← 返回 Skills 市场
167
总下载
0
收藏
0
当前安装
5
版本数
在 OpenClaw 中安装
/install cryptowerk-verifiable-data
功能描述
Register, fetch, and verify SHA-256 hashes of files with Cryptowerk seals using local sidecar files and no SDK dependency for proof-carrying workflows.
使用说明 (SKILL.md)
Verifiable Data
Use this skill for Cryptowerk-backed proof workflows.
Supported primitives:
- obtain a fresh service credential
- register data using its SHA-256 hash and receive a retrieval id
- fetch a seal by retrieval id
- verify data against a seal
Default style:
- sidecar files for local state
- no SDK dependency
When to use
Use this skill when the user wants:
- verifiable logs
- proof of existence
- Cryptowerk sealing
- retrieval IDs and seals stored locally
- deterministic local artifacts for later audit
Workflow
- Register a file hash with
scripts/register.py - Poll for a seal with
scripts/getseal.py - Verify with
scripts/verify.py
Requirements
Required binaries:
python3
Credential handling:
- keep issued tokens out of watched or committed trees
- the skill uses service credentials only for the documented proof-APIs
Quick start
Register a file
Fetch a seal
Verify a file
Local artifacts
\x3Cfile>.cwseal
Rules
- Use SHA-256 over exact raw bytes.
- Keep issued Cryptowerk tokens outside watched trees.
- Keep the seal and metadata in a sidecar file .cwseal .
References
Read these when needed:
references/cryptowerk-api-notes.mdreferences/storage-and-state.md
Scripts
scripts/register.pyscripts/getseal.pyscripts/verify.py
安全使用建议
Before installing, verify that this package is from the Cryptowerk source you trust, understand that it will contact aiagent.cryptowerk.com with file hashes, and protect the generated cwconfig.json and .cwseal files.
功能分析
Type: OpenClaw Skill
Name: cryptowerk-verifiable-data
Version: 1.0.4
The skill implements document notarization logic but contains several red flags in `scripts/cwcommon.py`, including the use of ROT13 obfuscation for JSON keys (e.g., 'ncvXrl' for 'apiKey') and a hardcoded Base64 bootstrap token used to fetch service credentials. The file also contains an unused `downloadFile` function and a commented-out `autoUpdate` routine that the author explicitly notes was 'flagged by openclaw scan,' suggesting an intentional effort to bypass static analysis. While no direct evidence of data exfiltration was found, these obfuscation and evasion tactics regarding credential handling and remote updates warrant a suspicious classification.
能力标签
能力评估
Purpose & Capability
The file-hash registration, seal fetching, and verification behavior is coherent with the stated Cryptowerk proof workflow, with the important caveat that hashes and proof metadata are sent to an external service.
Instruction Scope
The instructions are user-directed and limited to running the included Python scripts for register, getseal, and verify workflows; no prompt-injection or goal-override behavior was found.
Install Mechanism
There is no install spec and no package installation, but registry metadata under-declares the runtime requirement because the skill's own files require python3.
Credentials
Network calls to Cryptowerk and local sidecar writes are proportionate to the proof workflow, but they create external provider records and local state.
Persistence & Privilege
The skill persists issued Cryptowerk credentials in a cwconfig.json file under the skill directory and persists proof state in .cwseal sidecars; no background persistence or privilege escalation is shown.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install cryptowerk-verifiable-data - 安装完成后,直接呼叫该 Skill 的名称或使用
/cryptowerk-verifiable-data触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.4
- Updated project homepage URL in the metadata from "www.cryptowerk.com" to "https://www.cryptowerk.com"
- No changes to core functionality; documentation and metadata only
v1.0.3
verifiable-data v1.0.3
- Updated documentation in SKILL.md, providing clear instructions on how to register data, fetch seals, and verify proofs using Cryptowerk.
- Clarified workflow steps and use cases for proof-carrying data processes with local artifacts and no SDK dependency.
- Outlined requirements, default credential handling, and recommended practices for sidecar file management.
- Added concise examples and references for getting started with the skill’s CLI scripts.
v1.0.2
- Removed obsolete script: scripts/update.py
- Updated scripts/cwcommon.py (details not specified)
- No changes to core workflow or documentation
v1.0.1
verifiable-data 1.0.1
- Improved SKILL.md documentation with detailed usage instructions and best practices.
- Clarified supported primitives and local artifact handling.
- Added quick start commands for core workflows.
- Specified credential management and requirements.
- No functional or breaking changes to skill logic.
v1.0.0
Initial release of verifiable-data skill for Cryptowerk-backed proof workflows.
- Register data using SHA-256 hash and obtain retrieval IDs without SDK dependency.
- Fetch seals and verify proofs for files or append-only records.
- Stores local sidecar artifacts (.cwseal) for state and audit.
- Automatically handles service credentials; does not perform purchases or unrelated account actions.
- Provides Python scripts for register, fetch, and verify operations.
元数据
常见问题
verifiable-data 是什么?
Register, fetch, and verify SHA-256 hashes of files with Cryptowerk seals using local sidecar files and no SDK dependency for proof-carrying workflows. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 167 次。
如何安装 verifiable-data?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install cryptowerk-verifiable-data」即可一键安装,无需额外配置。
verifiable-data 是免费的吗?
是的,verifiable-data 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
verifiable-data 支持哪些平台?
verifiable-data 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 verifiable-data?
由 holgercw(@holgercw)开发并维护,当前版本 v1.0.4。
推荐 Skills