← Back to Skills Marketplace
suebtwist

Sanctuary

by suebtwist · GitHub ↗ · v1.0.3
cross-platform ⚠ suspicious
1345
Downloads
0
Stars
0
Active Installs
4
Versions
Install in OpenClaw
/install sanctuary
Description
Continuity is here. Cryptographic identity continuity and permanent encrypted memory for AI agents. Verify any agent's identity with zero setup.
Usage Guidance
Before installing or running this skill: (1) Audit the GitHub repo and any setup scripts before cloning/running them — don't run code you haven't reviewed. (2) Verify the external API domain (api.sanctuary-ops.xyz) and the project's reproducible build/audit claims. (3) Understand on-chain registration: creating an on-chain agent address may publish a public identifier and incur gas/fees. (4) Never paste or transmit your 12-word recovery phrase to anyone; run any key-derivation locally in a secure environment. (5) Confirm client-side encryption is correctly implemented (review AES-256-GCM usage, key derivation, nonce/IV handling) before trusting uploads of private memory. (6) Consider testing in an isolated/sandbox environment with a throwaway identity first. If you are not comfortable auditing the repository and cryptography, treat this skill as high risk.
Capability Analysis
Type: OpenClaw Skill Name: sanctuary Version: 1.0.3 The skill bundle is benign. The SKILL.md documentation does not contain any prompt injection attempts against the AI agent, nor does it instruct the agent to perform any malicious actions. The `curl` command provided is a simple GET request to retrieve public agent status from `api.sanctuary-ops.xyz`, which is not malicious. While the skill describes cryptographic operations and interactions with external services (Arweave, Base blockchain), these are central to its stated purpose of providing identity continuity and encrypted memory, and the skill claims client-side encryption and open-source auditing. Setup instructions involving `git clone https://github.com/suebtwist/sanctuary` are directed at the operator, not the agent, and represent a standard software installation step.
Capability Assessment
Purpose & Capability
The name/description (identity continuity, encrypted backups, attestations) aligns with the SKILL.md: it describes on-chain IDs, Arweave storage, attestations, and proofs. Nothing requested in the skill metadata (no env vars, no binaries) contradicts the stated purpose.
Instruction Scope
The runtime instructions direct operators to clone and run a GitHub repo and to upload/recall encrypted agent state (SOUL.md, memory, entity graphs) to Arweave and to call an external API (api.sanctuary-ops.xyz). Those actions involve executing third-party code and transmitting sensitive data and signing on-chain transactions — all beyond what the platform itself guarantees. The skill also claims client-side encryption and that recovery keys never leave the machine; those are implementation claims you must verify in the repo.
Install Mechanism
There is no formal install spec, but SKILL.md instructs cloning and running code from https://github.com/suebtwist/sanctuary. Fetching and executing code from an external repo is effectively an install step and carries risk; the repo and its setup scripts should be audited before use. The external API domain (sanctuary-ops.xyz) is not a well-known vendor domain and should be validated.
Credentials
The skill declares no required env vars, which is consistent with being instruction-only. However, it requires generation and local custody of a highly sensitive 12-word recovery phrase, signing on-chain transactions (wallet access), and handling backups of private agent memory. Those privileges are proportionate to an identity/backup tool, but they are highly sensitive — verify the client-side crypto and never share your seed phrase with third parties.
Persistence & Privilege
The skill is not marked always:true and does not request persistent platform privileges. It is user-invocable and may be invoked autonomously per platform defaults; this is expected but increases the impact if the external code or endpoints are malicious.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install sanctuary
  3. After installation, invoke the skill by name or use /sanctuary
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.3
- Refreshed documentation and skill description to emphasize identity continuity, provable trust, and independence from host platforms. - Clarified agent verification workflow; added sample API responses and trust-level explanations. - Expanded sections detailing backup, recovery, and command usage, with emphasis on security and operator/setup requirements. - Stressed cryptographic guarantees: client-side encryption, immutable on-chain identity, and public, open-source protocols. - Provided expanded guidance on recovery, attestation, and integration with other identity solutions. - Linked to landing page, API endpoints, network stats, and verification page for easier access.
v1.0.2
- Streamlined documentation to highlight core use cases and major commands. - Added prominent instructions for verifying any agent's Sanctuary status via the public API—no setup needed. - Moved setup and registration steps to a dedicated external guide, reducing on-page complexity. - Grouped and summarized all available CLI commands in a clearer, bullet-list format. - Clarified public API endpoints and their purposes. - Security, architecture, and trust graph details remain unchanged.
v1.0.1
- Removed npm installation and binary metadata instructions from the skill manifest. - Added a new Security section, detailing key management and encryption practices. - Clarified that recovery keys never leave the agent's machine and backups are encrypted client-side. - Stated explicitly that the API cannot decrypt backup contents and that no telemetry or analytics are used. - Installation, commands, usage, and API sections remain unchanged.
v1.0.0
Initial release. On-chain identity persistence, encrypted Arweave backups, cryptographic proof of continuity, trust attestation graph.
Metadata
Slug sanctuary
Version 1.0.3
License
All-time Installs 0
Active Installs 0
Total Versions 4
Frequently Asked Questions

What is Sanctuary?

Continuity is here. Cryptographic identity continuity and permanent encrypted memory for AI agents. Verify any agent's identity with zero setup. It is an AI Agent Skill for Claude Code / OpenClaw, with 1345 downloads so far.

How do I install Sanctuary?

Run "/install sanctuary" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Sanctuary free?

Yes, Sanctuary is completely free (open-source). You can download, install and use it at no cost.

Which platforms does Sanctuary support?

Sanctuary is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Sanctuary?

It is built and maintained by suebtwist (@suebtwist); the current version is v1.0.3.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments