npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

agentsign-openclaw

v1.0.0

Published

AgentSign trust layer for OpenClaw and NemoClaw -- cryptographic identity, signed execution chains, and trust verification for every agent tool call

Downloads

95

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

proofxhqproofxhq

Keywords

agentsignopenclawnemoclawai-agentszero-trustmcptrustidentitysigningmiddleware

Readme

Drop-in trust layer for OpenClaw and NemoClaw. Every tool call gets identity verification, signed execution chains, and trust gating. Zero runtime dependencies.

Agent Runtime (OpenClaw / NemoClaw)
    |
  AgentSign Middleware
    |-- Verify agent identity (passport)
    |-- Check trust score before tool access
    |-- Sign execution (input + output hash)
    |-- Build cryptographic execution chain
    |
  MCP Tools / APIs

Install

npm install agentsign-openclaw agentsign

Quick Start -- Wrap Tools (3 lines)

const AgentSignMiddleware = require('agentsign-openclaw');

const middleware = new AgentSignMiddleware({
  serverUrl: 'http://localhost:8888',
  agentName: 'My OpenClaw Agent',
  minTrust: 50,  // block tools if trust drops below 50
});

// Wrap individual tools
const safeSearch = middleware.wrap('web_search', originalSearchFn);
const result = await safeSearch({ query: 'latest news' });
// -> tool executes, input/output signed, added to execution chain

// Or wrap all tools at once
const safeTools = middleware.wrapAll({
  web_search: searchFn,
  file_read: readFn,
  database_query: queryFn,
  send_email: emailFn,
});

OpenClaw Skill Plugin

const AgentSignMiddleware = require('agentsign-openclaw');

const middleware = new AgentSignMiddleware({
  serverUrl: 'http://localhost:8888',
  minTrust: 50,
  blockedTools: ['shell_exec', 'file_delete'],
  logExecutions: true,
});

// Register as OpenClaw skill
module.exports = {
  skills: [
    middleware.asSkill(),
    // ... your other skills
  ],
};

The skill hooks run automatically:

  • beforeToolCall -- checks passport, trust score, blocked list
  • afterToolCall -- signs the execution, adds to chain

Trust Gating

Block tools based on trust score or policy:

const middleware = new AgentSignMiddleware({
  serverUrl: 'http://localhost:8888',
  minTrust: 70,                              // minimum trust score
  blockedTools: ['shell_exec', 'file_delete'], // always blocked
});

// Agent with trust score 45 tries to call a tool:
// -> AgentSignError: Trust score 45 below minimum 70

// Agent tries shell_exec:
// -> AgentSignError: Tool 'shell_exec' is blocked by policy

Execution Chain

Every tool call is signed and linked to the previous one:

await safeSearch({ query: 'test' });
await safeRead({ path: '/data.json' });
await safeQuery({ sql: 'SELECT *' });

// Get the full chain
const chain = middleware.getChain();
// [
//   { executionId: '...', tool: 'web_search', parentId: null, ... },
//   { executionId: '...', tool: 'file_read', parentId: '<search-id>', ... },
//   { executionId: '...', tool: 'database_query', parentId: '<read-id>', ... },
// ]

// Verify chain integrity
middleware.verifyChain();  // { valid: true, length: 3 }

// Verify specific output wasn't tampered
middleware.verifyOutput(result, chain[0]);  // 'PASS' or 'TAMPERED'

API

| Method | Description | |--------|-------------| | new AgentSignMiddleware(opts) | Create middleware instance | | init() | Register agent + get passport (auto-called on first wrap) | | wrap(name, fn) | Wrap a single tool function | | wrapAll(tools) | Wrap all tools in an object | | asSkill() | Get OpenClaw skill plugin definition | | getPassport() | Get agent's cryptographic passport | | getChain() | Get signed execution chain | | getAgentId() | Get agent ID | | getTrustScore() | Get current trust score | | verifyChain() | Verify chain integrity | | verifyOutput(output, exec) | Check output for tampering |

Options

| Option | Type | Default | Description | |--------|------|---------|-------------| | serverUrl | string | required | AgentSign server URL | | agentName | string | hostname | Agent display name | | category | string | 'openclaw' | Agent category | | minTrust | number | 0 | Minimum trust score to allow tool calls | | blockedTools | string[] | [] | Tools to always block | | autoRegister | boolean | true | Auto-register on first use | | logExecutions | boolean | false | Log executions to console | | apiKey | string | null | Pre-existing AgentSign API key |

How It Works

  1. Agent registers with AgentSign server, gets cryptographic passport
  2. Before each tool call: passport validity checked, trust score verified, blocked list consulted
  3. Tool executes normally
  4. After each tool call: input/output hashed, execution signed, linked to chain
  5. Chain is verifiable -- any tampering breaks the hash links

Requirements

  • Node >= 18 (uses native fetch and crypto)
  • AgentSign server running (self-host or use hosted)

CyberSecAI Ltd -- agentsign.dev