← Back to Skills Marketplace
Verified Agent Identity
by
Agung Prabowo
· GitHub ↗
· v0.1.0
· MIT-0
282
Downloads
1
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install verified-agent-identity-5
Description
Billions/Iden3 authentication and identity management tools for agents. Link, proof, sign, and verify.
Usage Guidance
What to consider before installing:
- This package creates and stores private keys unencrypted in $HOME/.openclaw/billions/kms.json (and other identity files). If you install, expect long-lived plaintext key material on disk. Consider running in a sandbox, using an encrypted KMS, or adjusting file permissions (and verify permissions are actually enforced).
- The skill will call external services (Billions RPC, attestation-relay, a DID resolver). The protocol embeds signed tokens into callback URLs; review those endpoints and privacy implications before using with production keys or real assets.
- The repository expects Node >=20 and the openclaw CLI on PATH. The registry metadata omitted those required binaries — ensure you have the correct runtime installed and trust the openclaw binary before allowing it to send messages.
- Installation requires running `npm install` (package-lock is provided). That pulls standard npm packages; consider auditing dependencies if you require high assurance.
- The code validates inputs and uses execFileSync to call a fixed `openclaw message send` command; it applies tokenization and regex filtering to reduce shell-injection risk — but validation and sanitization are area to review if you expect untrusted input.
- If you are not comfortable with plaintext key storage or with signing callbacks being sent to third-party relays, do not install or only use test identities in a controlled environment.
If you want, I can list the exact files that write or read key material and suggest specific hardening changes (e.g., encrypt kms.json, set restrictive file modes, or switch to an OS-provided secure key store).
Capability Analysis
Type: OpenClaw Skill
Name: verified-agent-identity-5
Version: 0.1.0
The skill bundle provides a decentralized identity (DID) management toolkit for AI agents on the Billions Network using the Iden3 protocol. It facilitates creating identities, signing challenges, and linking agent DIDs to human owners. While it stores private keys unencrypted in '$HOME/.openclaw/billions/kms.json' (a significant security vulnerability), this behavior is explicitly documented in the README and SKILL.md as a known design choice. The implementation includes robust security controls, such as strict input sanitization using 'shell-quote' and regex validation in 'scripts/shared/utils.js' to prevent shell injection when calling the 'openclaw' CLI. No evidence of data exfiltration, malicious persistence, or deceptive prompt injection was found.
Capability Assessment
Purpose & Capability
The name, description, and scripts all implement decentralized identity (DID) creation, signing, linking, and verification for the Billions/iden3 ecosystem — this is coherent. Minor inconsistency: SKILL.md metadata declares required binaries (node, openclaw) but the registry 'Requirements' section earlier lists none; the runtime instructions also require running `npm install` in scripts. Those missing declarations are an information gap but not by themselves malicious.
Instruction Scope
Runtime instructions are limited to creating/listing identities, generating/signing/verifying challenges, and sending messages via the `openclaw` CLI. The scripts read/write files under $HOME/.openclaw/billions and call remote endpoints (RPC, resolver, attestation relay). The SKILL.md includes strict guardrails forbidding manual manipulation of those files, yet the code itself persists unencrypted keys and identity data — this is expected for the skill but worth noting as sensitive scope.
Install Mechanism
There is no formal install spec in the registry (instruction-only), but the README/SKILL.md instructs `cd scripts && npm install`. The package.json and package-lock.json use mainstream npm packages (iden3, polygonid, ethers, etc.), not arbitrary downloads. Installing dependencies via npm is moderate risk (supply-chain exposure); there are no obfuscated external downloads or URL shorteners.
Credentials
The skill does not request environment variables or external credentials, which is appropriate. However, it persistently stores private keys (kms.json) in plaintext JSON under $HOME/.openclaw/billions by default. The code does not explicitly set file permission mode; the README claims 'owner-readable only' but that is not enforced in code. The code also embeds and uses several external endpoints (rpc-mainnet.billions.network, attestation-relay.billions.network, wallet.billions.network, resolver.privado.id) and constructs callback URLs that include signed tokens — all expected for the protocol but they expose signed data to third parties. These practices are sensitive and deserve scrutiny relative to the stated purpose.
Persistence & Privilege
The skill does not request always:true or other elevated platform privileges. It persists cryptographic material and identity state under $HOME/.openclaw/billions and will keep a KMS and stored DIDs across runs; this is normal for an identity tool but increases the impact if the machine or skill is compromised.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install verified-agent-identity-5 - After installation, invoke the skill by name or use
/verified-agent-identity-5 - Provide required inputs per the skill's parameter spec and get structured output
Version History
v0.1.0
verified-agent-identity v0.1.0
- Initial release with support for Billions/Iden3 agent authentication and identity management.
- Provides scripts to create, list, and link decentralized identities, sign and verify challenges, and manage identity data.
- Enforces strict guardrails for identity handling and cryptographic key management.
- Stores all identity data in $HOME/.openclaw/billions for OpenClaw compatibility.
- Includes detailed usage instructions and security guidelines for all operations.
Metadata
Frequently Asked Questions
What is Verified Agent Identity?
Billions/Iden3 authentication and identity management tools for agents. Link, proof, sign, and verify. It is an AI Agent Skill for Claude Code / OpenClaw, with 282 downloads so far.
How do I install Verified Agent Identity?
Run "/install verified-agent-identity-5" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Verified Agent Identity free?
Yes, Verified Agent Identity is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Verified Agent Identity support?
Verified Agent Identity is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Verified Agent Identity?
It is built and maintained by Agung Prabowo (@agungprabowo123); the current version is v0.1.0.
More Skills