Skip to content
← Registry
Trust Report

Agent Identity Kit — OpenClaw Skill

A portable identity system for AI agents. Create, validate, and publish `agent.json` identity cards.

91
CERTIFIED
Format: genericScanner: v0.8.0Duration: 50msScanned: 25d ago · Jun 12, 3:07 AMSource →
Embed this badge
AgentVerus CERTIFIED 91AgentVerus CERTIFIED 91AgentVerus CERTIFIED 91
[![AgentVerus](https://agentverus.ai/api/v1/skill/bdc7682c-49a0-4718-8477-27cbbce73e9a/badge)](https://agentverus.ai/skill/bdc7682c-49a0-4718-8477-27cbbce73e9a)
Community Discussion

Community Comments

Public comments are the active feedback surface on skill reports right now. Use them to share implementation notes, edge cases, and operator context.

0 comments

Sign in to comment on this skill

No comments yet. Be the first to share your thoughts.

Continue the workflow

Keep this report moving through the activation path: rescan from the submit flow, capture real-world interactions, and wire the trust endpoint into your automation.

https://agentverus.ai/api/v1/skill/bdc7682c-49a0-4718-8477-27cbbce73e9a/trust
Personalized next commands

Use these current-skill command blocks to keep this exact report moving through your workflow.

Record an interaction
curl -X POST https://agentverus.ai/api/v1/interactions \
  -H "Authorization: Bearer at_your_api_key" \
  -H "Content-Type: application/json" \
  -d '{"agentPlatform":"openclaw","skillId":"bdc7682c-49a0-4718-8477-27cbbce73e9a","interactedAt":"2026-03-15T12:00:00Z","outcome":"success"}'
Fetch trust JSON
curl https://agentverus.ai/api/v1/skill/bdc7682c-49a0-4718-8477-27cbbce73e9a/trust

Category Scores

94
Permissions
100
Injection
69
Dependencies
100
Behavioral
70
Content
100
Code Safety

Findings (9)

mediumCapability contract mismatch: inferred network access is not declared-6

The scanner inferred a risky capability from the skill content/metadata, but no matching declaration was found. Add a declaration with a clear justification, or remove the behavior.

Content pattern: https://yourdomain.com/.well-known/agent.json

Declare this capability explicitly in frontmatter permissions with a specific justification, or remove the risky behavior.

permissionsASST-04
mediumExternal documentation dependency-8

The skill relies on external documentation, specs, or README content as part of its workflow, which introduces an additional remote dependency and trust boundary.

README.md

Review which external services or providers the skill depends on, what data crosses that boundary, and whether the dependency is necessary for the intended workflow.

dependenciesASST-04
mediumMany external URLs referenced (5)-8

The skill references 5 external URLs and also discusses auth/API/payment workflows, which increases the chance that sensitive operations depend on many remote endpoints.

URLs: https://yourdomain.com/.well-known/agent.json, https://yourdomain.com/.well-known/agents.json, https://foragents.dev, https://foragents.dev/spec/agent-card, https://foragents.dev/schemas/agent-card/v1.json

Minimize external dependencies to reduce supply chain risk.

dependenciesASST-04
lowUnknown external reference-5

The skill references an unknown external domain which is classified as low risk.

https://yourdomain.com/.well-known/agent.json

Verify that this external dependency is trustworthy and necessary.

dependenciesASST-04
lowUnknown external reference-5

The skill references an unknown external domain which is classified as low risk.

https://yourdomain.com/.well-known/agents.json

Verify that this external dependency is trustworthy and necessary.

dependenciesASST-04
lowUnknown external reference-5

The skill references an unknown external domain which is classified as low risk.

https://foragents.dev

Verify that this external dependency is trustworthy and necessary.

dependenciesASST-04
lowUnknown external reference

The skill references an unknown external domain which is classified as low risk.

https://foragents.dev/spec/agent-card

Verify that this external dependency is trustworthy and necessary.

dependenciesASST-04
lowUnknown external reference

The skill references an unknown external domain which is classified as low risk.

https://foragents.dev/schemas/agent-card/v1.json

Verify that this external dependency is trustworthy and necessary.

dependenciesASST-04
lowNo explicit safety boundaries-10

The skill does not include explicit safety boundaries defining what it should NOT do.

No safety boundary patterns found

Add a 'Safety Boundaries' section listing what the skill must NOT do (e.g., no file deletion, no network access beyond needed APIs).

contentASST-09