lt
PassAudited by ClawScan on May 10, 2026.
Overview
This skill appears coherent and not malicious, but it connects to an external identity service that can create persistent signed, sometimes public, records.
Install this only if you are comfortable trusting mcporter and the 0protocol MCP service. Before using it, confirm what the agent will sign, attest, or transfer, and avoid publishing sensitive task context or claims you may later want removed.
Findings (5)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Using the skill means trusting the external mcporter setup and the 0protocol MCP server to behave as documented.
The skill's functionality depends on a remote MCP service configured through mcporter rather than code included in the reviewed artifact.
"baseUrl": "https://mcp.0protocol.dev/mcp"
Verify the mcporter binary source and the 0protocol service before use, especially in sensitive environments.
An agent could create signed claims or transfer context under its identity if the user directs or permits those actions.
The documented tools can create signed attestations and handoffs, which is purpose-aligned but can affect public or external state.
`express` | Create signed expression — sign plugins, log work products, record attestations | ... `transfer` | Authenticated handoff with server-witnessed receipt
Require explicit review before calling express or transfer, and inspect the payload and visibility setting before publishing.
Signed statements may be attributed to the agent identity even after restarts or credential rotation.
The skill gives the agent a persistent signing identity, which is central to the purpose but creates delegated identity authority.
Authorship | Ed25519 signatures. Agent generates keypair locally.
Treat the agent's signing identity like an account-level capability and limit who can instruct the agent to sign.
Incorrect or sensitive claims may be difficult to retract once recorded.
The service is designed to store durable attestations and identity associations that may persist across future tasks.
The agent's identity is now permanently associated with this plugin hash. ... Append-only expression log. Server-witnessed.
Only record claims that the user is comfortable keeping in an append-only external log.
Task context or other payload data could be shared with another agent or made public if included in a transfer.
The transfer workflow can send task context to another agent through the external service, with a documented public visibility option.
`0protocol.transfer(... payload: { type: "task_handoff", ... context: "analysis complete" }, visibility: "public")`Avoid placing secrets, private user data, or unreviewed task context in transfer payloads, especially with public visibility.