← Back to Skills Marketplace
atlaspa

Openclaw Signet

by AtlasPA · GitHub ↗ · v1.0.2
darwinlinuxwin32 ⚠ suspicious
1513
Downloads
0
Stars
4
Active Installs
3
Versions
Install in OpenClaw
/install openclaw-signet
Description
Cryptographic skill verification. Sign installed skills with SHA-256 content hashes and verify they haven't been tampered with. Detects modified, added, and removed files within skill directories. Free alert layer — upgrade to openclaw-signet-pro for rejection, quarantine, and trust chain restoration.
Usage Guidance
This tool appears to do what it says: locally sign and verify skills and optionally quarantine or restore them. Before installing or running: (1) review the included scripts/signet.py yourself (it's a single-file Python tool) because it will write manifests and move/rename skill directories when you use quarantine/reject/restore; (2) back up your workspace (or ensure version control) before using quarantine/reject or restore operations; (3) run sign once after installing trusted skills to create the initial manifest; (4) consider file-permission protection for the .signet/manifest and snapshots if you want to prevent unauthorized local modification; (5) be aware that if you allow autonomous agent invocation, the agent could run this script and perform quarantines or restores — that behavior is expected but may be impactful, so restrict agent privileges if you want to avoid automated modifications.
Capability Analysis
Type: OpenClaw Skill Name: openclaw-signet Version: 1.0.2 The OpenClaw Signet skill is designed for a security-enhancing purpose (cryptographic verification of other skills) and lacks direct evidence of malicious intent, such as data exfiltration or backdoor installation. However, it is classified as 'suspicious' due to its powerful file system manipulation capabilities (`shutil.move`, `shutil.copytree`, `shutil.rmtree`) within the `scripts/signet.py` file. While these operations are necessary for its stated purpose (quarantining, snapshotting, restoring skills), the script allows the `--workspace` argument to be user-defined or derived from environment variables. This presents a significant vulnerability if an AI agent or user were prompted to specify a malicious workspace path (e.g., a critical system directory), potentially leading to unintended data loss or system disruption, even though the skill itself does not *intend* to cause harm.
Capability Assessment
Purpose & Capability
Name/description (sign and verify skills with SHA-256) matches the files and instructions. The script only needs python3 and operates on the workspace/skills tree, computes file hashes, and writes a local manifest and snapshots/quarantine directories. No unrelated credentials, binaries, or external services are requested.
Instruction Scope
SKILL.md instructs running the included Python script with a --workspace argument. The script's visible behaviour is limited to walking skill directories, hashing files, saving a manifest, and taking local actions (quarantine/snapshots/restore). It only reads optional OPENCLAW_WORKSPACE env var to locate the workspace; it does not reference other system paths or transmit data externally in the shown code.
Install Mechanism
There is no installer; this is instruction-plus-script. README suggests cloning the repo into the workspace. No network calls or remote downloads are performed by the script (stdlib-only). No extract/download install steps are present in the registry metadata.
Credentials
The skill declares no required environment variables or credentials. The script optionally reads OPENCLAW_WORKSPACE to resolve workspace location, which is reasonable for its function. It does not ask for API keys, tokens, or unrelated secrets.
Persistence & Privilege
The skill is not forced-always (always:false) and is user-invocable. The script writes a manifest and may move/rename skill directories to quarantine or create snapshots under the workspace, which are necessary for its functionality but are destructive actions if used accidentally. The skill can be invoked by the agent (disable-model-invocation:false), which is normal for skills — be aware that agent-initiated runs could modify skill files without further prompts.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install openclaw-signet
  3. After installation, invoke the skill by name or use /openclaw-signet
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.2
openclaw-signet v1.0.2 - Removed mention and description of "openclaw-signet-pro" from documentation. - Updated SKILL.md to focus solely on the core functionality, with simplified wording. - No changes to core commands or logic; this is a documentation update only.
v1.0.1
- Updated README.md for documentation improvements. - No changes to functionality or code.
v1.0.0
Initial release of openclaw-signet — basic cryptographic verification for installed skills. - Sign installed skills using SHA-256 content hashes to create a trusted manifest. - Verify skills any time to detect file modification, addition, or removal. - Reports tampered files, unsigned skills, and overall verification status with clear exit codes. - Includes commands to sign, verify, list, and check the status of skills. - Python standard library only; no external dependencies or network use. - Compatible with darwin, linux, and win32 systems.
Metadata
Slug openclaw-signet
Version 1.0.2
License
All-time Installs 4
Active Installs 4
Total Versions 3
Frequently Asked Questions

What is Openclaw Signet?

Cryptographic skill verification. Sign installed skills with SHA-256 content hashes and verify they haven't been tampered with. Detects modified, added, and removed files within skill directories. Free alert layer — upgrade to openclaw-signet-pro for rejection, quarantine, and trust chain restoration. It is an AI Agent Skill for Claude Code / OpenClaw, with 1513 downloads so far.

How do I install Openclaw Signet?

Run "/install openclaw-signet" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Openclaw Signet free?

Yes, Openclaw Signet is completely free (open-source). You can download, install and use it at no cost.

Which platforms does Openclaw Signet support?

Openclaw Signet is cross-platform and runs anywhere OpenClaw / Claude Code is available (darwin, linux, win32).

Who created Openclaw Signet?

It is built and maintained by AtlasPA (@atlaspa); the current version is v1.0.2.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463556 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259610 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200551 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191226 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190235 · by oswalpalash

💬 Comments