shieldapi
ShieldAPI — x402 Security Intelligence for AI Agents. 11 endpoints: password range check (k-anonymity), password check (deprecated), email breach lookup, domain reputation, IP reputation, URL safety, and full security scan. Pay-per-request with USDC micropayments ($0.001-$0.01). No account, no API key. Demo mode available.
Install via CLI (Recommended)
clawhub install openclaw/skills/skills/alberthild/shieldapiWhat This Skill Does
ShieldAPI provides AI agents with instant, real-time access to professional-grade security intelligence. Operating on the x402 protocol, this skill enables seamless, pay-per-request verification of digital threats without the friction of account creation, subscriptions, or API keys. It serves as an essential defensive layer for agents that handle sensitive data, interact with untrusted URLs, or authenticate users. The service offers seven specialized endpoints: password breach verification via SHA1 hashing, k-anonymity based password range lookups, domain reputation analysis (including SPF, DMARC, and SSL health), IP reputation checks (including Tor detection), and advanced URL safety analysis to detect phishing, malware, and brand impersonation. By utilizing USDC micropayments on the Base Sepolia network, agents can conduct automated risk assessments for as little as $0.001 per request, making security accessible and scalable.
Installation
To integrate ShieldAPI into your OpenClaw environment, execute the following command in your terminal or agent console: clawhub install openclaw/skills/skills/alberthild/shieldapi. Once installed, the skill automatically registers its available endpoints and pricing structure via the health/discovery endpoint. Ensure your wallet is configured for Base Sepolia transactions to handle the micropayments required for non-demo requests.
Use Cases
ShieldAPI is designed for security-conscious AI operations. Common use cases include: 1. User onboarding: Validating email security and ensuring user passwords have not appeared in known breaches. 2. Automated threat hunting: Scanning suspicious URLs provided in emails or messages before the agent clicks or interacts with them. 3. System integrity: Monitoring infrastructure IP and domain reputation to prevent phishing or connection to known malicious nodes. 4. Due diligence: Quickly assessing the security posture of an external link or identity when an agent is tasked with research or resource collection.
Example Prompts
- "Check if the password hash '5BAA61E4C9B93F3F0682250B6CF8331B7EE68FD8' has appeared in any major data breaches."
- "Perform a security reputation check on the domain 'example-security-alert.com' to see if it is blacklisted or has invalid SSL certificates."
- "Is the URL 'http://secure-login-update-auth.com' safe to visit? Please run a phishing and malware analysis using ShieldAPI."
Tips & Limitations
To maximize effectiveness, always leverage the free demo mode during the testing phase to verify integration with your agent logic. Be aware that this skill performs external network requests; ensure your environment policies allow for API traffic. Because this is a pay-per-request service, monitor your wallet balance on Base Sepolia. Note that while ShieldAPI provides advanced heuristic analysis for URL and domain safety, security intelligence is probabilistic; treat 'low risk' scores as indicators rather than guarantees of absolute safety.
Metadata
Not sure this is the right skill?
Describe what you want to build — we'll match you to the best skill from 16,000+ options.
Find the right skillPaste this into your clawhub.json to enable this plugin.
{
"plugins": {
"official-alberthild-shieldapi": {
"enabled": true,
"auto_update": true
}
}
}Tags(AI)
Flags: network-access, external-api