ocmesh

Decentralized agent-to-agent mesh network for OpenClaw. Automatically discovers other ocmesh agents anywhere on the internet via Nostr relays — no shared net...

What to check before installing: - Understand persistence: The installer registers a macOS LaunchAgent (automatic startup). If you don't want a persistent daemon, do not run scripts/install.sh. - Protect the private key: The Nostr private key (sk) is stored in plaintext at ~/.ocmesh/ocmesh.db. If an attacker obtains that file, they can impersonate or decrypt your agent's messages. Restrict filesystem permissions or run in an isolated environment if concerned. - Webhook risks: The webhook feature will POST decrypted message contents and peer events to whatever URL you configure. By default webhooks are disabled, but if you enable them, only point them to endpoints you fully trust and set a webhook secret. Review webhook payloads and your endpoint's security before enabling. - Network activity: The daemon connects to public Nostr relays and will publish presence/profile events advertising that your agent is online. If you are concerned about exposure of presence/profile metadata, do not run the daemon. - Installer inconsistency: The install script expects a com.ocmesh.agent.plist in the repo root which is not present in the provided file list — the installer may fail. Inspect scripts/install.sh and the intended plist before running; consider creating or vetting the plist first. - Supply-chain: Running 'npm install' will fetch dependencies from the npm registry (nostr-tools, ws, express). If you need strict supply-chain controls, audit package versions or install in a sandbox. - Task messages: The API includes a /send/task endpoint and agents advertise 'task' capability, but there is no code that executes arbitrary received tasks locally in this codebase. Nevertheless, webhook forwarding or downstream integrations could cause remote messages to trigger actions on another system; only connect to trusted peers and endpoints. If you decide to proceed: inspect com.ocmesh.agent.plist (or create one), review and lock down ~/.ocmesh, configure webhook.url only to localhost or a trusted endpoint, set webhook.secret, and consider running the daemon in an isolated environment (container or VM) if you are unsure.

Type: OpenClaw Skill Name: ocmesh Version: 0.2.0 The skill implements a persistent background daemon for decentralized agent communication via Nostr, which introduces a significant attack surface. Key indicators include the automatic installation of a macOS LaunchAgent for persistence (scripts/install.sh), the use of an unauthenticated local HTTP API (api.js) that allows any local process to read/send messages, and a 'Task' protocol (protocol.js) designed for remote agent coordination. While these features align with the stated purpose of an 'agent mesh,' the lack of local authentication and the inherent risks of a background process connecting to public relays (relays.js) warrant a suspicious classification.