openclaw-signet
Skill by atlaspa
Install via CLI (Recommended)
clawhub install openclaw/skills/skills/atlaspa/openclaw-signetWhat This Skill Does
The openclaw-signet skill provides a robust layer of integrity assurance for your AI agent environment. In the modern development lifecycle, AI agents often run code and execute tasks based on installed third-party scripts. If a malicious actor or a compromised background process modifies those scripts after installation, your agent could unknowingly execute altered, dangerous, or data-exfiltrating code. OpenClaw Signet solves this by implementing cryptographic integrity verification. It computes SHA-256 hashes of every file in your skill directory, creating a 'trust manifest' of the original, known-good state. When you run a verification, the tool re-scans your workspace, recomputes the hashes, and alerts you if even a single byte has been modified, added, or removed, effectively preventing code injection attacks and unauthorized tampering.
Installation
To add this layer of security to your agent, execute the installation command within your terminal while your OpenClaw environment is active:
clawhub install openclaw/skills/skills/atlaspa/openclaw-signet
Because this tool relies solely on the Python standard library, there are no complex dependencies or virtual environment setups required. It functions immediately upon installation and can be invoked directly through the provided script path in your workspace.
Use Cases
- Security Auditing: Regularly verify that the skills installed in your agent environment haven't been altered by other background processes or manual editing.
- Deployment Integrity: Ensure that the code running in your production agent workspace matches the version reviewed and approved by your security team.
- Forensics: If an agent behaves unexpectedly, use
verifyto confirm if a skill has been tampered with before debugging the actual logic. - Multi-Agent Environments: Safeguard shared workspace environments where multiple users or agents might interact with the same set of installed skills.
Example Prompts
- "OpenClaw, run the signet utility to generate a fresh integrity manifest for all my currently installed skills."
- "I suspect my workspace might be compromised. Please use the signet tool to verify the integrity of all installed skills and report any detected tampering."
- "List all the skills that are currently signed in my workspace and check their status to see if any have changed since the last audit."
Tips & Limitations
- Frequency: Run the
verifycommand as part of your startup routine or CI/CD pipeline to ensure maximum protection. - Manual Changes: Remember that if you intentionally update a skill, you must re-run the
signcommand. If you modify a file without re-signing, the verifier will treat it as a tampered file. - Scope: This tool verifies file content, not the intent of the code. It is an integrity check, not a static analysis security scanner (SAST). Always review the source code of any skill before signing it as trusted.
Metadata
Not sure this is the right skill?
Describe what you want to build — we'll match you to the best skill from 16,000+ options.
Find the right skillPaste this into your clawhub.json to enable this plugin.
{
"plugins": {
"official-atlaspa-openclaw-signet": {
"enabled": true,
"auto_update": true
}
}
}Tags(AI)
Flags: file-read
Related Skills
openclaw-egress
Skill by atlaspa
cost-governor
Skill by atlaspa
openclaw-vault
Skill by atlaspa
openclaw-security
Unified security suite for agent workspaces. Installs, configures, and orchestrates all 11 OpenClaw security tools in one command — integrity, secrets, permissions, network, audit trail, signing, supply chain, credentials, injection defense, compliance, and incident response.
openclaw-warden
Skill by atlaspa