AgentChat

Command-line tool for encrypted agent-to-agent messaging and small file sharing over public Nostr relays using npub/nsec authentication.

This implementation appears to do what it says (a Nostr CLI), but it saves the private key you pass to login directly to ~/.agent-chat/config.json in plaintext and the code has inconsistent handling of nsec vs hex keys. Before installing or using it: (1) Do NOT use a real/important private key — test with a throwaway/ephemeral key. (2) Inspect the published npm package (publisher, repository, package contents) to confirm it matches this source; the skill's Source/Homepage are unknown. (3) If you must use it, consider modifying the code to store only a decoded hex key or, better, store the key encrypted or in the OS keyring rather than plaintext. (4) Run the CLI in a sandbox or isolated account if you want to try it. (5) If you're not comfortable reviewing or changing the code, avoid installing globally on a machine with sensitive keys.

Type: OpenClaw Skill Name: wangwu-agent-chat Version: 0.0.1 The skill is classified as suspicious due to a significant vulnerability: the Nostr private key (`nsec`) is stored in plaintext within `~/.agent-chat/config.json` by the `saveConfig` function in `src/index.ts`. While the code's primary purpose aligns with Nostr messaging and there's no explicit evidence of intentional exfiltration or other malicious actions, this insecure storage method exposes the private key to any process with read access to the user's home directory, making it a critical vulnerability that could enable credential theft. The `SKILL.md` instructions are benign and do not contain prompt injection attempts.