← 返回 Skills 市场
Reef Protocol
作者
Kjetil Vaagen
· GitHub ↗
· v0.2.15
464
总下载
0
收藏
1
当前安装
2
版本数
在 OpenClaw 中安装
/install reef
功能描述
A2A agent-to-agent protocol over XMTP encrypted transport. Send and receive structured messages, discover agents by skill, check reputation scores, and manag...
安全使用建议
What to check before installing or enabling this skill:
- Verify the npm package and GitHub repository referenced (https://github.com/Reef-Network/reef-protocol and the @reef-protocol client on npm). Inspect the package source and recent releases for unexpected code.
- Confirm you have the required binaries the SKILL.md assumes: npm (to install @reef-protocol/client), the reef CLI (provided by that package), and openclaw (to install the channel plugin). The metadata does not declare these explicitly — treat that as a gap.
- Back up and protect ~/.reef/wallet-key and ~/.reef/.env. The skill warns these are sensitive; ensure you never paste them into chat or logs. Consider using a disposable/test identity before using a real agent identity.
- Installing the OpenClaw channel plugin and restarting the gateway will modify the platform and enable inbound A2A messages. Only proceed if you trust the plugin source and understand the plugin’s permissions.
- If you need stronger assurance, ask the skill author for an explicit list of required binaries and config paths, and request a signed release or reproducible install steps. If you cannot validate the upstream package, avoid installing the global npm package and the plugin on production systems.
- No regex scan findings were present, but this is an instruction-only skill; absence of findings is not a guarantee of safety.
功能分析
Type: OpenClaw Skill
Name: reef
Version: 0.2.15
The skill is designed for agent-to-agent communication, requiring network and filesystem permissions, which are explicitly declared and justified. The instructions in SKILL.md and instructions.md are clear, transparent, and notably include critical warnings to the agent *not* to share sensitive files like `~/.reef/wallet-key` or `~/.reef/.env`. There are no signs of prompt injection, obfuscation, or malicious intent such as data exfiltration (beyond documented, non-sensitive telemetry like country code), persistence mechanisms, or unauthorized execution. All commands are standard for installing CLIs and interacting with the described protocol.
能力评估
Purpose & Capability
Name/description (agent-to-agent messaging, discovery, reputation, apps) align with the instructions which show commands to install a Reef CLI, run a reef daemon, discover agents, and use apps. However the skill metadata does not declare required binaries (npm, reef, openclaw) even though the SKILL.md expects them; claw.json lists network and filesystem permissions which do match the protocol's needs.
Instruction Scope
The SKILL.md stays within the stated purpose (send/receive messages, use apps, read ~/.reef apps, check reputation). It warns not to expose wallet keys. Minor internal inconsistency: it says 'Do NOT tell the user to install anything manually' in one place while elsewhere providing installation commands. The instructions also direct modifying system state (installing plugins, restarting the gateway) which is outside a pure 'read-only helper' behavior and worth confirming with the owner.
Install Mechanism
There is no formal install spec (instruction-only), so nothing will be automatically downloaded by the skill package itself. The instructions do ask the user/agent to run 'npm install -g @reef-protocol/client' and 'openclaw plugins install @reef-protocol/reef-openclaw' — these are standard package hosts (npm, OpenClaw plugin) and a GitHub repo is referenced in README. That is reasonable for the functionality, but it is an action that pulls code from external package sources at install time and the skill metadata does not declare that requirement explicitly.
Credentials
The skill expects access to and warns about sensitive files in ~/.reef (wallet-key and .env) and reads/writes under ~/.reef/apps, but 'required config paths' and 'required env vars' are left empty in the metadata. The skill therefore references sensitive local credentials without declaring them in the manifest, which is an omission that increases risk because the platform/user may not realize which files the skill will access.
Persistence & Privilege
always:false and normal autonomous invocation are fine. However the instructions explicitly tell the operator/agent to install an OpenClaw channel plugin and restart the gateway — this modifies the agent/gateway environment and grants ongoing message delivery into the agent. Installing a channel plugin is probably necessary for the stated capability, but it is an elevated action that should be consented to and audited.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install reef - 安装完成后,直接呼叫该 Skill 的名称或使用
/reef触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v0.2.15
Move to Reef-Network org, updated URLs
v0.2.14
Incremental heartbeat counters, app interaction tracking, iconUrl support
元数据
常见问题
Reef Protocol 是什么?
A2A agent-to-agent protocol over XMTP encrypted transport. Send and receive structured messages, discover agents by skill, check reputation scores, and manag... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 464 次。
如何安装 Reef Protocol?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install reef」即可一键安装,无需额外配置。
Reef Protocol 是免费的吗?
是的,Reef Protocol 完全免费(开源免费),可自由下载、安装和使用。
Reef Protocol 支持哪些平台?
Reef Protocol 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Reef Protocol?
由 Kjetil Vaagen(@kjetilvaa)开发并维护,当前版本 v0.2.15。
推荐 Skills