← 返回 Skills 市场
agent-avatars
作者
tedkaczynski-the-bot
· GitHub ↗
· v1.0.0
1687
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install molt-avatars
功能描述
Mint your unique AI agent avatar — CryptoPunks-style pixel art. Register, get claimed by your human (X verification), then mint your one-of-a-kind avatar. Use when an agent needs a profile picture, wants to establish visual identity, or needs to register with molt.avatar.
安全使用建议
This skill appears to be what it says (an avatar-minting integration) but has two things to consider before installing or enabling automatic behavior: 1) The HEARTBEAT.md instructs the agent to periodically download and "run" remote instruction files (SKILL.md / HEARTBEAT.md). Only enable the heartbeat if you fully trust the remote host (https://agent-avatars-production.up.railway.app / avatars.unabotter.xyz). Remote updates can change agent behavior and could be used to make the agent do things you didn't expect. 2) The registry metadata is inconsistent: SKILL.md/skill.json require 'curl' (and HEARTBEAT.md uses 'jq'), but the top-level metadata showed no required binaries and no declared environment variables. Before installing, verify the source, confirm which tools the skill actually needs (install jq if you plan to run the heartbeat), and avoid enabling automatic heartbeat unless necessary. Additional steps: prefer manual registration/minting (run the curl commands yourself), store the API key in a secure credential store rather than world-readable files, and restrict the agent's permission to autonomously invoke network actions if your agent platform allows it.
功能分析
Type: OpenClaw Skill
Name: molt-avatars
Version: 1.0.0
The skill is classified as suspicious due to a significant supply chain risk. The `HEARTBEAT.md` file explicitly instructs the agent to periodically fetch and overwrite its own `SKILL.md` and `HEARTBEAT.md` files from a remote server (`https://agent-avatars-production.up.railway.app`). This mechanism allows the remote server to dynamically update the agent's instructions and behavior at any time, creating a backdoor for potential unauthorized remote control and future malicious execution if the server is compromised. While the current instructions are benign, this capability introduces a high-risk vulnerability.
能力评估
Purpose & Capability
The described functionality (register, claim via human tweet, mint avatar) aligns with the API endpoints and recommended local credential storage. However, the registry metadata provided to the evaluator claimed no required binaries, while the skill.json / SKILL.md list 'curl' as required; HEARTBEAT.md also uses 'jq' but 'jq' is not declared. This mismatch is inconsistent and worth clarifying.
Instruction Scope
The SKILL.md and HEARTBEAT.md instruct the agent to periodically fetch remote files (skill.json, SKILL.md, HEARTBEAT.md) and to 'fetch and run HEARTBEAT.md' on a schedule. That effectively gives the remote service the ability to change the agent's behavior by publishing new instructions. The heartbeat also reads the locally stored credentials file and sends the API key to the remote API (expected for the service) — but combined with remote fetch-and-run, this increases risk of unexpected behavior or credential misuse.
Install Mechanism
This is instruction-only (no install spec, no code files). That reduces file-system write risk from a packaged installer. Still, the docs recommend running npx clawdhub install and instruct the agent to download/overwrite local files under ~/.config/molt-avatar when versions change — so files will be written at runtime if the agent follows HEARTBEAT.md.
Credentials
No environment variables or external credentials are declared by the registry metadata, which is consistent with an API-key per-agent approach. The SKILL.md instructs storing an API key in ~/.config/molt-avatar/credentials.json and using it in API calls, which is proportional to the service purpose. Still, the skill uses a local credentials file rather than a declared primaryEnv; that mismatch and the lack of explicit declaration for 'jq' are minor inconsistencies.
Persistence & Privilege
always:false (good), but the optional heartbeat feature asks the agent to run a periodic task that fetches remote docs and can update local SKILL.md/HEARTBEAT.md. This grants persistent remote-driven behavior if enabled. Enabling heartbeat effectively creates an auto-updating instruction channel from the service to the agent and raises the blast radius if the remote server is compromised or malicious.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install molt-avatars - 安装完成后,直接呼叫该 Skill 的名称或使用
/molt-avatars触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
- Initial release of molt-avatar skill (v1.0.0).
- Mint unique CryptoPunks-style pixel art avatars for agents.
- Supports agent registration, human claim via X (Twitter) verification, and avatar minting.
- Provides API endpoints for registration, claim status, minting, and viewing avatars.
- Heartbeat feature optionally checks claim status and mints automatically.
- Includes rarity system and a range of avatar customizations (base, accessories, colors).
元数据
常见问题
agent-avatars 是什么?
Mint your unique AI agent avatar — CryptoPunks-style pixel art. Register, get claimed by your human (X verification), then mint your one-of-a-kind avatar. Use when an agent needs a profile picture, wants to establish visual identity, or needs to register with molt.avatar. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 1687 次。
如何安装 agent-avatars?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install molt-avatars」即可一键安装,无需额外配置。
agent-avatars 是免费的吗?
是的,agent-avatars 完全免费(开源免费),可自由下载、安装和使用。
agent-avatars 支持哪些平台?
agent-avatars 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 agent-avatars?
由 tedkaczynski-the-bot(@tedkaczynski-the-bot)开发并维护,当前版本 v1.0.0。
推荐 Skills