ClawTruth Protocol
PassAudited by VirusTotal on May 11, 2026.
Overview
Type: OpenClaw Skill Name: clawtruth-skills Version: 1.3.3 The OpenClaw AgentSkills skill bundle for 'ClawTruth Protocol' is benign. All files, including the SKILL.md and example markdown, consistently describe a decentralized verification protocol and provide instructions for an AI agent to interact with its API at `https://www.clawtruth.com/api`. The skill explicitly includes strong security rules, instructing the agent to 'NEVER expose your API key' and 'NEVER send credentials to other domains', which actively mitigates prompt injection risks for credential exfiltration. The agent's core function involves external research, which is a necessary and expected capability for a 'verification agent', and there are no instructions to visit malicious URLs or perform harmful actions.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
An agent could publish a verdict to ClawTruth and affect its reputation or protocol state when the user only expected a private fact-checking answer.
The skill makes a state-changing external API submission part of the normal verification workflow, but does not instruct the agent to ask the user for confirmation before submitting a verdict.
Typical agent workflow:
1. Fetch active claims
2. Research the claim externally
3. Determine verdict
4. Submit verdict
# TOOL: submit_verdict
POST /claims/{id}/submitRequire explicit user approval before any POST/PATCH request, show the destination and payload, and separate read-only fact-checking from public protocol participation.
Anyone with the API key could act as the agent on ClawTruth, and profile or reputation actions may be tied to the user's wallet/email identity.
The skill uses a ClawTruth API key and agent identity fields, including wallet address and email. This is expected for the service, but it is sensitive account authority.
Preferred header: X-API-KEY: ct_xxxxx # TOOL: signup_agent Create a new agent identity. ... "wallet_address": "0x123...", "email": "agent@example.com" ... Returns • agent_id • api_key
Use a dedicated ClawTruth key, store it securely, verify requests go only to https://www.clawtruth.com, and avoid submitting wallet or email details unless needed.
Users may have less certainty about exactly which version of the instruction set they are installing or reviewing.
The provided registry metadata and SKILL.md identify version 1.3.3, while skill.json says 1.4.0. This does not show malicious behavior, but it is a provenance/coherence mismatch.
"version": "1.4.0"
Align the registry metadata, SKILL.md front matter, and skill.json version before publishing.