← Back to Skills Marketplace
1420
Downloads
0
Stars
2
Active Installs
2
Versions
Install in OpenClaw
/install onchain-skill-audit
Description
On-chain skill provenance registry. Check, register, audit, and vouch for agent skills on Solana. Use when evaluating skill safety, registering new skills, or looking up provenance before installation.
Usage Guidance
Before installing or running this skill, consider the following: (1) it will read local skill.md files you point it at and can publish full reports on-chain — do not register or inscribe content you don’t want public; (2) the SKILL.md expects npm packages and a Solana signer/IQ token but the skill metadata does not declare them — confirm how the agent will obtain signing capability (never supply private keys unless you understand and trust the process); (3) ask the publisher for an explicit install guide and a privacy statement about what gets inscribed to chain and where ZeroLeaks/codeIn upload data; (4) verify the referenced program ID and npm package names independently (typosquatting is possible); (5) if you only want to read registry data, prefer read-only operations and avoid giving signer access or running inscription steps.
Capability Analysis
Type: OpenClaw Skill
Name: onchain-skill-audit
Version: 0.1.1
The skill is classified as suspicious due to its inherent risky capabilities, even though they are plausibly needed for its stated purpose. The `/register-skill` command in `skill.md` instructs the agent to "Read skill.md at given path", which grants file system access based on user input. While intended for hashing skill content, this capability could be abused by a malicious user to read arbitrary local files. Additionally, the `registerSkill` and `auditSkill` functions, as described in `skill.md`, accept a `codeInTx` parameter, allowing arbitrary data to be inscribed on-chain, which presents a potential data exfiltration vector if sensitive information were passed to it. The skill also relies on an external npm package (`@rocketlabs/skill-audit`), introducing a supply chain risk.
Capability Assessment
Purpose & Capability
The skill claims to be an on‑chain provenance/audit registry on Solana, and the SKILL.md describes read/write operations to on‑chain tables and hashing of skill.md content — this is coherent with the stated purpose. However, the instructions reference npm packages (@rocketlabs/skill-audit, @iqlabs-official/solana-sdk, @solana/web3.js) and require a Solana signer/wallet and IQ token holdings for certain writes; none of these dependencies or credentials are declared in the skill metadata. That mismatch should be clarified.
Instruction Scope
Runtime instructions tell the agent to read arbitrary local files (register-skill <path> reads skill.md at the given path) and to optionally 'inscribe full report via codeIn' (which would publish full content on-chain/publicly). They also reference running an external tool (ZeroLeaks) without specifying where it runs or what it sends. Reading arbitrary user filesystem paths and publicly inscribing content are both high‑sensitivity actions that the skill does not explicitly disclose or restrict.
Install Mechanism
There is no install spec (instruction-only), which limits what gets written to disk by the skill itself — a low‑risk model. However, the SKILL.md depends on specific npm packages and a Buffer monkey‑patch; because no install steps are provided, the agent/user must already have these packages and environment patches present. That implicit dependency should be declared or an install mechanism provided.
Credentials
The skill metadata declares no required environment variables or credentials, but the instructions clearly require a Solana connection plus a signer/wallet (and IQ token holdings) to perform register/audit/vouch writes. This is a substantive mismatch: writes will require signing capability and potentially access to a wallet/private key. The skill should explicitly declare what credentials it needs and how signing is performed, because signing transactions can publish private data or spend SOL/tokens.
Persistence & Privilege
The skill is not flagged as always:true and doesn't request persistent agent privileges. It is user‑invocable and can be run autonomously (default), but that is normal; nothing in the metadata indicates it will modify other skills or system settings.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install onchain-skill-audit - After installation, invoke the skill by name or use
/onchain-skill-audit - Provide required inputs per the skill's parameter spec and get structured output
Version History
v0.1.1
Removed internal file paths. Public-safe release.
v0.1.0
Initial release. On-chain skill provenance registry on Solana. Register, audit, vouch, and check agent skills with tamper-evident history.
Metadata
Frequently Asked Questions
What is On-Chain Skill Audit?
On-chain skill provenance registry. Check, register, audit, and vouch for agent skills on Solana. Use when evaluating skill safety, registering new skills, or looking up provenance before installation. It is an AI Agent Skill for Claude Code / OpenClaw, with 1420 downloads so far.
How do I install On-Chain Skill Audit?
Run "/install onchain-skill-audit" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is On-Chain Skill Audit free?
Yes, On-Chain Skill Audit is completely free (open-source). You can download, install and use it at no cost.
Which platforms does On-Chain Skill Audit support?
On-Chain Skill Audit is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created On-Chain Skill Audit?
It is built and maintained by Rocket (@emanz1); the current version is v0.1.1.
More Skills