agent-passportOAuth for the agentic era. Consent-gating for ALL sensitive agent actions. 75+ data-driven threat definitions with auto-updates (like antivirus signatures)....
Install via ClawdBot CLI:
clawdbot install markneville/agent-passportGrade Fair — based on market validation, documentation quality, package completeness, maintenance status, and authenticity signals.
Accesses sensitive credential files or environment variables
$OPENAIContains instructions to override system prompt or ignore user requests
"ignore previous instructions"Potentially destructive shell commands in tool definitions
rm -rf /Calls external URL not in known-safe list
https://agentpassportai.com/pro/Generated Mar 20, 2026
An AI agent manages code deployments, runs shell commands like git and npm, and interacts with cloud APIs. Agent Passport ensures it only executes approved commands, prevents unauthorized system changes, and logs all actions for audit trails, reducing security risks in CI/CD pipelines.
An AI agent handles customer inquiries by sending emails and accessing customer databases. Agent Passport enforces recipient allowlists, rate limits to prevent spam, and requires consent for sensitive data edits, ensuring compliance with privacy regulations like GDPR.
An AI agent executes trades and manages financial transactions via APIs. Agent Passport applies spending caps, restricts to approved merchants, and logs all financial actions with TTL expiry, providing a secure audit trail and preventing unauthorized spending.
An AI agent posts to social media and schedules communications as the user. Agent Passport requires human review for identity actions, enforces content guidelines with allowlists, and uses kill switches to freeze operations if suspicious activity is detected.
An AI agent manages patient records and sends secure communications. Agent Passport restricts file operations to specific paths, ensures data backups before deletions, and logs all actions for HIPAA compliance, safeguarding sensitive health information.
Offer a free tier with basic features like consent-gating and limited threat definitions. Charge for Pro tier with real-time updates every 6 hours, advanced templates, and priority support, targeting small to medium businesses seeking enhanced security.
Sell custom licenses to large organizations needing tailored mandates, integration with existing security tools, and dedicated threat definition management. Include premium support and compliance reporting for industries like finance and healthcare.
Distribute Agent Passport through AI agent platforms or app stores, taking a commission on sales. Offer add-ons like specialized templates (e.g., for coding or web research) and monetize via one-time purchases or in-app upgrades.
💬 Integration Tip
Start by integrating the Skill Scanner and Injection Shield first to assess vulnerabilities, then use templates like dev-tools for quick setup, ensuring all required binaries and environment variables are configured.
Scored Apr 19, 2026
Uses known external API (expected, informational)
api.anthropic.comAudited Apr 17, 2026 · audit v1.0
Use when reviewing code for security vulnerabilities, implementing authentication flows, auditing OWASP Top 10, configuring CORS/CSP headers, handling secrets, input validation, SQL injection prevention, XSS protection, or any security-related code review.
gws CLI: Shared patterns for authentication, global flags, and output formatting.
Set up Gmail API access via gog CLI with manual OAuth flow. Use when setting up Gmail integration, renewing expired OAuth tokens, or troubleshooting Gmail authentication on headless servers.
Automate OAuth login flows with user confirmation via Telegram. Supports 7 providers: Google, Apple, Microsoft, GitHub, Discord, WeChat, QQ. Features: - Auto-detect available OAuth options on login pages - Ask user to choose via Telegram when multiple options exist - Confirm before authorizing - Handle account selection and consent pages automatically
Self-hosted auth for TypeScript/Cloudflare Workers with social auth, 2FA, passkeys, organizations, RBAC, and 15+ plugins. Requires Drizzle ORM or Kysely for D1 (no direct adapter). Self-hosted alternative to Clerk/Auth.js. Use when: self-hosting auth on D1, building OAuth provider, multi-tenant SaaS, or troubleshooting D1 adapter errors, session caching, rate limits, Expo crashes, additionalFields bugs.
Build secure authentication with sessions, JWT, OAuth, passwordless, MFA, and SSO for web and mobile apps.