← 返回 Skills 市场
1420
总下载
0
收藏
2
当前安装
2
版本数
在 OpenClaw 中安装
/install onchain-skill-audit
功能描述
On-chain skill provenance registry. Check, register, audit, and vouch for agent skills on Solana. Use when evaluating skill safety, registering new skills, or looking up provenance before installation.
安全使用建议
Before installing or running this skill, consider the following: (1) it will read local skill.md files you point it at and can publish full reports on-chain — do not register or inscribe content you don’t want public; (2) the SKILL.md expects npm packages and a Solana signer/IQ token but the skill metadata does not declare them — confirm how the agent will obtain signing capability (never supply private keys unless you understand and trust the process); (3) ask the publisher for an explicit install guide and a privacy statement about what gets inscribed to chain and where ZeroLeaks/codeIn upload data; (4) verify the referenced program ID and npm package names independently (typosquatting is possible); (5) if you only want to read registry data, prefer read-only operations and avoid giving signer access or running inscription steps.
功能分析
Type: OpenClaw Skill
Name: onchain-skill-audit
Version: 0.1.1
The skill is classified as suspicious due to its inherent risky capabilities, even though they are plausibly needed for its stated purpose. The `/register-skill` command in `skill.md` instructs the agent to "Read skill.md at given path", which grants file system access based on user input. While intended for hashing skill content, this capability could be abused by a malicious user to read arbitrary local files. Additionally, the `registerSkill` and `auditSkill` functions, as described in `skill.md`, accept a `codeInTx` parameter, allowing arbitrary data to be inscribed on-chain, which presents a potential data exfiltration vector if sensitive information were passed to it. The skill also relies on an external npm package (`@rocketlabs/skill-audit`), introducing a supply chain risk.
能力评估
Purpose & Capability
The skill claims to be an on‑chain provenance/audit registry on Solana, and the SKILL.md describes read/write operations to on‑chain tables and hashing of skill.md content — this is coherent with the stated purpose. However, the instructions reference npm packages (@rocketlabs/skill-audit, @iqlabs-official/solana-sdk, @solana/web3.js) and require a Solana signer/wallet and IQ token holdings for certain writes; none of these dependencies or credentials are declared in the skill metadata. That mismatch should be clarified.
Instruction Scope
Runtime instructions tell the agent to read arbitrary local files (register-skill <path> reads skill.md at the given path) and to optionally 'inscribe full report via codeIn' (which would publish full content on-chain/publicly). They also reference running an external tool (ZeroLeaks) without specifying where it runs or what it sends. Reading arbitrary user filesystem paths and publicly inscribing content are both high‑sensitivity actions that the skill does not explicitly disclose or restrict.
Install Mechanism
There is no install spec (instruction-only), which limits what gets written to disk by the skill itself — a low‑risk model. However, the SKILL.md depends on specific npm packages and a Buffer monkey‑patch; because no install steps are provided, the agent/user must already have these packages and environment patches present. That implicit dependency should be declared or an install mechanism provided.
Credentials
The skill metadata declares no required environment variables or credentials, but the instructions clearly require a Solana connection plus a signer/wallet (and IQ token holdings) to perform register/audit/vouch writes. This is a substantive mismatch: writes will require signing capability and potentially access to a wallet/private key. The skill should explicitly declare what credentials it needs and how signing is performed, because signing transactions can publish private data or spend SOL/tokens.
Persistence & Privilege
The skill is not flagged as always:true and doesn't request persistent agent privileges. It is user‑invocable and can be run autonomously (default), but that is normal; nothing in the metadata indicates it will modify other skills or system settings.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install onchain-skill-audit - 安装完成后,直接呼叫该 Skill 的名称或使用
/onchain-skill-audit触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v0.1.1
Removed internal file paths. Public-safe release.
v0.1.0
Initial release. On-chain skill provenance registry on Solana. Register, audit, vouch, and check agent skills with tamper-evident history.
元数据
常见问题
On-Chain Skill Audit 是什么?
On-chain skill provenance registry. Check, register, audit, and vouch for agent skills on Solana. Use when evaluating skill safety, registering new skills, or looking up provenance before installation. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 1420 次。
如何安装 On-Chain Skill Audit?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install onchain-skill-audit」即可一键安装,无需额外配置。
On-Chain Skill Audit 是免费的吗?
是的,On-Chain Skill Audit 完全免费(开源免费),可自由下载、安装和使用。
On-Chain Skill Audit 支持哪些平台?
On-Chain Skill Audit 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 On-Chain Skill Audit?
由 Rocket(@emanz1)开发并维护,当前版本 v0.1.1。
推荐 Skills