← 返回 Skills 市场
117
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install moci
功能描述
Generate, validate, export, and manage MOCI — the identity system for OpenClaw agents. Use this skill whenever the user mentions MOCI identity, agent ID, moc...
安全使用建议
This skill appears to be what it claims: an on-device identity manager that creates a device salt, derives keys from local identifiers, encrypts an identity file, and enforces memory write controls. Before installing, confirm you are comfortable with it creating and reading files under ~/.openclaw (device salt, encrypted identity, breadcrumb counter). Understand that Tier 1 identities are device-bound (not portable) until you explicitly export and set a passphrase. Ensure the OpenClaw Gateway/runtime you use enforces the described write-gate and redaction protections (the design assumes the Gateway holds tokens and blocks direct agent writes). Also review your logging/audit configuration: rejected writes record a short content preview in audit logs (useful for security, but potentially privacy-sensitive). If you plan to run agents in containers, remember to mount ~/.openclaw as a volume to persist the device salt. If any of these operational assumptions (trusted Gateway, file location, logging behavior) are unacceptable, do not install or deploy the skill until those are addressed.
功能分析
Type: OpenClaw Skill
Name: moci
Version: 0.1.0
The 'moci' skill bundle implements a sophisticated identity and memory-chain verification system for OpenClaw agents, designed to prevent cloning and impersonation. It features a multi-layered security architecture including device fingerprinting, AES-256-GCM encrypted storage (at ~/.openclaw/moci-identity.enc), and a 'Memory Ring' system that cryptographically seals agent history. The bundle is exceptionally well-documented, including a detailed threat matrix, NIST compliance mapping, and robust defensive measures against prompt injection (e.g., the sanitizeForLLM function in references/moci.ts). All high-risk operations, such as filesystem access and cryptographic key management, are strictly aligned with the stated purpose of providing a self-sovereign identity layer.
能力评估
Purpose & Capability
Name/description (agent identity lifecycle) align with what the files and SKILL.md do: generate IDs, derive device/passphrase keys, maintain on-disk encrypted identity, enforce write-gates and promote memory rings. No unrelated credentials, binaries, or install steps are requested.
Instruction Scope
Runtime instructions and reference code read local system properties (hostname, homedir, machineId), create/read files under ~/.openclaw (device salt, encrypted identity, breadcrumb counter), and perform cryptographic operations — all expected for a device-tied identity system. Note: some audit/log calls include small content previews on rejected writes (possible privacy-sensitive logging). The skill relies on a trusted Gateway to enforce caller tokens and to prevent the agent from performing writes; that trust boundary is important but not contradictory to its purpose.
Install Mechanism
No install spec; the skill is instruction-only with a reference implementation file. Nothing is downloaded or installed automatically by the skill package itself.
Credentials
The skill requests no environment variables or external credentials. It does read system attributes (hostname, homedir, machineId) and writes files in the user's home directory — these are proportionate to deriving a device fingerprint and storing a device salt.
Persistence & Privilege
always:false and no declarations that the skill will persist beyond its own files. The skill writes only within ~/.openclaw and its own identity/breadcrumb files; it does not request to modify other skills or global agent settings in the repository. It does assume the Gateway enforces write-gate policies (a design/operational dependency).
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install moci - 安装完成后,直接呼叫该 Skill 的名称或使用
/moci触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v0.1.0
## 0.1.0 — Initial Release
- MOCI identity generation (Crockford Base32, 6-char suffix, CRC-8)
- Memory ring system (4 rings, 32KB budget, daily promotion)
- 12 memory chain security mechanisms
- Dual-factor verification (key + memory chain)
- MOCI Identity Token (CIT) with per-skill HMAC signing
- Identity lifecycle (suspend / revoke / delete)
- Encrypted export / import with HMAC re-signing
- Structured audit log with tamper detection
- Trust score computation
- 22 threat vectors analyzed and mitigated
元数据
常见问题
MOCI — Memory-bound OpenClaw Identity 是什么?
Generate, validate, export, and manage MOCI — the identity system for OpenClaw agents. Use this skill whenever the user mentions MOCI identity, agent ID, moc... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 117 次。
如何安装 MOCI — Memory-bound OpenClaw Identity?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install moci」即可一键安装,无需额外配置。
MOCI — Memory-bound OpenClaw Identity 是免费的吗?
是的,MOCI — Memory-bound OpenClaw Identity 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
MOCI — Memory-bound OpenClaw Identity 支持哪些平台?
MOCI — Memory-bound OpenClaw Identity 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 MOCI — Memory-bound OpenClaw Identity?
由 mociforge(@mociforge)开发并维护,当前版本 v0.1.0。
推荐 Skills