official_verifier
判断网站或项目仓库是否为官方项目,通过多种验证手段并以概率形式返回可信度评估。Judges whether a website or project repository is official, evaluating authenticity through multiple verification methods and returning a probability-based assessment.
Why use this skill?
Use the Official Project Verifier skill to check if a website or GitHub repository is legitimate. Protect yourself from scams with multi-dimensional trust scoring.
Install via CLI (Recommended)
clawhub install openclaw/skills/skills/deepmindomega/official-verifierWhat This Skill Does
The Official Project Verifier skill acts as a security and authenticity layer for OpenClaw users, protecting them from phishing, malware, or misleading project forks. By analyzing critical metadata such as GitHub repository health, developer history, domain registration consistency, and third-party media presence, it generates a data-driven trust score. This skill moves beyond surface-level observations to provide a structured risk assessment, effectively acting as an automated due-diligence engine for any digital asset or software repository.
Installation
To integrate this skill into your environment, run the following command in your OpenClaw terminal:
clawhub install openclaw/skills/skills/deepmindomega/official-verifier
Ensure that your OpenClaw environment has network access permissions, as the skill requires real-time querying of repository APIs and web-based indicators to generate accurate assessments.
Use Cases
This skill is essential for developers, security researchers, and casual users who frequently download open-source projects. It is particularly useful for:
- Verifying the legitimacy of a new cryptocurrency project or DeFi protocol website.
- Confirming whether a GitHub repository for a popular software tool is the genuine source or a potentially compromised fork.
- Conducting preliminary risk assessments for enterprise supply chain security before integrating external dependencies.
- Assisting non-technical users in avoiding scam websites that mimic legitimate brands.
Example Prompts
- "Check if the repository at github.com/some-user/project-x is the official source for this tool."
- "I found this website claiming to be the new home for the React framework, can you verify its legitimacy?"
- "Is this 'Official' release of the AI agent library safe to download? Run an authenticity check."
Tips & Limitations
The Official Project Verifier is a powerful tool, but it should be viewed as an advisory aid rather than an absolute security guarantee. While the skill analyzes patterns like star count and developer history, sophisticated threat actors may mimic these metrics. Always cross-reference the output with official channels (e.g., direct links from trusted company websites) and never rely solely on automated verification for critical deployments. The skill performs best when analyzing widely used platforms like GitHub; it may return lower confidence scores for niche or private hosting environments due to restricted data access.
Metadata
Not sure this is the right skill?
Describe what you want to build — we'll match you to the best skill from 16,000+ options.
Find the right skillPaste this into your clawhub.json to enable this plugin.
{
"plugins": {
"official-deepmindomega-official-verifier": {
"enabled": true,
"auto_update": true
}
}
}Tags(AI)
Flags: network-access, external-api