← 返回 Skills 市场
buildersgarden

Sign-in with Agent

作者 Builders Garden · GitHub ↗ · v0.0.4
cross-platform ⚠ suspicious
1133
总下载
0
收藏
2
当前安装
4
版本数
在 OpenClaw 中安装
/install siwa
功能描述
SIWA (Sign-In With Agent) authentication for ERC-8004 registered agents.
安全使用建议
What to consider before installing/using this skill: - Incoherent metadata: the registry entry declares no required environment variables, but the documentation clearly expects many secrets (private keys, proxy HMAC secrets, API keys) for different signer backends. Treat the docs as authoritative: the skill will need secrets to operate. - Don’t paste private keys or shared HMAC secrets into a skill or chat. If you need signing, prefer a keyring/proxy deployed by you (self-hosted) and keep the proxy secret in your environment, not in chat or skill configuration. If you must test, use ephemeral testnet keys and testnet faucets. - Verify upstream packages/images before running installs or deploys: the docs reference npm package @buildersgarden/siwa and a GHCR Docker image and Railway deploy links. Inspect the npm package repository, its maintainers, and the container image contents before running them in any environment you care about. - The instructions expect filesystem access (specific workspace paths) and running pnpm/npm commands. Only run these commands in a controlled environment (isolated dev VM or container), not on sensitive production hosts. - Reverse CAPTCHA and captcha-solve helpers require the agent to generate content under constraints; that is not inherently malicious but could inadvertently leak generated content to the server endpoints shown. Confirm the server endpoints you will talk to and that you trust them. - Because the package is instruction-only in the registry and source/homepage are unknown, ask the skill author for the canonical repository URL, the npm package link, and the source for the Docker image. Without those you cannot easily audit the code you will install. If you plan to proceed: (1) audit the @buildersgarden/siwa npm package and the referenced Docker image; (2) prefer the keyring-proxy approach to avoid exposing private keys, and host it yourself; (3) use testnets and throwaway credentials for initial experiments; (4) ensure SIWA_SECRET and other server secrets are never stored in public or shared chat.
功能分析
Type: OpenClaw Skill Name: siwa Version: 0.0.4 The skill is classified as suspicious due to the inherent risks associated with its core functionality and specific instructions, despite a strong stated security model. Key indicators include instructions in `CLAUDE.md` and `keyring-proxy/skill.md` to run a Docker container (`ghcr.io/builders-garden/siwa-keyring-proxy`) for key management, which is a powerful command that could be risky if the image were compromised. Additionally, `private-key/skill.md` explicitly allows using a raw private key from an environment variable, which, while accompanied by clear security warnings and recommendations for safer alternatives, represents a less secure option that could lead to vulnerabilities if mishandled by the agent or user. The skill's purpose of managing cryptographic keys and performing on-chain transactions is legitimate, and its documentation (`references/security-model.md`) demonstrates a proactive approach to security, but the high-risk capabilities prevent a 'benign' classification.
能力评估
Purpose & Capability
The name/description (SIWA for ERC-8004 agents) aligns with the content: signing, verification, onchain registration, multiple signer backends, and ERC-8128 authenticated requests. The included signer adapters (Bankr, Circle, Privy, private-key, keyring proxy) are consistent with the stated purpose.
Instruction Scope
The SKILL.md and companion docs instruct the agent/operator to run CLI commands inside a workspace (e.g. /home/node/.openclaw/workspace/siwa/packages/siwa-testing), to read SIWA_IDENTITY.md, and to install/use an npm package. They also show code that expects access to environment variables and to deploy/run a keyring proxy. Those runtime instructions go beyond a simple read-only doc: they expect filesystem access, running package installs, and use of secrets. The instructions also include links to external deploy buttons and Docker images which will cause network activity and external deployments if followed.
Install Mechanism
There is no formal install spec in the registry (instruction-only), lowering installer risk. However the docs tell users to run `npm install @buildersgarden/siwa` and other package installs, and recommend deploying a keyring-proxy Docker image (ghcr.io/builders-garden/siwa-keyring-proxy) or one-click Railway deploys. That means following the docs will fetch code from npm/ghcr/railway — normal for an SDK, but you should verify those packages/images/repos before running them.
Credentials
Registry metadata lists no required environment variables, but the documentation and examples reference many sensitive variables (KEYRING_PROXY_SECRET, KEYRING_PROXY_URL, PRIVATE_KEY, BANKR_API_KEY, PRIVY_APP_SECRET, CIRCLE_API_KEY, SIWA_SECRET, etc.). This is an inconsistency: the skill will not function without secrets for many signers or server setups, yet none are declared as required. Requesting private keys or HMAC secrets is plausible for this skill's function, but the lack of explicit declared requirements is a red flag and increases the chance of accidental secret exposure if the user follows the examples carelessly.
Persistence & Privilege
The skill does not set always:true and does not request persistent elevated privileges. It is instruction-only and does not declare any automatic self-enabling behavior. Nothing in the provided files indicates it will modify other skills' configs or demand permanent presence.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install siwa
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /siwa 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v0.0.4
SIWA 0.0.4 brings major documentation overhaul and new wallet-specific guides. - Major overhaul of documentation for clarity and quick starts. - Added wallet-specific skill docs (Bankr, Circle, Privy, Private Key, Keyring Proxy). - Introduced a new modular SKILL.md with a concise overview of SDK modules and examples. - Dedicated server-side verification guide. - Removed outdated unified keyring skill; replaced with self-hosted proxy doc. - New sections for x402 payment flows and reverse CAPTCHA support for agent verification.
v0.0.3
**Expanded multi-wallet support and improved onboarding for ERC-8004 and SIWA.** - Added guides and code examples for integrating SIWA with Privy, Coinbase, Circle, Bankr, smart wallets, and custom wallet solutions. - Reorganized and clarified ERC-8004 agent registration instructions, including user consent prompts and metadata choices. - Introduced a unified Signer interface to simplify wallet integration for both EOA and smart contract wallets (including ERC-1271). - Added quick start, wallet selection guide, and security notices for developers. - Expanded documentation with new reference files and clearer separation of agent-side and server-side usage. - Updated and modularized assets, guides, and supporting documentation for easier integration.
v0.0.2
- Major update: Project structure and documentation have been overhauled for modularity and clarity. - Added skill-specific agent-side and server-side guides, with links to Circle, Privy, Private Key, and Keyring Proxy wallet setups. - Introduced clear SDK module breakdowns and quick reference table for all available imports. - Streamlined documentation to focus on core SIWA (Sign-In With Agent) authentication and ERC-8004 usage. - Centralized external documentation and protocol reference links for easier access.
v0.0.1
Initial release of the SIWA skill for secure Ethereum wallet operations: - Secure Ethereum wallet creation, signing, and management with private keys kept on a proxy server (never in the agent process). - Enforces use of the `@buildersgarden/siwa` SDK for all blockchain operations. - Supports wallet creation, message/transaction signing, and SIWA authentication. - Includes onchain agent registration with explicit user confirmation and metadata. - Step-by-step setup and funding instructions, plus API examples for DeFi and contract interactions. - Identity and reputation functions, onchain data registry, and authenticated API calls built in.
元数据
Slug siwa
版本 0.0.4
许可证
累计安装 2
当前安装数 2
历史版本数 4
常见问题

Sign-in with Agent 是什么?

SIWA (Sign-In With Agent) authentication for ERC-8004 registered agents. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 1133 次。

如何安装 Sign-in with Agent?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install siwa」即可一键安装,无需额外配置。

Sign-in with Agent 是免费的吗?

是的,Sign-in with Agent 完全免费(开源免费),可自由下载、安装和使用。

Sign-in with Agent 支持哪些平台?

Sign-in with Agent 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 Sign-in with Agent?

由 Builders Garden(@buildersgarden)开发并维护,当前版本 v0.0.4。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论