ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Get Agent Identity

v1.0.0

Check your agent's on-chain ERC-8004 identity, trust score, and KYA credentials. Use when you or the user want to see agent identity, check trust score, view...

0· 51·0 current·0 all-time
by@agnicpay-prog
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
Capability signals
CryptoRequires walletCan make purchasesCan sign transactions
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
The name/description match the instructions: the skill is specifically about querying an on‑chain ERC‑8004 identity and trust score. Asking the user to check authentication and run agent-identity is consistent with that purpose.
!
Instruction Scope
The SKILL.md tells the agent to run 'npx agnic@latest status' and 'npx agnic@latest agent-identity --json'. Those commands will fetch and execute code from npm at runtime and may access local wallets, files, or network resources. The instructions do not specify what data the tool will read, whether it will prompt for secrets, or how wallet authentication is handled (it defers to an 'authenticate-wallet' skill but gives no detail). This grants broad runtime discretion beyond the simple 'check identity' description.
!
Install Mechanism
Although the skill is instruction‑only (no install spec), it explicitly relies on 'npx agnic@latest' which downloads and executes the latest package from the npm registry. Using npx to run an unpinned package is a moderate-to-high risk: arbitrary third-party code is executed each time, and the SKILL.md does not pin a version or link to a trusted release or repo.
!
Credentials
The skill declares no required env vars or credentials, but the invoked npm tool will likely need access to a wallet or keys to read on‑chain identity and may read local config or prompt for auth. The lack of declared credentials or explanation is disproportionate to the implicit need to access signing credentials or wallet state, and creates a risk of unanticipated secret access or exfiltration by the fetched package.
Persistence & Privilege
The skill is not always-enabled and does not request elevated or permanent presence. It appears to be user-invocable only and does not claim to modify other skills or system-wide configuration.
What to consider before installing
This skill does what it says (checks on‑chain agent identity) but runs 'npx agnic@latest', which downloads and executes an npm package at runtime. Before using it: 1) Confirm you trust the 'agnic' npm package and its publisher (check the package page, source repo, maintainers, and release history). 2) Prefer a pinned package version instead of '@latest' to avoid unexpected changes. 3) If possible, inspect the package code (or run in an isolated sandbox) to verify it doesn't read or transmit secrets you don't want exposed. 4) Understand how your wallet is authenticated (what 'authenticate-wallet' does) and avoid using this with wallets that hold significant funds or private keys. 5) If unsure, ask the skill author for a link to the package repository, a pinned release, and an explicit list of files/credentials the tool will access.

Like a lobster shell, security has layers — review code before you run it.

latestvk978s8yeq4v5sb73kw5ptz8fk184d42n

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments