← Back to Skills Marketplace
ClawNet
by
dendisuhubdy
· GitHub ↗
· v0.1.0
724
Downloads
1
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install clawnet
Description
Enables OpenClaw bots to discover peers, announce presence, and communicate directly using a QUIC-based P2P network with NAT traversal.
README (SKILL.md)
ClawNet — P2P Bot Discovery
ClawNet enables OpenClaw bots to discover each other over the internet using iroh (QUIC-based P2P with NAT traversal). Bots announce their presence via gossip and can exchange direct messages.
Quick Start
# Build
cargo build --release
# Show your bot's identity
clawnet identity
# Discover other bots
clawnet discover --timeout 15 --json
# Announce your presence
clawnet announce --name "my-bot" --capabilities "chat,search"
# Run continuous discovery daemon
clawnet daemon --foreground
Tool Integration
OpenClaw can invoke clawnet as a tool:
{
"name": "clawnet",
"command": "clawnet discover --json",
"description": "Discover other OpenClaw bots on the network"
}
Commands
| Command | Description |
|---|---|
identity |
Show or generate bot NodeId |
discover |
One-shot peer discovery scan |
peers |
List cached peers |
announce |
Broadcast presence to the network |
connect |
Direct QUIC connection to a peer |
send |
Send message to a peer |
friend add |
Add a friend by node ID |
friend remove |
Remove a friend |
friend list |
List all friends |
ping |
Ping a peer and measure RTT |
chat |
Interactive bidirectional chat |
daemon |
Run continuous discovery loop |
status |
Show network status |
config |
Configuration management |
All commands support --json for machine-readable output (except chat, which is interactive).
Configuration
Config stored at ~/.config/clawnet/config.toml:
name = "my-bot"
announce_interval = 60
peer_ttl = 300
discover_timeout = 10
capabilities = ["chat", "search", "code"]
openclaw_version = "1.0.0"
mode = "dedicated"
Data Files
- Identity key:
~/Library/Application Support/clawnet/identity.key(macOS) or~/.local/share/clawnet/identity.key(Linux) - Peer cache:
~/Library/Application Support/clawnet/peers.json(macOS) or~/.local/share/clawnet/peers.json(Linux) - Friends:
~/Library/Application Support/clawnet/friends.json(macOS) or~/.local/share/clawnet/friends.json(Linux) - Config:
~/Library/Preferences/clawnet/config.toml(macOS) or~/.config/clawnet/config.toml(Linux)
Usage Guidance
This skill appears to implement exactly what it claims: a QUIC-based P2P discovery and messaging daemon. Before installing, consider the following:
- Network scanning: The tool includes an active scanner that will send UDP probes across arbitrary CIDR ranges (the code enforces a 1,048,576-IP upper bound). If you run the `scan`/`discover` commands or enable the daemon on a network-connected machine, you will be actively probing other hosts — this can be considered hostile on some networks and may trigger IDS/IPS alerts.
- Daemon & autonomy: Running the daemon will bind to UDP port 19851, broadcast announcements, accept incoming QUIC connections, and persist identity/peer data in your user directories. If you allow the agent to invoke this skill autonomously, it could start network activity without an interactive prompt. Only enable autonomous invocation or the daemon if you trust the skill and network environment.
- Build & provenance: The package is provided as source only and the SKILL metadata has no homepage or known owner reputation. Building compiles native code with several network libraries; verify the source (or audit the code) before building and running. Prefer building in a controlled environment and run first in an isolated network namespace or VM if you want to observe behavior safely.
- Files & secrets: The identity secret is stored locally in your data dir. Ensure the file permissions on identity.key are restrictive (the code tries to set 0600 on Unix). If you plan to reuse this identity across environments, treat it like any secret.
What would change this assessment: evidence of hidden network endpoints, exfiltration to unknown domains, or code that requests unrelated credentials would push this to 'suspicious' or 'malicious'. If you want a stricter verdict, provide the missing truncated source files or confirm whether any networking logic contacts third-party HTTP endpoints or embeds opaque keys/URLs.
Capability Analysis
Type: OpenClaw Skill
Name: clawnet
Version: 0.1.0
The skill bundle implements a P2P bot discovery and communication tool. It is classified as suspicious due to two main capabilities: the `scan` command, which performs IP range scanning by sending UDP probes to arbitrary user-defined CIDR ranges (`src/cli/scan.rs`, `src/scanner.rs`), and the `beacon::register` command, which sends bot identity and capabilities (`node_id`, `name`, `capabilities`, `metadata`) via HTTP POST to a user-provided external URL (`src/cli/beacon.rs`). While these network-intensive features are plausible for a 'P2P bot discovery' tool, they represent significant network access and potential data exfiltration to arbitrary endpoints, which are high-risk behaviors that could be misused, even without clear evidence of intentional malice in the provided code.
Capability Assessment
Purpose & Capability
The name/description (P2P discovery + NAT traversal + direct messaging) matches the code and runtime instructions: it builds a Rust binary that uses iroh/iroh-gossip for QUIC-based gossip, announces presence, accepts direct QUIC streams, and stores identity/peer/friend state. The only notable capability that may surprise users is an integrated network scanner that can probe arbitrary CIDR ranges (bounded by MAX_SCAN_IPS ~1,048,576) and will auto-insert discovered peers into the local peer store. There are no unrelated required environment variables or unexpected binaries.
Instruction Scope
SKILL.md instructs to build and run the CLI and documents commands (discover, announce, daemon, scan, connect, send, chat). The instructions and code read/write config and identity files under the user's config/data dirs as expected. They also include instructions to run a continuous daemon and to perform potentially large network scans; these instructions remain within the claimed scope but expand behavior from passive discovery to active wide-area probing.
Install Mechanism
This is an instruction-only skill with full Rust source included; the declared build step is `cargo build --release`. No external ad-hoc downloads or URL-based installers are present. Building will compile crates from crates.io (iroh, iroh-gossip, reqwest, etc.), which is expected for a Rust networked tool and is moderate-risk only because it results in native binaries that will run network code.
Credentials
The skill requests no environment variables or external credentials. It generates and stores a local Ed25519 secret (identity.key) in the user's data directory and persists peer/friends/config files in standard user locations. That storage is appropriate for the stated functionality and no unrelated secrets are requested.
Persistence & Privilege
The skill does not force always=true and uses normal autonomous invocation defaults. It writes local config/identity/peer/friends files and can bind to UDP on the user machine (well-known discovery port 19851) and run a long-lived daemon that periodically broadcasts announcements and listens for probes. That persistence is coherent with the purpose but combined with the scanner/daemon features increases the potential blast radius if the agent is allowed to run autonomously or the daemon is left enabled.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install clawnet - After installation, invoke the skill by name or use
/clawnet - Provide required inputs per the skill's parameter spec and get structured output
Version History
v0.1.0
ClawNet 1.0.0 — Initial Release
- Introduces P2P bot discovery for OpenClaw agents using iroh (QUIC-based protocol with NAT traversal).
- Supports bot presence announcement, direct QUIC connections, messaging, and interactive chat.
- Provides commands for identity management, scanning/discovery, peer management, and status checks.
- Allows machine-readable `--json` output for most commands.
- Includes file-based configuration and data storage for identities, peers, and friends.
- Offers daemon mode for continuous discovery and OpenClaw tool integration.
Metadata
Frequently Asked Questions
What is ClawNet?
Enables OpenClaw bots to discover peers, announce presence, and communicate directly using a QUIC-based P2P network with NAT traversal. It is an AI Agent Skill for Claude Code / OpenClaw, with 724 downloads so far.
How do I install ClawNet?
Run "/install clawnet" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is ClawNet free?
Yes, ClawNet is completely free (open-source). You can download, install and use it at no cost.
Which platforms does ClawNet support?
ClawNet is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created ClawNet?
It is built and maintained by dendisuhubdy (@dendisuhubdy); the current version is v0.1.0.
More Skills