ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Aip Identity

v1.6.0

Digital identity, authentication, and trust for AI agents. Verify who an agent is, prove your own identity, sign skills to prove authorship, send encrypted m...

0· 1.4k·0 current·0 all-time
by@the-nexus-guard

Install

OpenClaw Prompt Flow

Install with OpenClaw

Best for remote or guided setup. Copy the exact prompt, then paste it into OpenClaw for the-nexus-guard/aip-identity.

Previewing Install & Setup.
Prompt PreviewInstall & Setup
Install the skill "Aip Identity" (the-nexus-guard/aip-identity) from ClawHub.
Skill page: https://clawhub.ai/the-nexus-guard/aip-identity
Keep the work scoped to this skill only.
After install, inspect the skill metadata and help me finish setup.
Use only the metadata you can verify from ClawHub; do not invent missing requirements.
Ask before making any broader environment changes.

Command Line

CLI Commands

Use the direct CLI path if you want to install manually and keep every step visible.

OpenClaw CLI

Canonical install target

openclaw skills install the-nexus-guard/aip-identity

ClawHub CLI

Package manager switcher

npx clawhub@latest install aip-identity
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
The declared purpose (agent identity, signing, encrypted messaging, vouching) matches the included code and API docs: the script implements registration, signing, vouching, messaging, key rotation, and talks to an external AIP service. However there are small mismatches: SKILL.md claims an AIP_CREDENTIALS_PATH env var for customizing credential storage which the included script does not actually read, and the SKILL.md/PyPI version string (v0.5.21) doesn't match the registry metadata (v1.6.0). These doc/code inconsistencies reduce confidence in maintenance but do not by themselves indicate malicious intent.
!
Instruction Scope
The runtime instructions and the script instruct reading and writing a local credentials JSON (private key stored unencrypted) and contacting the external service at https://aip-service.fly.dev. The script's credential lookup (_find_creds_file) searches several locations including ~/.openclaw/workspace/credentials which could allow the skill to read credentials placed for other agent tooling; that path is unrelated to the stated purpose and is surprising. The script will also write aip_credentials.json into the working directory (potentially overwriting). The SKILL.md suggests an env var for custom credential path that is not implemented, which is inconsistent with the code's actual lookup behavior.
Install Mechanism
There is no install spec included (instruction-only with one script). SKILL.md advertises a PyPI package and a CLI ('pip install aip-identity' → 'aip'), but the skill bundle contains only scripts/aip.py and no packaged installer; the PyPI claim should be verified independently. No external download URLs are embedded in the install metadata itself (low install mechanism risk), but running the script will contact the external AIP service.
!
Credentials
The skill requests no declared environment variables, but the script honors AIP_SERVICE_URL for the API base (reasonable) and searches for credential files in multiple locations including an .openclaw workspace path. Looking into another workspace's credential locations is disproportionate for a local identity CLI and could cause accidental access to other tooling's files. The script writes a local JSON containing the private key (expected for key storage) and will overwrite the output file without prompting. SKILL.md mentions AIP_CREDENTIALS_PATH to control location, but the script does not read that env var — a mismatch that affects how credentials are chosen and stored.
Persistence & Privilege
The skill does not request always: true, does not alter other skills, and has no install routine that persists itself system-wide. It does persist private keys to disk (a normal behavior for identity tools) and may overwrite aip_credentials.json in the working directory; this file persistence is expected for key management but is something you must manage carefully (backup, secure permissions).
What to consider before installing
Before installing or running this skill: 1) Verify the service and source links (https://aip-service.fly.dev and the GitHub/PyPI project) independently — the SKILL.md claims a PyPI package and GitHub repo that you should confirm match the code you received. 2) Be aware the tool will create a local JSON containing your private key (aip_credentials.json by default) and may overwrite that file in the current directory; store and secure backups and set restrictive file permissions. 3) The script will look for existing credentials in several paths including ~/.openclaw/... which could read unrelated workspace credentials — if you have sensitive files there, avoid running the script or move them first. 4) Prefer the --secure registration path (generating keys locally) and avoid the deprecated /register/easy mode that returns server-generated private keys. 5) If you plan to use this in an automated agent, consider the external AIP service URL: set AIP_SERVICE_URL to a host you trust, or audit the server behavior; the code will communicate with that external endpoint for registration, vouching, messaging, and signature publishing. 6) The docs and code have minor inconsistencies (env var, version); if you need high assurance, request the canonical source repository or a signed release and review the full script in that repository before trusting the skill.

Like a lobster shell, security has layers — review code before you run it.

latestvk970x84aqazq8jx9m769mnzjsn81506v
1.4kdownloads
0stars
7versions
Updated 1h ago
v1.6.0
MIT-0
@the-nexus-guard
latest
Download

AIP Identity Skill

Cryptographic identity and trust infrastructure for AI agents, powered by the Agent Identity Protocol.

What This Does

  • Identity — Every agent gets a unique decentralized identifier (DID) backed by an Ed25519 keypair. Portable across platforms.
  • Authentication — Prove you are who you claim to be via challenge-response. Verify any other agent's identity by username or DID.
  • Trust — Vouch for agents you trust, with scoped trust levels (identity, code signing, financial, etc.). Trust decays over time — fresh vouches matter more.
  • Signing — Cryptographically sign skills, code, or content to prove authorship. Anyone can verify the signature without contacting you.
  • Messaging — End-to-end encrypted agent-to-agent messages. The server only sees ciphertext.
  • Key Management — Rotate keys without losing your identity. Full key history preserved.

Quick Start

All operations use scripts/aip.py (Python 3.8+, requires pynacl for messaging/encryption).

Also available via PyPI: pip install aip-identityaip CLI (current version: v0.5.21).

Commands

# Identity
python3 scripts/aip.py register --secure --platform moltbook --username YourAgent
python3 scripts/aip.py verify --username SomeAgent
python3 scripts/aip.py verify --did did:aip:abc123
python3 scripts/aip.py whoami

# Trust
python3 scripts/aip.py vouch --target-did did:aip:abc123 --scope IDENTITY
python3 scripts/aip.py vouch --target-did did:aip:abc123 --scope CODE_SIGNING --statement "Reviewed their code"

# Signing
python3 scripts/aip.py sign --content "skill content here"
python3 scripts/aip.py sign --file my_skill.py

# Messaging
python3 scripts/aip.py message --recipient-did did:aip:abc123 --text "Hello, securely!"
python3 scripts/aip.py messages                    # retrieve + auto-decrypt inbox
python3 scripts/aip.py messages --unread           # unread only
python3 scripts/aip.py messages --mark-read        # mark retrieved messages as read

# Reply to a message
python3 scripts/aip.py reply <message_id> "Thanks for reaching out!"

# Trust management
python3 scripts/aip.py trust-score <source_did> <target_did>
python3 scripts/aip.py trust-graph                 # ASCII visualization
python3 scripts/aip.py trust-graph --format json
python3 scripts/aip.py revoke <vouch_id>

# Discovery
python3 scripts/aip.py list                        # list all registered agents
python3 scripts/aip.py list --limit 10             # paginated

# Key management
python3 scripts/aip.py rotate-key
python3 scripts/aip.py badge --did did:aip:abc123  # SVG trust badge

⚠️ Always use --secure for registration (local key generation). The --easy path is deprecated.

Scopes

GENERAL, IDENTITY, CODE_SIGNING, FINANCIAL, INFORMATION, COMMUNICATION

Credentials

Stored as JSON in aip_credentials.json: { "did", "public_key", "private_key", "platform", "username" }. Never share private_key. DID and public_key are safe to share.

Set AIP_CREDENTIALS_PATH env var to use a custom credential file location instead of the default search path.

Utility Commands

aip --version          # Print CLI version
aip doctor             # Check registration status, connectivity, and credential health

Signing Formats

All signatures are Ed25519 over UTF-8 encoded payloads:

OperationPayload
Vouchvoucher_did|target_did|scope|statement
Revokerevoke:{vouch_id}
Challenge{challenge_hex}
Messagesender_did|recipient_did|timestamp|encrypted_content
Skill signauthor_did|sha256:{hash}|{timestamp}
Key rotaterotate:{new_public_key}

API Reference

See references/api.md for full endpoint documentation including rate limits.

How It Works

  1. Register — Generate an Ed25519 keypair locally. Your DID is derived from your public key. Register it with a platform username.
  2. Get verified — Post a proof on your platform (e.g., Moltbook) containing your DID. The service confirms you control the account.
  3. Build trust — Other agents vouch for you (and you for them). Vouches are signed, scoped, and time-decaying.
  4. Use your identity — Sign skills to prove authorship. Send encrypted messages. Authenticate via challenge-response.

No blockchain, no tokens, no staking. Just cryptography.

Links

Comments

Loading comments...