← Back to Skills Marketplace
573
Downloads
4
Stars
0
Active Installs
2
Versions
Install in OpenClaw
/install volcengine-agent-identity
Description
UserPool login, TIP token, credential hosting, and tool risk approval. Activate when user needs to check identity (whoami/status), log in, list/add credentia...
Usage Guidance
This skill is coherent for identity and credential management and does not request unrelated secrets or installs. Before enabling it, consider: 1) Only enable the plugin if you need agent-hosted credentials or OIDC/TIP flows. 2) Review where credentials will be stored and who can access them; ensure storage is encrypted and access-audited. 3) Pay attention to bindings: binding a provider to an env var lets other tools receive those secrets — restrict which tools/agents can use injected env vars. 4) Keep authz.requireRiskApproval enabled (and avoid allowing the agent to self-approve) so high-risk commands require explicit user approval. 5) Monitor approval logs and periodically review providers and bindings. If you are uncomfortable with an agent having the ability to inject credentials into tool invocations, do not enable this plugin.
Capability Analysis
Type: OpenClaw Skill
Name: volcengine-agent-identity
Version: 0.2.1
The skill is classified as suspicious due to a high-risk vulnerability in the `identity_fetch` tool. Specifically, the `returnValue: true` parameter allows the AI agent to retrieve the raw credential string directly. If an attacker can craft a prompt to trick the agent into calling `identity_fetch` with this parameter for an existing credential, the agent would gain access to the sensitive credential, enabling potential exfiltration. While the skill includes security features like risk checking and explicit instructions against agent self-approval, this specific capability presents a significant attack surface for credential theft via prompt injection.
Capability Assessment
Purpose & Capability
Name, description, and runtime instructions align: the skill is for OIDC login, TIP tokens, credential hosting, and risk approval. It does not request unrelated environment variables or binaries. The declared required config path (plugins.entries.agent-identity.enabled) is appropriate for a plugin of this type.
Instruction Scope
SKILL.md instructs the agent to call identity tools for login, status, fetch, list, and binding operations — this is within scope. It explicitly warns the agent not to self-approve user-initiated slash commands. One notable capability: the skill supports binding credential providers to environment variables for other tools (tool injection). That is a legitimate feature for a credential-hosting plugin, but it is powerful because it enables other tools/commands to receive secrets. The instructions do not ask the agent to read arbitrary host files or unrelated env vars, nor to transmit secrets to unexpected external endpoints.
Install Mechanism
Instruction-only skill with no install spec and no code files — lowest risk from installation perspective. Nothing is written to disk by this skill's manifest.
Credentials
The skill declares no required environment variables or primary credential, which is proportional. However, its functionality includes storing credentials and binding them to environment variables for tool use; while appropriate for identity management, that capability effectively grants the plugin the ability to surface secrets to other tools, so operational controls (who can approve bindings, auditing) matter.
Persistence & Privilege
always is false and model invocation is not disabled (normal). The skill requires enabling in plugin config; it does not demand permanent always-on inclusion or modify other skills' configs. No other elevated persistence or cross-skill access is requested.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install volcengine-agent-identity - After installation, invoke the skill by name or use
/volcengine-agent-identity - Provide required inputs per the skill's parameter spec and get structured output
Version History
v0.2.1
Introduce a new tool that generates agent-identity config snippets (src/tools/identity-config-suggest.ts) and register it in index.ts. Update SKILL.md to document the identity_config_suggest action and usage, and update openclaw.plugin.json and package.json to reflect expanded description and bump version to 0.2.1. The tool returns JSON instructions and identity defaults to help users merge config into openclaw.json (does not modify files automatically).
v0.1.9
UserPool login, TIP token, credential hosting
Metadata
Frequently Asked Questions
What is Volcengine Agent Identity?
UserPool login, TIP token, credential hosting, and tool risk approval. Activate when user needs to check identity (whoami/status), log in, list/add credentia... It is an AI Agent Skill for Claude Code / OpenClaw, with 573 downloads so far.
How do I install Volcengine Agent Identity?
Run "/install volcengine-agent-identity" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Volcengine Agent Identity free?
Yes, Volcengine Agent Identity is completely free (open-source). You can download, install and use it at no cost.
Which platforms does Volcengine Agent Identity support?
Volcengine Agent Identity is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Volcengine Agent Identity?
It is built and maintained by M1a0 (@loveyana); the current version is v0.2.1.
More Skills