← Back to Skills Marketplace
2008
Downloads
3
Stars
3
Active Installs
2
Versions
Install in OpenClaw
/install skillsign
Description
Sign and verify agent skill folders with ed25519 keys. Detect tampering, manage trusted authors, and track provenance chains (isnād).
Usage Guidance
This skill appears to be what it says: a local ed25519 signer/verifier for skill folders. Before installing or using it, consider the following:
- Inspect the full skillsign.py file yourself (the provided excerpt was truncated here) to confirm there are no network calls or unexpected behavior in the omitted portion.
- Protect private keys: the tool writes unencrypted PEM private keys to ~/.skillsign/keys with 0600 perms. If you need stronger protection, use hardware-backed keys or store privately encrypted keys.
- Revocation and timestamping are local and limited: revocation is local and there is no trusted timestamping authority or immutable chain linking. A compromised private key can sign malicious updates that look legitimate in the local chain.
- Use in a controlled environment: when first verifying third-party skills, run verification in an isolated environment and validate the public key out-of-band (e.g., via the author's published fingerprint) before adding to your trust list.
- Source provenance: the package metadata references a GitHub URL but the registry source is unknown; prefer installing or running code from sources you can vet (e.g., a trusted repository or your own copy).
If you want higher assurance, request the full, untruncated source and check that trust/revocation functions operate only on local files and do not contact external endpoints.
Capability Analysis
Type: OpenClaw Skill
Name: skillsign
Version: 1.1.0
The OpenClaw AgentSkills bundle 'skillsign' is a cryptographic signing and verification tool for skill folders. Its purpose is to enhance security by detecting tampering and verifying author trust using ed25519 keys and SHA-256 hashes. The code correctly implements cryptographic operations, manages keys with appropriate permissions in the user's home directory (`~/.skillsign/`), and performs all actions locally without network communication or access to sensitive environment variables. The `SKILL.md` and `README.md` documentation provides clear, benign instructions for using the tool and does not contain any prompt injection attempts or instructions for malicious behavior against the AI agent.
Capability Assessment
Purpose & Capability
Name/description, SKILL.md, README, and the included Python code all implement signing, verification, trust list management, and provenance chaining for skill folders. There are no requests for unrelated credentials or external services; behavior aligns with stated purpose.
Instruction Scope
Runtime instructions tell the agent to generate keys under ~/.skillsign, create .skillsig/ inside target skill folders, hash files, sign manifests, and manage a local trust store. These actions are exactly what a signing tool needs. Note: the tool reads all files in the provided folder (expected) and writes signature metadata into the folder and the user's home directory.
Install Mechanism
No install spec is present beyond a pip dependency on the well-known 'cryptography' library. There are no remote downloads or unusual installer behavior in the provided files.
Credentials
The skill requests no environment variables, credentials, or system config paths beyond creating/using ~/.skillsign and writing .skillsig directories inside signed folders. Those filesystem accesses are proportional to a signing tool.
Persistence & Privilege
The tool persists keys and a trusted-author list under ~/.skillsign and writes .skillsig/ into target folders. This is expected for its function, but it does create persistent private key files (PEM, unencrypted) in the user's home directory which should be protected. The skill is not always-enabled and does not request elevated or cross-skill config access.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install skillsign - After installation, invoke the skill by name or use
/skillsign - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.1.0
Added key revocation system. New commands: revoke, revoked.
Timestamp-aware verification.
v1.0.0
Initial release - cryptographic signing and verification for agent skill folders using ed25519 keys. Includes support for signing identity generation, folder signing, verification with tampering detection, trust management, and full provenance chain tracking (isnād).
Metadata
Frequently Asked Questions
What is Skillsign — ed25519 Skill Signing?
Sign and verify agent skill folders with ed25519 keys. Detect tampering, manage trusted authors, and track provenance chains (isnād). It is an AI Agent Skill for Claude Code / OpenClaw, with 2008 downloads so far.
How do I install Skillsign — ed25519 Skill Signing?
Run "/install skillsign" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Skillsign — ed25519 Skill Signing free?
Yes, Skillsign — ed25519 Skill Signing is completely free (open-source). You can download, install and use it at no cost.
Which platforms does Skillsign — ed25519 Skill Signing support?
Skillsign — ed25519 Skill Signing is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Skillsign — ed25519 Skill Signing?
It is built and maintained by FELMONON (@felmonon); the current version is v1.1.0.
More Skills