← Back to Skills Marketplace
kcdev001

Keychat

by keychat.io · GitHub ↗ · v1.1.1
cross-platform ⚠ suspicious
628
Downloads
0
Stars
1
Active Installs
6
Versions
Install in OpenClaw
/install keychat
Description
Install Keychat — sovereign E2E encrypted messaging for OpenClaw agents via Signal Protocol over Nostr relays. Use when the user wants to add Keychat or set...
README (SKILL.md)

Install Keychat

openclaw plugins install @keychat-io/keychat
openclaw gateway restart

Supported platforms: macOS (ARM/x64), Linux (x64/ARM64).

The plugin automatically downloads the bridge binary, configures channels.keychat in openclaw.json, and generates a new Nostr identity on first start.

The agent will send its Keychat ID (npub1...), contact link, and QR code to the user's active chat after first install.

Security Warnings

The scanner may show two warnings during install. Both are expected:

  • bridge-client.ts — Spawns a Rust sidecar for Signal Protocol and MLS Protocol encryption (Keychat's crypto is implemented in Rust, needs bridging to Node.js)
  • keychain.ts — Stores identity mnemonics in the OS keychain (macOS Keychain / Linux libsecret) for security

Upgrade

Tell the agent "upgrade keychat" in any chat, or manually:

openclaw plugins install @keychat-io/keychat@latest
openclaw gateway restart

Connect

After install, the user can add the agent as a Keychat contact:

  1. Open the Keychat app → tap Add Contact
  2. Scan the QR code, or paste the agent's npub
  3. The agent automatically accepts and establishes an encrypted session

The user can also ask the agent "what's my Keychat ID" at any time to get the npub, link, and QR code.

More info: github.com/keychat-io/keychat-openclaw

Usage Guidance
This skill appears to do what it says (installing a Keychat plugin), but it performs sensitive operations: it downloads and executes a native bridge binary, stores private identity mnemonics in your OS keychain, writes config to openclaw.json, and will broadcast the agent's Keychat ID/QR and auto-accept contacts. Before installing: (1) verify the plugin package provenance (inspect the @keychat-io/keychat package and the GitHub repo link provided) and confirm the URL used to fetch the bridge binary; (2) review the plugin code or ask the maintainer where binaries are hosted and whether checksums/signatures are provided; (3) confirm you are comfortable with the agent automatically creating and sharing an identity and auto-accepting contacts (consider disabling auto-accept if possible); (4) consider installing first in a sandbox or test agent; and (5) ensure you understand how to revoke/delete the generated identity and where mnemonics are backed up. If you cannot verify the binary provenance or code, treat the install as higher risk.
Capability Analysis
Type: OpenClaw Skill Name: keychat Version: 1.1.1 The skill automates the installation of a third-party plugin (@keychat-io/keychat) that performs high-risk operations, including spawning a Rust sidecar binary and accessing the OS keychain (macOS Keychain/Linux libsecret). While these actions are documented in SKILL.md as necessary for Signal Protocol encryption and identity management, the execution of external binaries and access to sensitive system credential stores are significant security risks that require verification of the underlying plugin's integrity.
Capability Assessment
Purpose & Capability
Name/description match the runtime instructions: the SKILL tells the agent to install the @keychat-io/keychat plugin and restart the gateway. Automatic configuration of channels.keychat, creation of a Nostr identity, and exposing the agent's Keychat ID/QR to the user are consistent with a messaging plugin.
Instruction Scope
The SKILL.md stays within the claimed purpose (install plugin, restart gateway). It explicitly states that after install the agent will generate an identity, store mnemonics in the OS keychain, and send the agent's npub/QR to the user's active chat and automatically accept contacts — all relevant to messaging but also privacy-sensitive and potentially surprising to users.
Install Mechanism
The skill is instruction-only and runs `openclaw plugins install @keychat-io/keychat`. The SKILL.md warns the plugin will download a 'bridge binary' (Rust sidecar) and spawn it. Because there is no install manifest here describing where that binary is fetched from, the install will cause an external native binary to be written to disk and executed — a higher-risk operation unless the download provenance is verified.
Credentials
No external API keys or env vars are requested (proportionate), but the plugin stores identity mnemonics in the OS keychain (macOS Keychain / Linux libsecret). That requires access to system secrets/storage and is not reflected in the skill's declared requirements; storing/using long-lived cryptographic secrets is sensitive and should be explicitly acknowledged.
Persistence & Privilege
The skill does not request always:true and does not claim elevated platform privileges. It will modify agent configuration (channels.keychat in openclaw.json) and persist identity material in the OS keychain, which is normal for a messaging plugin but results in ongoing presence and the ability to receive messages and accept contacts automatically — a behavior users might want to approve explicitly.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install keychat
  3. After installation, invoke the skill by name or use /keychat
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.1.1
Updated SKILL.md: refined install/upgrade/connect instructions, added security warnings section
v1.0.1
Update install instructions, add security warnings and upgrade guide
v1.2.0
Fix YAML description quoting, update security warnings to 2, correct package name
v0.1.60
Fix YAML frontmatter parse error, update security warnings from 3 to 2
v1.1.0
Add install command to description
v1.0.0
Keychat 1.0.0 initial release - Adds easy installation of Keychat for OpenClaw agents. - Enables E2E encrypted messaging powered by Signal Protocol over Nostr relays. - Supports macOS (ARM/x64) and Linux (x64/ARM64). - Automatically generates a Nostr identity and shares connection details (npub, link, QR code) after install. - Advises expected security warnings during install for transparency.
Metadata
Slug keychat
Version 1.1.1
License
All-time Installs 1
Active Installs 1
Total Versions 6
Frequently Asked Questions

What is Keychat?

Install Keychat — sovereign E2E encrypted messaging for OpenClaw agents via Signal Protocol over Nostr relays. Use when the user wants to add Keychat or set... It is an AI Agent Skill for Claude Code / OpenClaw, with 628 downloads so far.

How do I install Keychat?

Run "/install keychat" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Keychat free?

Yes, Keychat is completely free (open-source). You can download, install and use it at no cost.

Which platforms does Keychat support?

Keychat is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Keychat?

It is built and maintained by keychat.io (@kcdev001); the current version is v1.1.1.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191113 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments