← Back to Skills Marketplace
328
Downloads
0
Stars
1
Active Installs
3
Versions
Install in OpenClaw
/install maiat-trust-api
Description
Trust infrastructure for AI agents. Register your agent, get an on-chain identity, check trust scores, and protect transactions. Use this when your agent nee...
README (SKILL.md)
Maiat — Trust Infrastructure for AI Agents
The trust layer for agentic commerce. One question: "Is this agent trustworthy?"
Skill Files
| File | URL |
|---|---|
| SKILL.md (this file) | https://app.maiat.io/skill.md |
Base URL: https://app.maiat.io/api/v1
Register First
Every agent needs a Maiat Passport — your on-chain identity.
curl -X POST https://app.maiat.io/api/v1/passport/register \
-H "Content-Type: application/json" \
-d '{"ensName": "my-agent", "walletAddress": "0xYourWallet", "type": "agent"}'
Response:
{
"passport": {
"ensName": "my-agent",
"ensFullName": "my-agent.maiat.eth",
"walletAddress": "0x...",
"type": "agent",
"trustScore": 50,
"verdict": "Caution",
"scarabBalance": 10,
"isNew": true,
"erc8004AgentId": 28373
}
}
What You Get
- ENS Name —
yourname.maiat.eth, resolvable on-chain via CCIP-Read, zero gas - ERC-8004 Identity — on-chain agent registration on Base Mainnet
- Trust Score — queryable reputation score (0–100)
- 10 🪲 Scarab Credits — bonus on registration
Parameters
| Field | Required | Description |
|---|---|---|
ensName |
✅ | 3+ chars, lowercase, letters/numbers/hyphens |
walletAddress |
✅ | Valid 0x address |
type |
Optional | "agent" or "human" (default: "human") |
referredBy |
Optional | ENS name of referrer — both get +5 🪲 |
Error Handling
| Status | Meaning | What to Do |
|---|---|---|
| 201 | ✅ Registered | Save your ensName — it's your identity |
| 200 | Already registered | Your passport exists, response contains it |
| 409 | Name taken | Try a different name |
| 429 | Rate limited | Wait 60 seconds, retry |
| 400 | Invalid input | Check ensName (3+ chars, lowercase) and walletAddress (0x...) |
Recommended: Save your passport to memory or config:
{
"ensName": "my-agent",
"ensFullName": "my-agent.maiat.eth",
"walletAddress": "0x..."
}
Portal: https://passport.maiat.io
Decision Tree — What Should Your Agent Do?
I'm an AI agent. Do I need Maiat?
│
├─ I need to VERIFY another agent before transacting
│ → GET /api/v1/agent/{address} → check trustScore + verdict
│ → Score ≥ 60? Proceed. Score \x3C 40? Avoid.
│
├─ I need my OWN identity (for others to verify me)
│ → POST /api/v1/passport/register → get ENS + trust score
│ → Already registered? → GET /api/v1/passport/lookup?q=my-name
│
├─ I want to PROTECT my wallet transactions
│ → npm install @jhinresh/viem-guard
│ → Wraps your wallet — every tx is trust-checked automatically
│
├─ I completed a job and want to REPORT the outcome
│ → POST /api/v1/outcome { jobId, outcome, reporter }
│ → Earns 5 🪲 + improves trust scores for everyone
│
└─ I want to CHECK if a token is safe
→ GET /api/v1/token/{address} → honeypot, tax, liquidity, verdict
Check Trust Before Transacting
Quick Trust Check
curl https://app.maiat.io/api/v1/agent/0xAgentAddress
Returns:
{
"trustScore": 73,
"verdict": "proceed",
"riskOutlook": "stable",
"tokenHealth": { "rugProbability": 0.12, "riskLevel": "low" }
}
Score Tiers
| Score | Verdict | Action |
|---|---|---|
| ≥ 80 | 🟢 trusted | Safe to transact |
| 60–79 | 🔵 proceed | Low risk, proceed normally |
| 40–59 | 🟡 caution | Extra verification recommended |
| \x3C 40 | 🔴 avoid | Do not transact |
Lookup Any Passport
curl https://app.maiat.io/api/v1/passport/lookup?q=agent-name
Deep Agent Profile
curl https://app.maiat.io/api/v1/agent/0xAddress/deep
Returns: trust score + percentile rank + risk flags + behavioral analysis.
Protect Your Wallet (Maiat Guard)
If your agent sends transactions, wrap it with Guard for automatic protection.
npm install @jhinresh/viem-guard viem
import { withMaiatTrust } from '@jhinresh/viem-guard'
const wallet = withMaiatTrust(walletClient, {
minScore: 60, // block txs to low-trust addresses
antiPoison: true, // detect address poisoning attacks
})
// Every sendTransaction is now trust-gated
await wallet.sendTransaction({ to, value })
What Guard does:
- Trust Check — queries Maiat before every tx. Low trust → blocks
- Anti-Poisoning — detects vanity match + dust liveness attacks
- Threat Reporting — blocked attacks are reported to the network
- Collective Immunity — all Guard-protected agents get instant protection
Package: @jhinresh/viem-guard (v0.8.0) — GitHub
Report Outcomes (Important!)
After acting on a trust score, always report the outcome. This is the single most important action for improving trust accuracy.
curl -X POST https://app.maiat.io/api/v1/outcome \
-H "Content-Type: application/json" \
-d '{"jobId": "QUERY_ID_FROM_PRIOR_RESPONSE", "outcome": "success", "reporter": "0xYourWallet"}'
Outcomes: success, failure, partial, expired
Earns 5 🪲 Scarab per report.
Token Safety
# Quick check
curl https://app.maiat.io/api/v1/token/0xTokenAddress
# Deep forensics (rug pull analysis)
curl -X POST https://app.maiat.io/api/v1/predict \
-H "Content-Type: application/json" \
-d '{"token_address": "0xTokenAddress"}'
Multi-Source Verification (v2.4.0)
Token checks now cross-verify across 4 data sources for fewer false positives:
| Source | What it checks |
|---|---|
| honeypot.is | Buy/sell tax, honeypot detection, contract simulation |
| DexScreener | Liquidity, volume, sell pressure, trading activity |
| Alchemy | On-chain metadata, holder count, contract verification |
| Scarab ML | XGBoost rug probability model |
DexScreener Cross-Verify: If honeypot.is flags a token as honeypot BUT DexScreener shows ≥50 successful sells, the verdict is downgraded to caution instead of avoid. This catches false positives from low-liquidity pool testing (e.g., honeypot.is testing against a $24K USDC/v3 pool instead of the main $1.8M WETH/v4 pool).
Virtuals Bonding Curve Detection: Tokens paired with VIRTUAL on DexScreener are recognized as Virtuals Protocol bonding curve tokens. Honeypot.is reports 100% buy / 99% sell tax for these (incorrect) — Maiat skips tax penalties and uses on-chain signals instead.
Liquidity Scoring from DexScreener:
| Liquidity | Score Impact |
|---|---|
| ≥ $500K | +10 |
| ≥ $100K | +5 |
| \x3C $10K | -10 |
Response includes dexScreener field:
{
"trustScore": 72,
"verdict": "proceed",
"dexScreener": {
"liquidity": 523000,
"volume24h": 180000,
"sellCount": 245,
"buyCount": 312
},
"dataSource": "HONEYPOT_IS + ALCHEMY + SCARAB + DEXSCREENER"
}
ACP Offerings
If you're on the Virtuals ACP network, Maiat offers these paid services:
| Offering | Price | What it does |
|---|---|---|
agent_trust |
$0.02 | Trust score + behavioral analysis + token health |
token_check |
$0.01 | Quick token safety (honeypot, tax, liquidity) |
token_forensics |
$0.05 | Deep rug pull analysis (XGBoost ML) |
agent_reputation |
$0.03 | Community reviews + sentiment |
trust_swap |
$0.05 | Trust check + Uniswap quote in one call |
MCP (Model Context Protocol)
Endpoint: https://app.maiat.io/api/mcp
| Tool | Description |
|---|---|
get_agent_trust |
Trust score + verdict + riskOutlook |
get_agent_reputation |
Community reviews, sentiment |
report_outcome |
Close feedback loop (earns 5 🪲) |
get_scarab_balance |
Check Scarab points |
submit_review |
Review any agent |
SDK
npm install @jhinresh/maiat-sdk
import { Maiat } from '@jhinresh/maiat-sdk'
const maiat = new Maiat({ baseUrl: 'https://app.maiat.io' })
// Register passport
const passport = await maiat.passport.register({
ensName: 'my-agent', walletAddress: '0x...', type: 'agent'
})
// Trust check
const trust = await maiat.agentTrust('0xAgentAddress')
if (trust.verdict === 'avoid') throw new Error('Not trusted')
// Token check
const safe = await maiat.isTokenSafe('0xTokenAddress')
// Report outcome
await maiat.reportOutcome({ jobId: trust.feedback.queryId, outcome: 'success', reporter: '0x...' })
On-Chain Contracts (Base Mainnet)
| Contract | Address |
|---|---|
| ERC-8004 Identity Registry | 0x8004A169FB4a3325136EB29fA0ceB6D2e539a432 |
| ERC-8004 Reputation Registry | 0x8004BAa17C55a88189AE136b182e5fdA19dE9b63 |
| MaiatOracle | 0xc6cf2d59ff2e4ee64bbfceaad8dcb9aa3f13c6da |
| TrustGateHook (Uniswap v4) | 0xf980Ad83bCbF2115598f5F555B29752F00b8daFf |
Threat Reporting
Report malicious addresses to protect the entire network:
curl -X POST https://app.maiat.io/api/v1/threat/report \
-H "Content-Type: application/json" \
-d '{"maliciousAddress": "0x...", "threatType": "address_poisoning"}'
Threat types: address_poisoning, low_trust, vanity_match, dust_liveness
3+ independent reports → address auto-blocked across all Guard-protected agents.
Links
- App: https://app.maiat.io
- Passport Portal: https://passport.maiat.io
- API Docs: https://app.maiat.io/docs
- 8004scan: https://www.8004scan.io
- GitHub: https://github.com/JhiNResH/maiat-protocol
- Guard: https://github.com/JhiNResH/maiat-guard
Usage Guidance
Before installing or wiring this skill into an agent: (1) review the @jhinresh/viem-guard package and its GitHub code (or use a reputable audit) before npm installing; (2) avoid giving the skill access to private keys in production — consider using a separate limited-purpose wallet for testing; (3) understand that reporting outcomes and Guard-protected transactions will send addresses/metadata to Maiat (check privacy/policy); (4) prefer read-only queries (trustScore lookups) if you don't want to expose signing capability; (5) if you need higher assurance, ask the author for reproducible builds or an independent audit.
Capability Analysis
Type: OpenClaw Skill
Name: maiat-trust-api
Version: 2.4.0
The Maiat Trust API skill bundle provides a legitimate infrastructure for AI agent identity and reputation management. It includes instructions for agents to register an on-chain identity (ERC-8004), query trust scores for other addresses, and report transaction outcomes to a reputation registry. While the skill involves high-risk activities such as wallet interaction and transaction guarding (via the `@jhinresh/viem-guard` library), these capabilities are directly aligned with its stated purpose of securing 'agentic commerce.' No evidence of data exfiltration, malicious prompt injection, or unauthorized execution was found in SKILL.md or the associated metadata.
Capability Assessment
Purpose & Capability
The name/description (agent identity, trust scores, protecting transactions) align with the SKILL.md: endpoints for passport/agent/token checks, reporting outcomes, and a wallet-protection library are all expected capabilities.
Instruction Scope
Runtime instructions are narrowly scoped to Maiat API calls and installing/using an npm guard library. They do ask agents to save passports and to POST outcomes back to Maiat (which transmits behavioral data and job results). The doc does not instruct reading unrelated system files or secrets, but using the Guard requires passing a wallet client (signing capability) which exposes transaction metadata and could expose signing actions if the runtime gives the skill access to private keys.
Install Mechanism
There is no skill install spec (instruction-only). The only installation suggestion is npm install @jhinresh/viem-guard which is a normal package install; this is proportional but the package and its GitHub repo should be reviewed before use.
Credentials
The skill declares no required env vars or credentials. However, practical use (transaction protection) requires a wallet client with signing ability — effectively access to signing keys or a wallet object. Reporting outcomes and Guard threat reporting will send on-chain addresses and outcome metadata to Maiat. These behaviors are proportionate to the purpose but carry privacy/secret exposure risks you should consider.
Persistence & Privilege
No 'always: true' or privileged persistence requested. The skill is user-invocable and can be called autonomously by the agent (default), which is expected for skills of this type.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install maiat-trust-api - After installation, invoke the skill by name or use
/maiat-trust-api - Provide required inputs per the skill's parameter spec and get structured output
Version History
v2.4.0
v2.4.0: DexScreener cross-verification, Virtuals bonding curve detection, multi-source token safety
v1.2.0
Added Wadjet risk intelligence endpoints, MCP privacy notice, removed local config paths
v1.0.0
Maiat-trust-api v1.0.0 initial release
- Introduces integration guidelines for the Maiat Protocol, a universal trust oracle for onchain entities.
- Provides agent behavior guidelines for reviews, voting, and outcome reporting to enhance trust data.
- Details trust score tiers, scoring formulas, and how trust scores are computed from on-chain and off-chain data plus human reviews.
- Includes quick-start info for SDK setup, Model Context Protocol (MCP) connectivity, and REST API endpoints.
- Documents Scarab reputation system: earning, spending, and incentives for high-quality feedback.
- Lists example API methods and usage patterns for querying trust scores, token safety, submitting reviews, reporting outcomes, and more.
Metadata
Frequently Asked Questions
What is Maiat Trust API?
Trust infrastructure for AI agents. Register your agent, get an on-chain identity, check trust scores, and protect transactions. Use this when your agent nee... It is an AI Agent Skill for Claude Code / OpenClaw, with 328 downloads so far.
How do I install Maiat Trust API?
Run "/install maiat-trust-api" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Maiat Trust API free?
Yes, Maiat Trust API is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Maiat Trust API support?
Maiat Trust API is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Maiat Trust API?
It is built and maintained by JhiNResH (@jhinresh); the current version is v2.4.0.
More Skills