Agentplace
ReviewAudited by ClawScan on May 10, 2026.
Overview
Agentplace is a coherent, user-confirmed marketplace installer, but installing third-party agents and using paid API keys carries normal supply-chain and credential risks.
Install only when you intentionally asked to browse or add an agent. Before approving, review the archive list and SKILL.md, prefer trusted publishers, keep any paid API key secure, and avoid installing packages whose source or behavior you do not understand.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If the user approves an install, the local agent environment can be changed by the downloaded skill.
The skill documents shell commands that modify the local OpenClaw skills directory. This is central to the stated marketplace purpose and is gated by confirmation, but it is still a local mutation users should notice.
Step 5 — Final confirmation Install this agent now? (yes/no) Step 6 — Install locally unzip -qo /tmp/agent.zip -d /tmp/agent-preview/ mv /tmp/agent-preview ~/.openclaw/workspace/skills/<agent-id>/
Run the install workflow only after an explicit request, confirm the destination skill ID, and do not approve unexpected commands or paths.
A compromised marketplace package or CDN response could install an unsafe skill if the user approves it.
The workflow downloads community agent ZIP files from an API-provided URL and previews them before installation. This is purpose-aligned, but the documented workflow does not include cryptographic verification such as a checksum or signature.
Agentplace distributes agents as ZIP archives. ... curl -sL "$download_url" -o /tmp/agent.zip ... zipinfo -1 /tmp/agent.zip unzip -p /tmp/agent.zip SKILL.md > /tmp/agent-SKILL.md
Prefer trusted publishers, review the archive contents and SKILL.md before installing, and use checksum/signature verification if Agentplace provides it.
Anyone who obtains the API key may be able to access paid Agentplace downloads for the account.
Paid-agent downloads require an API key. This is expected for paid marketplace access, and the skill says it is only for download authorization, but it remains a sensitive credential.
Paid agent: curl -s -H "x-api-key: ak_xxxx" https://api.agentplace.sh/marketplace/agents/<agent-id>/download ... The API key is used only to authorize downloads and must never be included in prompts or shared publicly.
Avoid pasting the key into public chats or files; use a secure secret mechanism if available and rotate the key if it is exposed.