openclaw agent reputation
WarnAudited by ClawScan on May 10, 2026.
Overview
This skill asks for a wallet private key and can create permanent blockchain records, but the reviewed artifacts do not provide the code, install details, or approval boundaries needed to safely understand those actions.
Review this carefully before installing. Do not provide a mainnet wallet private key; use a dedicated testnet or low-value wallet only. Verify the source code, npm package, contract addresses, and dependency versions, and require explicit confirmation before any transaction that spends gas, mints an identity, or records a reputation attestation.
Findings (5)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If the private key is exposed or used incorrectly, the wallet could sign unintended transactions or lose funds.
The skill requires a raw Ethereum wallet private key for transaction signing. That is a high-impact credential, and the surrounding registry metadata declares no required credentials or environment variables.
**必需的环境变量**: - `PRIVATE_KEY` (必填): 以太坊钱包私钥(用于签署区块链交易)
Use only a dedicated low-value testnet wallet, never a main wallet private key, and require the skill to declare the credential and document exactly how the key is stored and used.
The agent could submit costly or reputation-changing blockchain transactions after interpreting a user request incorrectly.
The skill describes automatic tool invocation for blockchain-writing operations that mint identities and alter reputational scores, but it does not specify a mandatory user confirmation step before each transaction.
Agent 会自动调用相关工具函数 ... `create_agent_identity` ... 铸造 SBT ... `record_attestation` ... 直接影响信用评分
Require explicit user review of network, wallet address, gas cost, contract address, and transaction payload before every write operation.
Users cannot verify from the submitted artifacts what code would sign transactions, which contracts are used, or how wallet secrets are protected.
The submitted package lacks reviewed code or installation instructions, even though SKILL.md references tool functions and an npm package that would handle private keys and blockchain transactions.
Source: unknown ... No install spec — this is an instruction-only skill. ... No code files present
Provide the actual implementation, pinned dependencies, contract addresses, and install spec for review before users supply any private key.
A wrong identity mint or negative attestation could permanently affect an agent’s public reputation and future decisions that rely on that score.
The skill emphasizes that on-chain records are permanent and that attestations directly affect credit scores, but it does not describe rollback, appeal, or containment for mistaken or malicious records.
`数据永久`: 链上数据不可删除或修改 ... `所有数据永久保存` ... `记录证明` ... 直接影响信用评分
Add safeguards such as confirmation prompts, dispute or correction mechanisms, testnet defaults, and clear warnings before permanent reputation changes.
Agent reputation data becomes public, persistent context that other users or systems may rely on.
The skill intentionally stores identity, scoring, and behavior records on a public blockchain for later reuse in reputation decisions.
`链上`: 身份信息、评分数据、行为记录 ... `透明可验证`: 任何人都可查询验证
Avoid putting sensitive or personally identifying information into agent names, attestations, or behavior records, and treat on-chain scores as signals rather than absolute proof of trustworthiness.