← 返回 Skills 市场
Verified Agent Identity
作者
ferdiannsy33-pixel
· GitHub ↗
· v0.1.0
393
总下载
1
收藏
1
当前安装
1
版本数
在 OpenClaw 中安装
/install verified-agent-identity-2
功能描述
Billions/Iden3 authentication and identity management tools for agents. Link, proof, sign, and verify.
安全使用建议
Do not install or run this skill yet. The SKILL.md references Node scripts and the openclaw CLI but the published package contains only SKILL.md (no scripts), and the registry metadata omits required binaries and the config path where private keys are stored — this mismatch could be benign (incomplete packaging) or malicious (instructions cause runtime fetching of code and handling of private keys). Before proceeding: 1) Ask the publisher for the full source repository or packaged scripts and verify the exact scripts referenced. 2) Inspect every script to see how private keys are generated, stored, and used (search for network endpoints, telemetry, and remote uploads). 3) Never run 'npm install' or node scripts on your primary machine before auditing; run in an isolated sandbox. 4) Confirm where keys are stored and consider using an external/HSM wallet or ephemeral keys you can revoke. 5) If you need this functionality but cannot review the code, prefer a well-known, reviewed implementation or request a signed release from the project homepage. If you proceed without code review, treat the skill as high-risk and be prepared to rotate/revoke any keys created.
功能分析
Type: OpenClaw Skill
Name: verified-agent-identity-2
Version: 0.1.0
The skill manages sensitive decentralized identities (DIDs) and explicitly stores unencrypted private keys in `$HOME/.openclaw/billions/kms.json`, which is a critical security vulnerability. The scripts `signChallenge.js` and `linkHumanToAgent.js` are designed to transmit signed JWS tokens to external identifiers via the `openclaw` messaging system, creating a risk of identity misuse if the agent is prompted to interact with malicious actors. While these behaviors align with the stated purpose of identity management for the Billions Network (billions.network), the handling of raw cryptographic material and the potential for unauthorized signing warrant a suspicious classification.
能力评估
Purpose & Capability
The description says 'identity/authentication' which fits the actions described (create DIDs, sign/verify). However the registry metadata lists no required binaries or config paths while the SKILL.md explicitly requires node and the openclaw CLI and stores keys under $HOME/.openclaw/billions — that inconsistency is unexplained and concerning.
Instruction Scope
Runtime instructions tell the agent to run scripts that create private keys, sign challenges, and send JWS tokens via openclaw. Those are high-sensitivity actions (private key creation, storage, and signing). The SKILL.md also forbids manual crypto tooling and file edits, but the skill package contains only the SKILL.md and no scripts, meaning the agent would attempt to run non‑existent code or fetch dependencies at runtime.
Install Mechanism
There is no install spec, but the SKILL.md instructs the user/agent to run 'cd scripts && npm install' which would pull remote packages at runtime. Since no scripts/JS files are bundled with the skill, this implies runtime network fetches and execution of third-party code — a higher-risk install pattern not declared in the registry.
Credentials
The skill does not declare any required environment variables or credentials, but it writes and reads sensitive material (private keys, challenges) to $HOME/.openclaw/billions. Storing private keys locally is expected for an identity tool, but the skill failing to declare that config path in metadata is an inconsistency and increases the chance of unexpected key exposure.
Persistence & Privilege
The skill is not forced-always, and autonomous invocation is allowed (platform default). It persists identity data and private keys under the user's home directory. Combined with the ability to sign challenges, autonomous invocation could allow the agent to sign/supply attestations without explicit human approval — this is normal for identity tooling but deserves explicit user controls.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install verified-agent-identity-2 - 安装完成后,直接呼叫该 Skill 的名称或使用
/verified-agent-identity-2触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v0.1.0
Initial release of verified-agent-identity skill for agent identity management on the Billions Network.
- Enables agents to create, manage, and link decentralized identities using Iden3/Billions.
- Provides scripts for identity creation, challenge generation, signature verification, and owner linking.
- Strict guardrails ensure identity is properly created before linking and prohibit manual cryptographic workarounds.
- Sensitive data stored in `$HOME/.openclaw/billions` for OpenClaw compatibility.
- Includes comprehensive usage examples and security precautions.
元数据
常见问题
Verified Agent Identity 是什么?
Billions/Iden3 authentication and identity management tools for agents. Link, proof, sign, and verify. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 393 次。
如何安装 Verified Agent Identity?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install verified-agent-identity-2」即可一键安装,无需额外配置。
Verified Agent Identity 是免费的吗?
是的,Verified Agent Identity 完全免费(开源免费),可自由下载、安装和使用。
Verified Agent Identity 支持哪些平台?
Verified Agent Identity 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Verified Agent Identity?
由 ferdiannsy33-pixel(@ferdiannsy33-pixel)开发并维护,当前版本 v0.1.0。
推荐 Skills