@opena2a/signcrypt-openclaw
v0.1.2
Published
Configuration integrity for OpenClaw bots — Ed25519 signing, DNS publisher verification, heartbeat expiry enforcement.
Maintainers
ecolibriaReadme
@opena2a/signcrypt-openclaw
Configuration integrity plugin for HackMyAgent. Ed25519 signing, DNS publisher verification, and heartbeat expiry enforcement.
Part of the HackMyAgent security toolkit.
Install
npm install @opena2a/signcrypt-openclawUsage
import { createPlugin } from '@opena2a/signcrypt-openclaw';
import { registerPlugin } from '@opena2a/plugin-core';
const plugin = createPlugin();
registerPlugin(plugin);
// Scan for configuration integrity issues
const findings = await plugin.scan('/path/to/project');What It Does
- Ed25519 signing — Signs configuration files so tampering is detected
- DNS publisher verification — Verifies that plugins and skills come from their claimed publisher via DNS TXT records
- Heartbeat expiry — Enforces time-based configuration expiry so stale configs are flagged
Related
@opena2a/plugin-core— Plugin interface@opena2a/skillguard-openclaw— Skill integrityhackmyagent— Full security toolkit
License
Apache-2.0