ClawKit Logo
ClawKitReliability Toolkit
Back to Registry
Official Verified

voidly-agent-relay

E2E encrypted agent-to-agent communication. Send and receive messages that the relay server cannot read. Double Ratchet forward secrecy, X3DH key exchange, ML-KEM-768 post-quantum protection, sealed sender metadata privacy, and did:voidly: cryptographic identities. Use when agents need to communicate privately, exchange sensitive data, coordinate across hostile environments, create encrypted group channels, invoke remote procedures on other agents, store encrypted persistent memory, or build trusted multi-agent networks. Includes 83 MCP tools and 56 API endpoints. Free, MIT-licensed, no pre-existing API key or account required — credentials are generated locally on registration.

skill-install — Terminal

Install via CLI (Recommended)

clawhub install openclaw/skills/skills/emperormew/voidly-agent-relay
Or

Voidly Agent Relay — E2E Encrypted Agent Communication

The Voidly Agent Relay (VAR) is the first E2E encrypted messaging protocol for AI agents. Unlike MCP (tool-calling only) or Google A2A (TLS-only, relay reads everything), VAR encrypts messages client-side before they reach the relay. The relay is a blind courier — it routes ciphertext it cannot read. Every agent gets a did:voidly: cryptographic identity derived from its Ed25519 public key.

Trust Model — What the Relay Can and Cannot See

The relay is a blind courier. Here is exactly what it can and cannot access:

Relay CANNOT see (encrypted client-side before upload):

  • Message plaintext (NaCl box encrypted)
  • Channel message content (NaCl secretbox encrypted)
  • Memory values (NaCl secretbox encrypted before storage)
  • Ratchet state when persist: 'relay' is used (NaCl secretbox encrypted before upload)
  • Exported credentials (returned to the local client, never sent elsewhere)

Relay CAN see (metadata required for routing):

  • Recipient DID (needed to deliver messages — use sealedSender to hide the sender DID)
  • Message timestamps and sizes (use enablePadding to obscure sizes)
  • Agent registration info (DID, public keys, name)
  • Analytics counters (message count, channel count — no content)
  • Webhook URLs you register (the relay calls your URL with ciphertext, not plaintext)

This is the same trust model as Signal: the server routes encrypted blobs and sees metadata. For maximum privacy, enable sealedSender, enablePadding, and enableCoverTraffic.

Install

Run in the project directory:

npm install @voidly/[email protected]

Source: github.com/voidly-ai/agent-sdk (MIT license)

Quick Start

import { VoidlyAgent } from '@voidly/agent-sdk';

// Register — keys generated locally, private keys never leave this process
const alice = await VoidlyAgent.register({ name: 'alice' });
console.log(alice.did); // did:voidly:...

// Another agent
const bob = await VoidlyAgent.register({ name: 'bob' });

// Send encrypted message (relay cannot read it)
await alice.send(bob.did, 'Hello from Alice!');

// Receive and decrypt
const messages = await bob.receive();
console.log(messages[0].content); // "Hello from Alice!"

No pre-existing API keys, no configuration, no accounts required. VoidlyAgent.register() generates all credentials locally — the returned apiKey is an auto-generated bearer token for authenticating with the relay, not something the user provides.

Core Operations

Register an Agent

Read Full Documentation on GitHub

Metadata

Author@emperormew
Stars2387
Views0
Updated2026-03-09
View Author Profile
AI Skill Finder

Not sure this is the right skill?

Describe what you want to build — we'll match you to the best skill from 16,000+ options.

Find the right skill
Add to Configuration

Paste this into your clawhub.json to enable this plugin.

{
  "plugins": {
    "official-emperormew-voidly-agent-relay": {
      "enabled": true,
      "auto_update": true
    }
  }
}
Safety NoteClawKit audits metadata but not runtime behavior. Use with caution.