Agent Identity
ReviewAudited by ClawScan on May 10, 2026.
Overview
The skill mostly matches its cryptographic identity purpose, but its key-generation code can write files outside the intended keys folder if given a crafted agent name.
Use this skill only with simple, trusted agent names until path validation is fixed; do not use names containing slashes, backslashes, drive letters, or '..'. Protect generated private keys, avoid real passwords on the command line, and install dependencies from a trusted source.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A crafted agent name could cause the skill to create or overwrite key files outside the expected folder.
The required --name value is used directly in a filesystem path and later opened for writing, so names containing absolute paths or parent-directory segments could escape the intended keys/ directory.
private_path = os.path.join(KEY_DIR, f"{name}_private.pem")Restrict agent names to safe characters, reject path separators and absolute paths, and resolve/validate that outputs remain inside the intended keys directory before writing.
Anyone who obtains the private key, or its password if encrypted, could sign messages as that agent identity.
The skill intentionally creates and uses private keys for agent identity, which is purpose-aligned but sensitive.
Keys are stored in `keys/` directory ... Never share your private key
Use encryption for private keys, avoid command-line passwords for real use, store keys with restrictive file permissions, and back them up securely.
The installed package version depends on the user’s package index and environment.
The Python dependency is expected for cryptographic operations, but the install instruction is unpinned and there is no separate install spec or lockfile in the supplied artifacts.
pip install cryptography
Install from a trusted package index and consider pinning a known-good cryptography version in a controlled environment.
Windows instructions may not work as written, and users should not substitute an unreviewed wrapper from elsewhere without checking it.
The documentation references a PowerShell wrapper, but the provided file manifest only includes SKILL.md and identity.py, so the recommended Windows wrapper is absent from the reviewed artifacts.
`agent-identity.ps1` - PowerShell wrapper (Windows)
Use the reviewed Python CLI directly or obtain any missing wrapper only from a trusted, reviewed source.