" \ --from orchestrator \ --to data_analyst \ --message "Analyze Q4 data" \ --artifact # Include if expecting output
If ALLOWED: Proceed to Step 4 If BLOCKED: Stop - do not call sessions_send
Include these fields in your delegation:
Platform note:
is an OpenClaw host platform built-in — it is NOT implemented by this skill. This skill only provides the budget guard (sessions_send) that must be run first.swarm_guard.py
# OpenClaw platform operation (not this skill): sessions_send to data_analyst: "[HANDOFF] Instruction: Analyze Q4 revenue by product category Context: Using SAP export from ./data/q4_export.csv Constraints: Focus on top 5 categories only Expected Output: JSON summary with category, revenue, growth_pct [/HANDOFF]"
Platform note:
is an OpenClaw host platform built-in, not provided by this skill.sessions_history
sessions_history data_analyst # OpenClaw platform operation — get the response
CRITICAL: Always check permissions before accessing:
DATABASEPAYMENTSEMAILFILE_EXPORTNote: These are abstract local resource type names used by
. No external API credentials are required or used — all permission evaluation runs locally.check_permission.py
| Factor | Weight | Criteria |
|---|---|---|
| Justification | 40% | Must explain specific task need |
| Trust Level | 30% | Agent's established trust score |
| Risk Assessment | 30% | Resource sensitivity + scope breadth |
# Request permission python {baseDir}/scripts/check_permission.py \ --agent "your_agent_id" \ --resource "PAYMENTS" \ --justification "Generating quarterly financial summary for board presentation" \ --scope "read:revenue,read:expenses"Output if approved:
✅ GRANTED
Token: grant_a1b2c3d4e5f6
Expires: 2026-02-04T15:30:00Z
Restrictions: read_only, no_pii_fields, audit_required
Output if denied:
❌ DENIED
Reason: Justification is insufficient. Please provide specific task context.
| Resource | Default Restrictions |
|---|---|
| DATABASE | |
| PAYMENTS | |
| |
| FILE_EXPORT | |
The blackboard (
swarm-blackboard.md# Swarm Blackboard Last Updated: 2026-02-04T10:30:00ZKnowledge Cache
task:q4_analysis
{"status": "completed", "result": {...}, "agent": "data_analyst"}
cache:revenue_summary
{"q4_total": 1250000, "growth": 0.15}
# Write with TTL (expires after 1 hour) python {baseDir}/scripts/blackboard.py write "cache:temp_data" '{"value": 123}' --ttl 3600Read (returns null if expired)
python {baseDir}/scripts/blackboard.py read "cache:temp_data"
Delete
python {baseDir}/scripts/blackboard.py delete "cache:temp_data"
Get full snapshot
python {baseDir}/scripts/blackboard.py snapshot
For tasks requiring multiple agent perspectives:
Combine all agent outputs into unified result.
Ask data_analyst AND strategy_advisor to both analyze the dataset. Merge their insights into a comprehensive report.
Use when you need consensus - pick the result with highest confidence.
Use for redundancy - take first successful result.
Sequential processing - output of one feeds into next.
TypeScript engine (v4.15.0): These strategies map directly to the
module (FanOutFanIn) which provideslib/fan-out.ts,merge,vote, andfirstSuccessfan-in strategies with concurrency control. For multi-phase workflows with approval gates, seeconsensus(PhasePipeline). For result scoring and threshold filtering, seelib/phase-pipeline.ts(ConfidenceFilter). Matcher-based hooks (lib/confidence-filter.ts) can target specific agents or tools via glob patterns. For sandboxed agent execution, seelib/adapter-hooks.ts(AgentRuntime). For large-scale agent coordination, seelib/agent-runtime.ts(StrategyAgent).lib/strategy-agent.ts
Platform note:
andsessions_sendare OpenClaw host platform built-ins, not provided by this skill. This skill provides only thesessions_historybudget/handoff check that runs before each delegation.swarm_guard.py
# For each delegation below, first run: # python {baseDir}/scripts/swarm_guard.py intercept-handoff --task-id "task_001" --from orchestrator --to <agent> --message "<task>" # Then, if allowed, use the OpenClaw platform tool: 1. sessions_send to data_analyst: "Extract key metrics from Q4 data" 2. sessions_send to risk_assessor: "Identify compliance risks in Q4 data" 3. sessions_send to strategy_advisor: "Recommend actions based on Q4 trends" 4. Wait for all responses via sessions_history 5. Synthesize: Combine metrics + risks + recommendations into executive summary
python {baseDir}/scripts/validate_token.py TOKENEvery sensitive action MUST be logged to
to maintain compliance and enable forensic analysis.data/audit_log.jsonl
Privacy note: Audit log entries contain agent-provided free-text fields (justifications, descriptions). These are stored locally in
and never transmitted over the network by this skill. However, do not put PII, passwords, or API keys in justification strings — they persist on disk. Consider periodic log rotation and restricting OS file permissions on thedata/audit_log.jsonldirectory.data/
The scripts automatically log these events:
permission_grantedpermission_deniedpermission_revokedttl_cleanupresult_validatedresult_rejected{ "timestamp": "2026-02-04T10:30:00+00:00", "action": "permission_granted", "details": { "agent_id": "data_analyst", "resource_type": "DATABASE", "justification": "Q4 revenue analysis", "token": "grant_abc123...", "restrictions": ["read_only", "max_records:100"] } }
# View recent entries (last 10) tail -10 {baseDir}/data/audit_log.jsonlSearch for specific agent
grep "data_analyst" {baseDir}/data/audit_log.jsonl
Count actions by type
cat {baseDir}/data/audit_log.jsonl | jq -r '.action' | sort | uniq -c
If you perform a sensitive action manually, log it:
import json from datetime import datetime, timezone from pathlib import Pathaudit_file = Path("{baseDir}/data/audit_log.jsonl") entry = { "timestamp": datetime.now(timezone.utc).isoformat(), "action": "manual_data_access", "details": { "agent": "orchestrator", "description": "Direct database query for debugging", "justification": "Investigating data sync issue #1234" } } with open(audit_file, "a") as f: f.write(json.dumps(entry) + "\n")
Expired permission tokens are automatically tracked. Run periodic cleanup:
# Validate a grant token python {baseDir}/scripts/validate_token.py grant_a1b2c3d4e5f6List expired tokens (without removing)
python {baseDir}/scripts/revoke_token.py --list-expired
Remove all expired tokens
python {baseDir}/scripts/revoke_token.py --cleanup
Output:
🧹 TTL Cleanup Complete
Removed: 3 expired token(s)
Remaining active grants: 2
Best Practice: Run
--cleanupTwo critical issues can derail multi-agent swarms:
Problem: Agents waste tokens "talking about" work instead of doing it.
Prevention:
# Before each handoff, check your budget: python {baseDir}/scripts/swarm_guard.py check-handoff --task-id "task_001"Output:
🟢 Task: task_001
Handoffs: 1/3
Remaining: 2
Action Ratio: 100%
Rules enforced:
# Record a handoff (with tax checking): python {baseDir}/scripts/swarm_guard.py record-handoff \ --task-id "task_001" \ --from orchestrator \ --to data_analyst \ --message "Analyze sales data, output JSON summary" \ --artifact # Include if this handoff produces output
Problem: One agent fails silently, others keep working on bad data.
Prevention - Heartbeats:
# Agents must send heartbeats while working: python {baseDir}/scripts/swarm_guard.py heartbeat --agent data_analyst --task-id "task_001"Check if an agent is healthy:
python {baseDir}/scripts/swarm_guard.py health-check --agent data_analyst
Output if healthy:
💚 Agent 'data_analyst' is HEALTHY
Last seen: 15s ago
Output if failed:
💔 Agent 'data_analyst' is UNHEALTHY
Reason: STALE_HEARTBEAT
→ Do NOT use any pending results from this agent.
Prevention - Result Validation:
# Before using another agent's result, validate it: python {baseDir}/scripts/swarm_guard.py validate-result \ --task-id "task_001" \ --agent data_analyst \ --result '{"status": "success", "output": {"revenue": 125000}, "confidence": 0.85}'Output:
✅ RESULT VALID
→ APPROVED - Result can be used by other agents
Required result fields:
statusoutputconfidenceBefore finalizing any task, run supervisor review:
python {baseDir}/scripts/swarm_guard.py supervisor-review --task-id "task_001"Output:
✅ SUPERVISOR VERDICT: APPROVED
Task: task_001
Age: 1.5 minutes
Handoffs: 2
Artifacts: 2
Verdicts:
APPROVEDWARNINGBLOCKEDsessions_listThis skill is part of the larger Network-AI project. See the repository for full documentation on the permission system, blackboard schema, and trust-level calculations.
No automatic installation available. Please visit the source repository for installation instructions.
View Installation Instructions
1,500+ AI skills, agents & workflows. Install in 30 seconds. Part of the Torly.ai family.
© 2026 Torly.ai. All rights reserved.