← Back to Skills Marketplace
felipematos

Max Auth

by Felipe Matos · GitHub ↗ · v2.2.0 · MIT-0
cross-platform ⚠ suspicious
441
Downloads
1
Stars
2
Active Installs
6
Versions
Install in OpenClaw
/install max-auth
Description
Security authentication gate for OpenClaw sensitive actions. Deploys a local Node.js auth server with biometric passkeys (WebAuthn/Touch ID/Face ID) and mast...
Usage Guidance
This skill appears to implement a local auth server that needs Node.js and npm, but the registry metadata omitted the Node requirement — don't rely on the metadata alone. Before installing: (1) review the full auth-server.js (the listing was truncated) to confirm one-time secrets truly stay in memory and are not written to disk; (2) be cautious about exposing the server externally (reverse proxy or Tailscale examples) — only expose it with correct HTTPS and access controls; (3) note the code runs a local shell command ('tailscale status') if available — ensure your PATH and local binaries are trusted; (4) run npm install in an isolated environment (container or dedicated user) if you want to limit blast radius; (5) confirm you are comfortable with files created in ~/.max-auth (password hash, passkeys, audit log). If anything looks unexpected in the missing portions of auth-server.js, do not install or run it until clarified.
Capability Analysis
Type: OpenClaw Skill Name: max-auth Version: 2.2.0 The max-auth skill bundle provides a legitimate local authentication server designed to protect sensitive agent actions using master passwords and biometric passkeys (WebAuthn). The implementation in auth-server.js follows security best practices, including PBKDF2 password hashing with salts, rate limiting to prevent brute-force attacks, and audit logging. A notable security-enhancing feature is the 'secure secret handoff,' which allows users to provide credentials via a one-time browser form that stores data in memory only, preventing sensitive keys from appearing in chat transcripts. No evidence of data exfiltration, malicious execution, or unauthorized persistence was found.
Capability Tags
cryptorequires-oauth-tokenrequires-sensitive-credentials
Capability Assessment
Purpose & Capability
The SKILL.md and package.json clearly require Node.js (and instruct running npm install), but the registry metadata lists no required binaries; that is an incoherence. The declared purpose (local auth server with WebAuthn and one-time secret forms) does explain the files present and the npm dependency, but the metadata omission could mislead automatic guards or users.
Instruction Scope
Runtime instructions are focussed on deploying a local auth server: copying files to ~/.max-auth, running npm install, setting a master password, and starting the server. The instructions intentionally write persistent files under ~/.max-auth (password hash, session, passkeys, audit log) which is consistent with an auth server. The docs also show examples to expose the server via reverse proxies and Tailscale — exposing the server to networks increases risk and requires careful configuration. SKILL.md claims one-time secret values are memory-only; I could not fully verify this because the bundled JS was truncated in the listing.
Install Mechanism
There is no formal install spec; installation is manual (copy files, npm install). The package.json pulls @simplewebauthn/server from npm — a normal dependency for WebAuthn. Because installation is user-run (npm install), there is no direct download-from-arbitrary-URL risk, but users must be aware npm will fetch packages from the registry.
Credentials
The skill declares no required environment variables in registry metadata, yet the code reads optional env vars (AUTH_PORT, RP_ID, RP_ORIGIN). No unrelated credential values are requested. However, code attempts to run a child_process to call 'tailscale status --json' to determine RP_ID: this probes system state outside the described auth-server core (it’s a convenience for auto-detecting an origin but is an unexpected side-effect).
Persistence & Privilege
The server persists configuration and logs under the user's home (~/.max-auth) and the documentation includes a systemd example for persistent running under the user account. It does not request system-wide privileges by default (no always: true). Running it as a system service or exposing it through a reverse proxy/Tailscale raises additional risk but is an explicit operator choice in the docs.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install max-auth
  3. After installation, invoke the skill by name or use /max-auth
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v2.2.0
Add Spanish UI, document session-scoped auth, and align secure one-time secret handoff flow with the live local server.
v2.1.0
Add request_secret + retrieve_secret tools for secure one-time URL secret submission (v2.1.0).
v2.0.0
v2: Session-scoped auth — each channel/session gets its own independent token. check_auth now accepts sessionKey param. Auth URL includes ?session= for channel-specific login. Backward compatible with v1 via global key.
v1.2.0
v1.2.0: Removed Tailscale dependency — works with any HTTPS reverse proxy (nginx, Caddy, Cloudflare Tunnel, ngrok, etc.). Updated docs with setup examples for all options.
v1.1.0
v1.1.0: Security fixes (removed shell exec + env credential reads), config via file/CLI args, new 'configure' command, complete documentation
v1.0.0
Initial release: biometric passkeys (WebAuthn), master password, session tokens, rate limiting, audit trail, i18n (pt-BR/en), OpenClaw plugin integration
Metadata
Slug max-auth
Version 2.2.0
License MIT-0
All-time Installs 2
Active Installs 2
Total Versions 6
Frequently Asked Questions

What is Max Auth?

Security authentication gate for OpenClaw sensitive actions. Deploys a local Node.js auth server with biometric passkeys (WebAuthn/Touch ID/Face ID) and mast... It is an AI Agent Skill for Claude Code / OpenClaw, with 441 downloads so far.

How do I install Max Auth?

Run "/install max-auth" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Max Auth free?

Yes, Max Auth is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does Max Auth support?

Max Auth is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Max Auth?

It is built and maintained by Felipe Matos (@felipematos); the current version is v2.2.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments